SIEM Engineer (Splunk)
Security
SIEM Engineer (Splunk)
Warszawa
Type of work
Full-time
Experience
Senior
Employment Type
B2B
Operating mode
Remote
Fujitsu
At Fujitsu, we believe in the power of diversity. Our values of empathy, trust, and aspiration drive everything we do. So if you want to work with teams who empower each other, come and #MoveForward with us.
Tech stack
AWS
Windows
Powershell
Azure
SIEM
Linux
MITRE ATT&CK
Google Cloud
Python
analysis skills
Job description
Online interview
SIEM Engineer (Splunk)
Location: Offices are in Lodz & Katowice, but work can be done 99% remotely
As SIEM Engineer, you will be responsible for:
- Supporting customers with deployments of Splunk
- Configuring, maintaining and troubleshooting Sentinel environments
- Preparing reports presenting risks and vulnerabilities in the environment
- Periodical review of systems configuration
- Looking for continuous improvements to make sure that systems are as secure as they can be
- Participating in mitigation of zero-day vulnerabilities
- Proactively suggesting the best way to increase the overall security score of the environment
- Creating queries and SIEM use cases
- Working with other teams to solve the security-related problem
Requirements:
- hands-on experience with Splunk
- Experience in architecting, managing deployment, and operationalization of SIEM in client environments
- Experience in working with various technical departments to enhance threat detections of deployed SIEM solutions
- Solid technical knowledge of Linux and Windows
- Excellent root cause analysis skills
- Understanding of MITRE ATT&CK and other security methodologies
- Experience in any of the scripting languages (Powershell, Python, etc.)
- Hands-on experience in cloud services from any major provider (AWS, Azure, Google Cloud)
Additionally, a great asset will be:
- Previous experience with Splunk, Elasticsearch, QRadar, or other SIEM tools
- Security-related certificates, such as CompTIA Security +, CySA+, etc.
- Vendor certificates such as AZ-104, SC-200, AZ-500, MS-500, AWS Practitioner, etc.
- Other certificates which prove knowledge in the field of security and technology administration
What do we offer:
- You will work in a collaborative, close-knit team
- You will be able to learn a lot and develop your knowledge in IT Security
- You will have the possibility to participate in various vendor events organized only for business partners
- You will have access to an online learning platform with all the latest tech training
- You will be encouraged to work smart and work in your own way
- You will be a part of a leading global technology business
- You will be trusted to deliver your work
- You will get an extensive benefits package supporting your work-life balance, health, and comfort to work from home
- You will be able to work with top technology providers in the industries
- You will be first on the frontline to prevent any breaches to happen
Check similar offers
Check similar offers