As a Senior SOC Engineer, your main responsibilities would be:
Maintain our Windows and Unix based SIEM Log collection Infrastructure.
Maintain the interconnectivity between our SIEM components and SPLUNK Cloud.
Maintain the SIEM document set (HLD and LLD) ensure the single record of the SIEM deployment.
Onboard new log sources as required.
Develop and document engineering processes.
Train and develop junior engineers.
You’ll have relevant experience in:
Competent in Windows Server 12 thru 19.
Competent in UNIX deployment (RHEL, Centos, Ubuntu).
Through understanding of Azure AD architecture.
Knowledge of SPLUNK Environment.
Desirable:
Splunk Cloud Admin.
Splunk Enterprise Security Cloud Admin.
Proficient in Python and/or PowerShell.