Help AG, an e& enterprise company, is seeking a talented and experienced Splunk Consultant. The individual will be responsible for the creation of procedures, implementation of process development, and maintenance of security systems across internal and client environments.
The Splunk Consultant will collaborate closely with Management, Security Operation Center Analysts, Threat Analysts, Solution Architects, other Security Engineers, and clients to deliver critical services to existing Managed Security Service clients. This role is based at the client site in Riyadh, KSA, and involves the administration, maintenance, and integration of SOC technologies, including SIEM, EDR, NDR, VA, SOAR, and other platforms.
Responsibilities:
- Administer and develop Splunk and Splunk Apps with specialized functionality.
- Integrate Splunk with a variety of legacy data sources.
- Adapt and learn new SOC technologies from various vendors.
- Collaborate with application and infrastructure teams to establish best practices for utilizing Splunk data and visualizations.
- Design and support solutions using Microsoft security technologies (e.g., Azure Cloud Access Security Broker, Office 365 Advanced Threat Protection).
- Handle implementation and support of vulnerability scan engines.
- Manage EDR sensors' deployment and operation.
- Create watchlists to detect Indicators of Compromise (IoCs).
- Engage in operational tasks to enhance service quality.
- Develop content for SOC technologies in cooperation with SOC teams.
Qualifications & Skills:
- Minimum 5 years of professional experience with Splunk SIEM & Enterprise Security.
- Extensive experience with advanced tuning of Splunk SIEM content.
- Professional background in networks and network architecture.
- Bachelor’s degree or equivalent training with experience in a Security Operations Center or Managed Security environment.
- Information security knowledge in areas such as EDR.
- Practical hands-on experience with EDR solutions (e.g., Carbon Black, Vectra, Microsoft Azure).
- Knowledge of Linux and Windows Operating Systems.
- Experience with other SIEM solutions like QRadar & LogRhythm is preferred.
- Flexibility to provide after-hours support when needed.
- Familiarity with incident and problem tracking systems.
Benefits:
- Health insurance with leading global providers.
- Career progression through challenging projects.
- Employee engagement activities throughout the year.
- Tailored training and development program.
Language Requirements: Not specified.
Company Overview:
Help AG is the cybersecurity arm of e& enterprise, providing leading enterprise businesses and governments across the Middle East with strategic consultancy and tailored information security solutions. The company has been a trusted IT security advisor since 2004 and focuses on delivering unmatched value to strengthen businesses’ cyber defenses.
