Job Description:
Cyber Security Threat Intelligence Specialist
This role is ideal for a seasoned professional with deep expertise in Splunk technologies and a passion for proactive threat detection and response.
As a Cyber Security Analyst, you will assist with log operationalisation and use case creation for newly onboarded systems and log sources. You'll monitor and enhance cyber security systems, develop and maintain playbooks, analyse security events to identify anomalous activity, and recommend security enhancements. The role also includes incident response, threat hunting, and collaboration with threat intelligence teams.
* Assist with log operationalisation and use case creation for newly onboarded systems and log sources.
* Monitor and enhance cyber security systems; develop and maintain playbooks.
* Analyse security events to identify anomalous activity and recommend security enhancements.
* Participate in incident response, threat hunting, and collaboration with threat intelligence teams.
Requirements:
* Experience using Splunk SOAR to develop playbooks.
* Strong understanding of Splunk Risk Based Alerting (RBA).
* Technical tertiary qualifications and certifications from Microsoft or Splunk are highly desirable.
* Industry certifications such as CISSP, GCIH, or GCIA are advantageous.
* NV1 Clearance is required.
* Minimum of three years' experience as a Cyber Security Analyst.
* Proven ability to design, implement, and test use cases to detect malicious activity.
* Hands-on experience in incident response, strong collaboration and knowledge-sharing skills.
* Well-developed writing abilities for maintaining technical documentation and experience managing threat intelligence feeds.