Cyber Defense Engineering - Content Development

To join Deloitte is to participate in the transformation of leading national and international organisations. At Deloitte we are committed to making an impact on society, our clients and you.

Are you in?

Deloitte Technology works at the forefront of technology development and processes to support and protect Deloitte around the world. In this truly global environment, we operate not in "what is" but rather "what can be" to help Deloitte deliver and connect with its clients, its communities, and one another in ways not previously conceived.

What will your day-to-day be like?

• Partner with development and operations teams to develop practical automation solutions and custom modules.
• Create, optimize, and continuously evaluate security monitoring content (correlated searches/alerts) on Splunk Enterprise Security.
• Implement/maintain data normalization methods based on requirements provided by stakeholders/leadership.
• Clearly document and diagram deployment-specific aspects of architectures and environments, working closely with various teams to create application runbooks, playbooks, and knowledge base documents.
• Troubleshoot issues in production and other environments, applying debugging and problem-solving techniques (e.g., log analysis, non-invasive tests).
• After hours on-call support occasionally required.

What do we expect from you?
 

• Bachelor’s degree: preferably in an information technology-related field of study, or equivalent years of experience required.
• Minimum of 1 year of Splunk engineering experience.
• Strong understanding of Cloud Services – Azure, AWS.
• Strong understanding of Splunk Enterprise Security, Splunk data models and CIM validation.
• Universal/Heavy Forwarder configuration experience, including encryption and compression settings.
• Experience working with a strict change control process utilizing tools such as Azure DevOps.
• Management/deployment experience with large scale/distributed Splunk environments.
• A solid understanding of Windows and Linux administration utilizing Command Line Interface (CLI).
• Knowledge of security tools, networking, firewalls, load balancers etc.
• Knowledge of best practices for IT operations in an always-on, always-available service model.
• Preferred: Splunk Certified Admin, Splunk Certified Architect or Splunk Certified Consultant.

What do we offer?

• You will have a hybrid-flexible working model.
• You will be eligible for a flexible remuneration system, medical service, health insurance, life insurance and accident insurance.
• You will have a training plan throughout your career.
• You will develop in a feedback culture where you will be encouraged to learn continuously.
• If you are interested, you will participate in national and international social action and volunteering programmes.
• You will enjoy a cultural and sporting offer.

Now the choice is yours! If you think this position is right for you, click 'Apply now' and complete your profile so we can assess your application. If you fit the profile, our recruitment team will contact you to get to know you.

From there we will guide you through our recruitment process and your Deloitte story will begin.

What impact will you make?