This job offer is not available in your country.

Threat Detection Engineer - Splunk Developer

EuroclearPoland

17 days ago

Job description

Division : CISO

Cyber Defense Center is part of the Chief Information Security Officer Office. The main responsibility of the team is to reduce the risk of Euroclear cyber threat surface by monitoring for malicious intent targeted at Euroclear’s services, it’s supporting assets and people. We do this through the Cyber Threat Management (CTM) capabilities, Security Operations Centre (SOC) which includes monitoring and Cyber Incident & Response Team, Detection & Response Engineering Team. This includes cyber threat intelligence, brand and digital footprint monitoring, security incident and event monitoring, cyber analytics, incident management and forensic analysis.

CDC supports capabilities within the security domain and acts as subject matter expert across all divisions in the company as well as interacts with external stake holders, including customers, oversight bodies, threat intelligence providers, and third parties.

The Detection & Response Engineering team is comprised of –

Detection Engineers / Splunk Developers – who implement and maintain threat detections capabilities.
SOAR developers – who develop response capabilities via playbooks, automation etc.

Role :

Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities

Cooperate with log source onboarding team to assure correct log source onboarding and log mapping to data models according to Splunk standard processes

The development and tuning and continuous improvement of correlation rules

Develop and maintain dashboards, reports, and alerts

Create Splunk Knowledge Objects to address customers' needs in context of using Splunk as security tool

Prepare correlation search tests, conduct tests, and document evidence from test that shows correlation search addresses scenario described in use case

Responsible for the creation of procedures, high-level / low-level documentation, implementation of processes and development of staff in relation to SIEM detection logic

Coach a team (from a technical perspective); review work outputs and provide quality assurance

Analyses and identifies areas of improvement with existing processes, procedures, and documentation

Demonstrates how to use SIEM & Enterprise Security products to both technical / non-technical personnel

Provides expert technical advice and counsel in the design, monitoring and improvement of SIEM security systems

Prioritize and coordinate backlog of threat detection requests, making sure we have a healthy balance between defect resolution and new features

Qualifications : Technical Skills :

In depth experience in development and maintenance of SIEM use cases

Fluent in Splunk’s search processing language (SPL)

Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security

Sound knowledge about Splunk Common Information Model and log normalization using Data Models

Solid understanding of cybersecurity technologies, protocols, and applications

Excellent English communication skills (written and oral)!

Assets :

Splunk Core Certified (Advanced)Power User (essential)

Splunk Certified Developer (nice to have)

Splunk Enterprise Certified Admin (nice to have)

Splunk Enterprise Security Certified Admin (nice to have)

Any other Security Certifications (. CEH, GIAC, CISSP, OSCP …)

Soft Skills :

Strong analytical skills to evaluate sophisticated multivariate problems and find a systematic approach to gain a quick resolution, often under stress

Strong problem solving, documentation, process execution, time management and organizational skills.

Ability to communicate sophisticated information, concepts, or ideas in a confident and well-organized manner through verbal, written, and / or visual means

Fast and independent learner, with ambition to self-improve

At ease in a fast-changing environment, flexible and pragmatic, open-minded

Accurate, acting with attention to details

Client focus and delivery oriented

A team-focused mentality with ability to work & collaborate effectively in a team environment

Good leadership and communication skills, whether on the field, in the team or with management : you are a keen standout colleague and coordinate work among people from different areas or divisions. A good relationship builder with strong diplomacy skills

Ability to work autonomously

LI-NS1

Create a job alert for this search

Developer Developer • Poland

Related jobs

Security Detection Engineer Manager

Mondelēz InternationalPoland

Are You Ready to Make It Happen at Mondelēz International?.Join our Mission to Lead the Future of Snacking.We are seeking a skilled and motivated Security Detection Manager to join our security tea...Show moreLast updated: 17 days ago

Java Developer - Microservices / Kubernetes Engineer

OraclePoland

Unified Assurance team manages services on a single platform : this includes silo’d tools that run across varied and hybrid networks to ensure availability of communications, information, and produc...Show moreLast updated: 17 days ago

GSC : Lead Cybersecurity Operations Integration Analyst

HSBCPoland

Some careers shine brighter than others.If you’re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, o...Show moreLast updated: 4 days ago

Information Security Analyst @ Link Group

Link GroupRemote, Poland

At Link Group, we build tech teams for Fortune 500 companies and the world’s most innovative startups.Our mission is to connect talented professionals with opportunities that align with their exper...Show moreLast updated: 30+ days ago

Senior DevOps / DevSecOps Engineer @ Shift4

Shift4Remote, Poland

Shift4 is a leader in commerce-enabling technology, growing rapidly and boldly challenging the status quo of .We made it from scratch, driven by the ambitious challenges and opportunities they brou...Show moreLast updated: 30+ days ago

Security Analyst, Cyber Readiness

AutodeskPoland

As a Security Analyst - Cyber Readiness, you will be a key player in establishing and shaping the Cyber Readiness function at Autodesk. This net-new role involves creating and implementing processes...Show moreLast updated: 17 days ago

Senior DevOps Engineer with GCP

EpamPoland

Google Cloud Platform to join our team.The project is a managed service for the tools team and focuses on CI / CD landscape Ops and Site Reliability Engineering. The main objective is to provide suppo...Show moreLast updated: 30+ days ago

SAP Automation Test Developer

LeverXPoland

LeverX is looking for a SAP Automation Test Developer, located in EU.QA Engineer - Automation Test Developer for browser-based automated testing tools (Selenium-like) and API tests (Postman-like), ...Show moreLast updated: 30+ days ago

Security & Threat Detection Engineer

Alex Staff AgencyPL

Remote

Quick Apply

About the company and the project : .An international technology company developing advanced Linux-based operating systems and infrastructure tools is looking for a . The company's solutions are ...Show moreLast updated: 4 days ago

Data Engineer @ Harvey Nash Technology

Harvey Nash TechnologyRemote, Poland

We’re seeking a Data Engineer with strong experience designing and building robust data pipelines and performing ETL / ELT processes. You will work on data integration, modeling, analytics, and visual...Show moreLast updated: 7 days ago

Cyber Security OT / IiOT Manager

InfosysPoland

Do you want to boost your career and collaborate with expert, talented colleagues to solve and deliver against our clients' most important challenges? We are growing and are looking for people to j...Show moreLast updated: 30+ days ago

Cyber Security OT / IiOT Manager

Infosys Consulting - EuropePL

Remote

Quick Apply

Security Analyst @ Devire

DevireRemote, Poland

The company helps companies of all sizes transform how people connect, communicate, and collaborate.Currently, for our Client, we are looking for a . Benefits : Private Medical Care, Multisport card,...Show moreLast updated: 10 days ago

Senior Detection and Response Engineer

IntellectsoftPoland

Intellectsoft is a software development company delivering innovative solutions since 2007.We operate across North America, Latin America, the Nordic region, the UK, and specialize in industries l...Show moreLast updated: 17 days ago

Detection Engineer - Security (SIEM, Go or Python) B2B

OpendoorPoland

Hybrid on site 3 days per week.This is a B2B contract position.Opendoor focuses on identifying and protecting assets, detecting anomalies and attacks, responding to compromise, and recovering from ...Show moreLast updated: 30+ days ago

Systems Engineer

DP World AustraliaPoland

DP World, the global leader in port and logistics operations which handles more 10% of world trade, we are looking for Systems Engineer / Compute Platforms and Services Engineer to join our Team re...Show moreLast updated: 17 days ago

Experienced Backend Developer with AI skills @ Mend.io

Mend.ioRemote, Poland

Senior Software Developer to join our .This team is pioneering a new wave of application security solutions focused on identifying risks in AI-powered software. If you’re passionate about software s...Show moreLast updated: 26 days ago

Senior Security Engineer @ ITMAGINATION

ITMAGINATIONRemote, Poland

ITMAGINATION helps its Clients by becoming a true extension of their software and data development capabilities.Through the readily set up, comprehensive, and self-governing teams, we let our Clien...Show moreLast updated: 15 days ago