Splunk Admin
Toronto, ON - Hybrid
Job Description
The Enterprise SIEM data engineering team is responsible for adhering to the Security Logging and Monitoring standard for the bank, also Governance, compliances, Access control, Automation, and data onboarding of different technologies.
This role will provide expert knowledge of Splunk platform engineering "hands on" for the proposal, data onboarding, and automation. The candidate will possess excellent subject matter expertise over a wide variety of security technologies and collaborate with other engineering teams. The Engineer must be up to date with the latest SIEM (Splunk & Azure Sentinel) security technologies and architecture.
This role will be responsible for solutions in areas such as, but not limited to:
Enterprise Splunk suite of applications, ITSI, UBA, CRIBL
Microsoft Security Solutions (Sentinel, etc.)
Virtualization and Cloud (Azure, Google, AWS)
Advanced Security Technologies (Monitoring toolset.)
The successful candidate must have demonstrated expert ability to lead a team, drive deliverables, work with leadership on strategy, architect, engineer, design, build, support, and document solutions in these areas of Security Engineering working closely with Business, other Security Engineering teams and the wider Engineering teams to ensure built solutions enhance productivity and add business value.