- Top Financial Institute Company
about the job.
- Administer and optimize the Splunk environment across Windows/Linux platforms, including comprehensive log onboarding from diverse sources (OS, databases, network, applications).
- Develop and implement Splunk security alerts, dashboards, and reports by creating and refining queries for effective threat detection and incident response.
- Actively monitor for security threats, conduct thorough incident investigations, produce detailed reports, and manage incident response procedures.
- Collaborate with IT teams on Splunk deployment, configuration, and integration; implement system hardening and patch management processes.
- Ensure adherence to IT security requirements and assist with compliance audits, staying updated on cybersecurity trends and vulnerabilities.
- Provide training and support to team members on Splunk best practices and contribute to maintaining a strong security posture.
skills & experiences required.
- University degree in Computer Science, Engineering, IT, or a related field, coupled with a minimum of 4+ years in cybersecurity roles (consulting, operations, or implementation).
- Proven, in-depth expertise in Splunk administration, advanced Splunk query language (SPL) development, dashboard/alert creation, and diverse log source integration.
- Extensive knowledge of computer systems (Windows, Linux, databases, networks, cloud) and strong understanding of SIEM principles and security best practices like system hardening.
- Exceptional analytical, critical thinking, and problem-solving skills with the ability to diagnose complex issues and devise effective solutions from multiple perspectives.
- Excellent interpersonal, written/verbal communication, and presentation skills; experience in client-facing or consultancy roles is highly advantageous.
- Relevant certifications such as Splunk Certified Admin (highly preferred), CISSP, CISM, or CISA are strongly desired.
If you're interested in this exciting opportunity please don’t delay and click 'APPLY NOW' or for more information, reach out to Russell Regalado on russell.regalado@randstad.com.hk