Splunk Platform Support Engineer EMEA

Job Description & Summary

Innovative and technological projects are our daily business. We provide customers with the highest quality guided by integrity, objectivity and investment in data, tools, technologies, products and services. We believe that with non-obvious combinations of skills, experience and technology, we can actively participate in shaping tomorrow.

We are looking for:
Splunk Platform Support Engineer EMEA

Our Internal Business Application Centre (IBACentre) team offers you the opportunity to support our core business functions by implementing applications that enable more efficient work and the delivery of top-notch services. Our team focuses on managing core and global business applications, ensuring their continuous operation, handling customer relationships, and incidents with precision

Your future role:

• Managing, Troubleshooting and deploying Global Splunk Enterprise (Distributed & Clustered) implementations in medium to large sized customers/territories,
• Monitor & Keep the Splunk Enterprise instances in good health to serve our customers with highest platform availability,
• Monitor & Manage Splunk Platform Incidents, Triage, Troubleshoot to fix them and escalate to different stakeholders to resolve the Splunk Incidents,
• Managing Splunk Access Roles & Administering Splunk App for Enterprise Security (ES) log management and SIEM solutions,
• Integrating Splunk with a wide variety of legacy data sources that use various protocols,
• Create parser/scripts for custom log source integration,
• Troubleshooting Splunk modules/app, Report filters & queries, Splunk Access Issues & also issues with log source integration,
• Consulting with customers to customize and configure Splunk in order to meet their requirements,
• Part of your occupation is the security perimeter enforcement, security logging and/or monitoring solutions, i.e. Palo Alto, Checkpoint, Juniper, Cisco, Blue Coat Websense, SNORT, SourceFire, RSA Netwitness, RSA Security Analytics, RSA enVision, RSA ECAT, EnCase Enterprise, FireEye, Firemon, Tufin, McAfee ePO, Bit 9, Avecto, Ionic, SolarWinds, Hadoop, Splunk and Google Analytics,
• Have to create visualizations in Splunk and custom queries to improve views & dashboards.

Apply if you have:

• Strong Working Knowledge on SIEM and Data Analytics SIEM Platform – SPLUNK,
• Strong understanding of Networking / Routing fundamentals, traffic and operating systems (Windows & Unix/Linux), TCP/IP, DNS, Firewalls, Security Proxies – CCNA level competence,
• Good knowledge in Linux/UNIX – Scripting, RegEx,
• Experience of developing custom SIEM parsers,
• Proficiency with troubleshooting tools – Wireshark, TCPdump, Name lookup...etc,
• Solid, hands-on (i.e. not just theoretical or training course-acquired) know-how and demonstrable ability in the areas of Splunk - i.e. Splunk ES App..etc (Splunk certifications is a plus),
• Good hold in Security domain knowledge with use case development and its integration with SIEM,
• Strong written and verbal communication skills in English.

By joining us you gain:

• Work flexibility - hybrid working model, flexible start of the day, workation, sabbatical leave,
• Development and upskilling - our full support during onboarding process, mentoring from experienced colleagues, training sessions, workshops, certification co/financed by PwC and conversations with native speaker,
• Wide medical and well-being program - a medical care package, coaching, mindfulness sessions, psychological support, education through dedicated webinars and workshops, financial and legal advice,
• Possibility to create your individual benefits package (a.o. lunch pass, insurance packages, concierge, veterinary package for a pet, massages) and access to a cafeteria - vouchers, discounts on IT equipment and car purchase,
• 3 paid hours for volunteering per month,  
• Additional paid Birthday Day off,
• And when you start enjoying PwC as much as we do, you may recommend your friend to work with us.

Recruitment process:

• CV verification, 
• HC screening call, 
• Online recruitment meeting with our managers/senior managers/directors,
• Online or in person presentation.

Your personal data will be processed for recruitment purposes by PwC Advisory spółka z ograniczoną odpowiedzialnością sp.k. or another PwC entity which runs a recruitment process - (list of entities). If you have given separate consent, data will also be processed for other purposes in accordance with the content of the consents granted. Full information about processing your personal data is available in the Privacy Policy.

#LI-K1 #LI-Remote