Find a Job
393 available
Back to all search results

Principal Cyber Security Engineer

Ref: 921720

  • €95,000 - €100,000
  • 19 Jun 2019
  • Dublin (Central)
  • Perm

I am seeking a Principal Cyber Security Engineer to join a dynamic, fast-paced Cybersecurity Threat Detection team. You will bring threat hunting initiatives by leveraging rich threat-hunting and specialized Splunk-related experience. As an expert in Splunk Search Processing Language (SPL), you'll be relied on to work closely with customer delivery managers, prioritize daily tasks, develop/deploy/verify advanced threat-hunting playbooks based on indicators of compromise and network anomaly detection's, alerting logic, and enhance the organization's overall playbook strategy and threat analytics.

Responsibilities:

• Responsible for understanding the Cyber Security Threat Landscape and applying innovative solutions to address threats using analytics • Responsible for identifying Threat Detection Use cases in large, heterogeneous enterprises and implementing the techniques to surface these threats • Build analytics that can be applied to the discovery and tracking of advanced adversaries • Day to day management of playbook content lifecycles including customer interactions and priority, content creation, testing & tuning, version/value documentation, and finally, user-acceptance testing and effectiveness analytics. • Utilize Git repositories to store, comment, and version on playbooks with Threat Detection customers including the Security Operations Centre, Insider Threat, and SIEM Engineering among other teams. • Participate in war-gaming and table top activities as part of red/blue team exercise to strengthen and test playbook health, maturity, and relevant documentation.

Requirements:

• Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred 10-12 years of experience in information security or related technology experience required, experience in the securities or financial services industry is a plus. • Expert-level demonstrative understanding of Splunk technologies include Core, Enterprise Security, User Behavior Analytics (UBA) and the Machine Learning Toolkit (Splunk ML), as well as Advanced Threat Analytics. • Demonstrable experience with SPL creation, Splunk knowledge object management, Splunkbase, TAs, Dashboard Design • Significant experience with network protocols, security orchestration, security/perimeter devices. • Experience with scripting languages to automate repetitive analysis and tasks. For more details, please contact Ian Donnelly on 01 662 1000 or I.Donnelly@brightwater.ie