Join Ørsted as Senior IT Security Specialist (Splunk) to shape protection of critical infrastructure. As part of the Cyber Defence Centre, you will operate and improve security controls and tools, acting as a Splunk evangelist across our global team.
Responsibilities:
- Work with security monitoring and incident detection experts to maximise benefits from Splunk Enterprise Security in workflows.
- Document and maintain standards for data ingestion, interfaces and security monitoring to support integration and vendor requirements.
- Partner with other security specialists to improve efficiency and performance across the Cyber Defence Centre.
- Collaborate with threat intelligence teams to analyse and implement data requirements, build and tune correlation rules and custom detections for evolving threats.
- Build, administer and maintain the Splunk infrastructure, applying best practices for architecture, apps, add-ons and searches.
Qualifications:
- Strong understanding of security operations and threat intelligence and good security practices.
- Extensive experience with Splunk Enterprise Security including app configuration, data input/integration/normalization and deployment of apps.
- Experience in API and interface architecture, event‑driven data transfer and data management, with ability to translate security requirements into technical configurations.
- Familiarity with frameworks like MITRE ATT&CK.
- Ability to work collaboratively in a global team and share best practices.
