Join Ørsted’s Security Operations team as a Senior IT Security Specialist focusing on Splunk. You will work in a hybrid model from our Gentofte office and protect critical infrastructure by using your technical information security skills.
Responsibilities include:
- Working closely with security monitoring and incident detection teams to maximise the value of Splunk Enterprise Security.
- Documenting and maintaining data ingestion and security monitoring architecture to ensure efficient and reliable logging and alerting.
- Partnering with other security specialists and stakeholders to drive improvements and ensure Splunk is properly integrated with other security controls.
- Collaborating with threat intelligence teams to build and tune correlation rules and custom detections to discover unusual patterns and malicious behaviour.
- Building and maintaining the Splunk infrastructure, including onboarding new data sources, normalising data and ensuring high availability.
Qualifications:
- Strong understanding of security operations and threat intelligence with the ability to translate security requirements into technical configurations.
- Significant hands-on experience with Splunk Enterprise Security (app configuration, data input configuration, data integration and normalisation, deployment).
- Experience with API and interface architecture, event-driven data transfer, data management and analysis.
- Knowledge of security frameworks such as MITRE ATT&CK and the ability to develop correlation rules and detection use cases.
- Excellent communication skills and a proactive mindset.
