TTech_Splunk Technician - Germany
GERMANY IT development
Job description
WHAT IS TELEFONICA CYBERSECURTY & CLOUD TECH?
We are a global leading company in digital transformation and the cradle of talent in Cybersecurity and Cloud. In Telefonica Tech we unlock the power of integrating technology.
Innovation and continuous learning define us. We look for new ways of doing things, fresh and innovative ideas, experimenting, having fun and being enthusiastic in what we do. We are techies and we want to improve the world by making it more diverse, sustainable, and cyber-safe.
We work hard so our customers don't have to worry about their risks in digital life. We make security more humane by generating trust and peace of mind.
WHAT DO WE DO IN THE TEAM?
In the Secure Edge unit of Telefónica Cybersecurity & Cloud Tech we manage SSE solutions for our clients.
WHAT WILL YOUR DAY TO DAY BE LIKE?
In the SIEM TO unit of Telefónica Cybersecurity & Cloud Tech we take care of the administration, configuration and management of all the monitoring systems of the project as well as everything related to the exploitation of the data obtained.
Activities/responsibilities:
• Response to customer escalations
• Presentation and reporting
• Monitoring with SIEM Splunk
• Administration, configuration, management, update and new integrations in Splunk
• Review and development of use cases
• Creation of notification playbooks
• Support to the orchestration team for the notification of alerts through XSOAR.
• Investigation of critical incidents
• You interact and/or coordinate with your respective peer on the client side.
• As a member of the technical office team, you report to and coordinate with the Security manager, who acts as a liaison to the client and establishes the respective priorities in terms of incident solutions and change implementations.
• Customer service is mainly carried out remotely. Only in very specific cases, a local presence may be required, to solve or solve any issue of implementation and/or solution of a complex incident at the client's premises.
AND FOR THIS, WE BELIEVE THAT IT WOULD BE IDEAL FOR YOU TO HAVE…
Experience:
• More than 2 years in Cybersecurity
• Knowledge in SIEM Splunk
• Knowledge of Linux and Windows systems
• Programming, preferably Python
• Knowledge of managing virtual machines with VMware.
Studies/Trainings:
Necessary:
• Splunk Core User/ Desirable Admin
• Advanced professional training in administration of computer systems and networks.
Desirable:
• Master in cybersecurity
Technical knowledge:
• General knowledge in Cybersecurity
• SIEM Splunk
• Integration of sources
• Splunk Health Maintenance
• Response to audits
TO PLAY THE ROLE, THE SKILLS THAT WOULD FIT THE TEAM AND THE PROJECT WOULD BE:
· Leadership, good organization of tasks, teamwork and conflict management.
· You give importance to the fulfillment of the agreed commitments and dates, as well as you pay special attention to detail and precision when preparing documentation on processes related to the area.
· You are always looking for opportunities to improve, optimize and automate current processes.
LANGUAGES
• Necessary: English (fluent), German (native or similar level)
• Valuable: Spanish
#Wearediverse #Weencourageequality
We’re proud to be an equal opportunity workplace and employer. In Telefonica Tech we are convinced that a diverse and inclusive team is more innovative, transformative, achieves better results and makes us better. That is why we promote and guarantee the inclusion of all people regardless of race, religion, gender, age, sexual orientation or expression, culture, disability, or any other personal condition.
We want to get to know you!
.