Job Description
What you will be doing:
Deploy, manage and optimise Elastic Stack (Elastic Security) and Splunk (Enterprise & ES) platforms at scale. Design, implement and maintain data pipelines, including log ingestion, enrichment and schema standardisation (ECS/CIM). Develop and tune security detection rules, translating threat intel and TTPs (MITRE ATT&CK) into actionable, low-noise alerts. Manage the full content lifecycle: design → test → deploy → monitor → tune → retire, with version control and rollback. Automate workflows and configurations using CI/CD, SOAR, scripting and IaC tools (Terraform, Ansible). Ensure platform performance, stability and reliability, including capacity planning, high availability, disaster recovery and proactive monitoring. What you will bring:
Hands-on experience with Elastic Security and Splunk ES, including detection engineering, indexing, parsing and performance tuning...
Ready to Apply?
Take the next step in your AI career. Submit your application to Shared Services Connected Ltd today.
Submit Application