Overview Senior Lead Security Engineer (Splunk & Cloud SIEM) – This role is a high-level engineering position that sits at the intersection of Big Data (Splunk) and Cloud Infrastructure, requiring a candidate who can build the "eyes" of a security operations center. Key Skills Spotlight Splunk Mastery: Deep engineering expertise in Splunk Enterprise , including administration, Search Processing Language (SPL), and Common Information Model (CIM ) compliance. Advanced SIEM Architecting: Proven experience implementing and optimizing Splunk ITSI , UBA , CRIBL , and Microsoft Sentinel for enterprise-wide visibility. Cloud Security Ecosystem: Strong proficiency in Azure Security controls and logging, with additional experience across AWS and GCP environments. Data Ingestion & Automation: Ability to build complex ingestion pipelines using Python , APIs, and databases while automating data onboarding from Windows, Unix, and Network sources. Strategic Leadership: Experience developing technology roadmaps, leading technical teams, and aligning security architecture with financial-grade regulatory standards. Analytical Engineering: Expertise in building high-fidelity correlation rules, advanced dashboards, and service-level monitoring to detect sophisticated threats. #J-18808-Ljbffr
Senior Lead Security Engineer (Splunk & Cloud Siem)
ASTRA-NORTH INFOTECK INC. ~ CONQUERING TODAY’S CHALLENGES, ACHIEVING TOMORROW’S VISION!
toronto, toronto
Published 27 days ago
Report job