Security Delivery Analyst

Accenture is a leading global professional services company, providing a broad range of services in strategy and consulting, interactive, technology and operations, with digital capabilities across all of these services.

We believe in inclusion and diversity and supporting the whole person. Our core values comprise of Stewardship, Best People, Client Value Creation, One Global Network, Respect for the Individual and Integrity. Year after year, Accenture is recognized worldwide not just for business performance but for inclusion and diversity too.

“Across the globe, one thing is universally true of the people of Accenture: We care deeply about what we do and the impact we have with our clients and with the communities in which we work and live. It is personal to all of us.” – Julie Sweet, Accenture CEO.

As a team:

We are one of the world's leading providers of cybersecurity solutions. You'll work on innovative projects with colleagues to drive collaboration from strategy through to implementation. You will be using the newest technologies with clients to help them get to the next level. If you’re looking for an ambitious career, working in a vibrant environment with access to training and a global network of experts, this could be the role for you.

In our team you will learn:

1. How to help our Technology clients secure their most critical assets, often as part of major technical transformation.
2. How clients can benefit from new technologies and new business models, while reducing risk to an acceptable level and handling it appropriately.
3. Security innovation and exciting growth areas.

As a Splunk Architect, you will:

1. Provide architecture-level design to support and operate Splunk using security information and event management (SIEM) or security event management (SEM) best practices and Splunk enterprise security.
2. Administer the Splunk environment (e.g.: deployment of solution, user management, managing the licenses, upgrades and patch deployment, addition or deletion of log sources, configuration, management, change management, report management, manage backup and recovery etc.).
3. Be responsible for the installation, deployment and ongoing support of Enterprise Splunk services.
4. Integrate Splunk with a wide variety of supported and unsupported data sources.
5. Support and extend existing Splunk information security applications in areas such as security, monitoring, task automation, continuous integration, deployment, and performance optimization.
6. Use Splunk to collect and index log data, develop queries, log integration support, and reporting.
7. Install, configure, and troubleshoot Splunk.
8. Develop security use cases using Splunk ES.
9. Liaison with other departments as the SME for all technical issues related to Splunk.
10. Architect, design, support, maintain, and expand Splunk infrastructure in a highly resilient configuration.

We are looking for experience in the following skills:

1. 5 years of experience with leading SIEM Technologies like Splunk.
2. In-depth knowledge in core security domain (SIEM and SOC).
3. Direct architecture design, administration experience and certifications with one or more SIEM/Security Solutions (i.e. Splunk, ArcSight, IBM QRadar).
4. Knowledge on MITRE ATT&CK, TTPs.
5. Good to have programming and scripting skills.