BAE Systems Digital Intelligence is home to 4,800 digital, cyber and intelligence experts. We work collaboratively across 16 countries to collect, connect and understand complex data, so that governments, nation states, armed forces and commercial businesses can unlock digital advantage in the most demanding environments.

We have a requirement for an Azure Platform Engineer to join an existing team working for a Government client.

Skills and qualifications required:

• Knowledge of Microsoft Cloud Technologies.
• Knowledge of Linux (RHEL/Centos).
• Splunk 8 Certified Administrator (evidence has worked in this field), Splunk Cloud, Splunk 7-9 on premise
• Splunk 8 Certified Enterprise Security (evidence has worked in this field)
• (CCNA/NP) or evidence to have worked in this field.

Experience required:

• Experience of working in security team / DevSecOps capability and a good understanding of a SIEM.
• Good working knowledge of networking technologies but not limited to Azure Virtual Appliances, Barracuda, FortiGate, Cisco, Checkpoint

Skills required:

• Windows Event Collection/Forwarding (build, configuration and tuning)
• Log Sources and ingestion
• CIM Mapping
• Data Model Acceleration
• Field Extractions.
• RegEx
• Syslog & Parsing
• Azure Log Sources (Event hub, Security Centre, PaaS, SaaS)

Duties of the role:

• Reports to the Head of Engineering for the customer team.
• Provide key support the to customer's Security Operation Centre
• Ensuring that log data is ingested cleanly and ensuring that normalisation and integration into Splunk Common Information Model is occurring.
• Knowledge transfer for Analysts, aiding in their learning and defining triage/response processes to notable events generated by Splunk.
• Log sources are successfully migrated into Splunk
• Ensuring a stable environment and integration with the customer chosen SIEM tool Splunk
• Prioritising the available data and ensure that the events that do get forwarded to Splunk provide the department with the best value for money
• Ensure that existing reports/tasks run correctly from log sources
• Ensuring that log data is ingested cleanly and ensuring that normalisation and integration into Splunk Common Information Model is occurring.
• Ensure that existing reports/tasks run correctly from log sources.
• Onboarding new data sources and Apps and Add-ons into Splunk
• Review and currency of Technology Add-ons as they evolve
• Building/testing log ingestion sources.
• Working with Admin ON Demand / Splunk PS to conclusion of issues withing the environment

Soft skills required:

• Great communicator
• Team player and works well with others
• Flexibility to work out of hours when required
• Knowledge transfer and willing to train the client's permanent staff

Life at BAE Systems Digital Intelligence

We are embracing Hybrid Working. This means you and your colleagues may be working in different locations, such as from home, another BAE Systems office or client site, some or all of the time, and work might be going on at different times of the day.

By embracing technology, we can interact, collaborate and create together, even when we're working remotely from one another. Hybrid Working allows for increased flexibility in when and where we work, helping us to balance our work and personal life more effectively, and enhance well-being.

Diversity and inclusion are integral to the success of BAE Systems Digital Intelligence. We are proud to have an organisational culture where employees with varying perspectives, skills, life experiences and backgrounds - the best and brightest minds - can work together to achieve excellence and realise individual and organisational potential.

Division overview: Capabilities

At BAE Systems Digital Intelligence, we pride ourselves in being a leader in the cyber defence industry, and Capabilities is the engine that keeps the business moving forward. It is the largest area of Digital Intelligence, containing our Engineering, Consulting and Project Management teams that design and implement the defence solutions and digital transformation projects that make us a globally recognised brand in both the public and private sector.

As a member of the Capabilities team, you will be creating and managing the solutions that earn us our place in an ever changing digital world. We all have a role to play in defending our clients, and this is yours.