Splunk Technical Manager

Family Description

Customer Services (CS) covers customer service in different areas such as technical support, account support, operations, maintenance, network design / deployment / integration / transformation, and education. Generates revenue and the increase of customer satisfaction through planning, designing, deploying, integrating, optimising, operating, and maintaining phases.

Subfamily Description

Managed Services (MSE) is responsible for keeping the network running and proposing / conducting network upgrades based on business requirements. Covers technical managing and operating of agreed components of IT and telecommunications services provided to end users of Nokia customers, within contracts agreed with those customers.

 

 Sound in SIEM Splunk Administration/ELK / Development.

• Event logging and event analysis and experience in forensic analysis, Packet Analysis tools like Wireshark/NMAP, TCP Dump etc. Good knowledge in enterprise security products like SIEM tools, SOC, Security Incident Management, Threat Intel, Malware analysis, Firewalls, IPS, Web/content Filtering tools, AV, APT Tools, Wireshark, TCP Dump, Encase/Any other Forensic tool kit, Conduct and lead large complex investigations and Digital Forensics, threat hunting campaigns, knowledge of Vulnerability assessment and penetration testing.
• Good understanding of Diverse Telecom and Infrastructure technology 5G, 4G, Fixed line, Windows, Unix, Security tools technology, SOC operation, Incident Life cycle, NIST framework
• Provide feedback and suggestions on improving the analysis and rules used for user behavior analysis
• Proficient in creating SIEM use-cases, correlation rules and baselines to monitor Malicious activity, IOCs, and anomalies
• Maintaining documentation of all configurations and changes to the system
• Troubleshooting Splunk performance issues / Opening support cases with Splunk.
• Monitor the Splunk infrastructure for capacity planning and optimization. Manage Uptime of Technical systems, EPS analysis
• Identifying bad searches/dashboards and partnering with the creators to improve performance.
• Ability to create operations documentation for maintaining the Splunk infrastructure.
• Create, customize, and manage dashboards / reports.
• Integration of API/application such as Service now/Remedy
• Establish KPI, review & manage security logs and provide reports based on KPI and metrics.
• Responsible for overseeing the team’s response to cybersecurity incidents, ensuring that they follow established incident response protocols and procedures
•  Conduct Detailed Review – Fortnightly, Incident Review, Discussion on Open Issues and Risk Tracker, Client Escalations handling.
• Lead the day-to-day functions within the SOC
• Supervise and Manage SOC analysts, Threat hunters, Incident response.
• Develop and report status of SOC and security posture to Management and customers.
• Provide technical and functional guidance to the team members regarding event monitoring and incident analysis and response Manage SOC operational responsibilities and task of the team

 

 

Soft Skills 

• Excellent communicator and technical writing skills, able to engage and effectively respond to diverse stakeholders. Good in interpersonal skills, capable to interact with people at all levels
• Action-oriented and results driven with strong time-management skills
• Flexible attitude, reliable, problem-solving, team player and analytical skills
• Excellent interpersonal skills, capable to interact with people at all levels

 

Certification &Experience

• Min 10years in cyber security operations, 24 X7 Telecom/IT SOC having hands on experience in Incident response, Investigation in a large telecom/ Enterprise IT Environment.
• BTech (CS/IT/ECE), Bachelor's degree Technical, or equivalent work experience
• Splunk Admin certification
• CISSP, GIAC, CEH, CCNA, CompTIA Security+
• CIS Benchmarking, NIST CSF, other Industry Best baseline security Training or certifications.

Come create the technology that helps the world act together

Nokia is committed to innovation and technology leadership across mobile, fixed and cloud networks. Your career here will have a positive impact on people’s lives and will help us build the capabilities needed for a more productive, sustainable, and inclusive world.
We challenge ourselves to create an inclusive way of working where we are open to new ideas, empowered to take risks and fearless to bring our authentic selves to work

What we offer
 
Nokia offers continuous learning opportunities, well-being programs to support you mentally and physically, opportunities to join and get supported by employee resource groups, mentoring programs and highly diverse teams with an inclusive culture where people thrive and are empowered.

Nokia is committed to inclusion and is an equal opportunity employer

Nokia has received the following recognitions for its commitment to inclusion & equality:

• One of the World’s Most Ethical Companies by Ethisphere
• Gender-Equality Index by Bloomberg
• Workplace Pride Global Benchmark

At Nokia, we act inclusively and respect the uniqueness of people. Nokia’s employment decisions are made regardless of race, color, national or ethnic origin, religion, gender, sexual orientation, gender identity or expression, age, marital status, disability, protected veteran status or other characteristics protected by law.
We are committed to a culture of inclusion built upon our core value of respect.

Join us and be part of a company where you will feel included and empowered to succeed.