8 Rsyslog Jobs

Job title: Cyber Defense - Splunk Admin – Assistant Manager Do you thrive on developing creative and innovative insights to solve complex issues? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture? Want to make an impact that matters? Consider Deloitte Global. Work you’ll do: The Cybersecurity Engineer position supports the SIEM Health Monitoring team which is responsible for monitoring the health and performance of the Splunk platform and data within Splunk. This role is responsible for supporting the Cybersecurity, SIEM and SOC, IR, Threat Intel teams to ensure the efficacy of the Splunk platform by creating content, mitigating monitoring gaps, performing RCA on critical components and creating content. The Role also requires you to work closely with our stakeholders and clients and deliver SIEM Health Monitoring solutions accordingly. Troubleshoot and perform RCA on various data quality alerts and SIEM platform alerts. Create and drive vendor (Splunk) support cases independently. Maintain the SIEM Health Monitoring group in ServiceNow or Azure Devops and ensure all tasks and incident SLAs as met as required by our stakeholders. Create, document and update playbooks, process documents, SOW(s), RCA content periodically. Actively seek to improve and develop new content to drive process improvement and innovation. Participate in bi-annual health checks and strategize monitoring maturity road-map. Provide excellent customer service, as we will be required to interact/work with other teams to complete our daily tasks. What you’ll be part of—our Deloitte Global culture: At Deloitte, we expect results. Incredible—tangible—results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network. In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. Who you’ll work with: The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte’s global network of firms around the globe. Qualifications Required: Bachelor’s degree in Computer Science, Information Technology, or relevant educational or professional experience. Atleast 5 years of hands-on Splunk Enterprise and or SplunkCloud Administration experience. Splunk Enterprise Core certified Admin, Power User, & User Strong Working Knowledge of the Splunk Platform and integrations to public cloud, EDR, Networking toolsets. Proficient in troubleshooting Splunk performance and data quality issues. Strong experience in analyzing, troubleshooting and providing solutions for technical issues. Knowledge about various data onboarding methods (UF, HEC, DBConnect, syslog-ng, rsyslog) and means to troubleshoot them. Knowledge and experience in GIT, Microsoft Azure DevOps, or any CI/CD tools. Experience in requirement gathering and documentation. Experience in Log parsing, lookups, calculated fields extractions using regular expression (regex). Experience in creating and troubleshooting Splunk Dashboards, Reports, Alerts, Visualizations and optimize SPL searches. Sound judgment and deduction skills with a knack to see out patterns. Proactive mindset and a self-starter with minimum supervision Excellent interpersonal and organizational skills. Preferred: Splunk Enterprise Certified Admin SplunkCloud experience is a huge plus Cribl User / Admin certification Knowledge of risk assessment tools, technologies and methods Experience with Splunk Enterprise Security How you’ll grow: Deloitte Global inspires our people at every level. We believe in investing in you, helping you at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring. We want you to ask questions, take chances, and explore the possible. Benefits you’ll receive: Deloitte’s Total Rewards program reflects our continued commitment to lead from the front in everything we do — that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters. Corporate Citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India. Benefits to help you thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 305357

Summary Position Summary Job title: Cyber Defense - Splunk Admin – Assistant Manager Do you thrive on developing creative and innovative insights to solve complex issues? Want to work on next-generation, cutting-edge products and services that deliver outstanding value and that are global in vision and scope? Work with other experts in your field? Work for a world-class organization that provides an exceptional career experience with an inclusive and collaborative culture? Want to make an impact that matters? Consider Deloitte Global. Work you’ll do: The Cybersecurity Engineer position supports the SIEM Health Monitoring team which is responsible for monitoring the health and performance of the Splunk platform and data within Splunk. This role is responsible for supporting the Cybersecurity, SIEM and SOC, IR, Threat Intel teams to ensure the efficacy of the Splunk platform by creating content, mitigating monitoring gaps, performing RCA on critical components and creating content. The Role also requires you to work closely with our stakeholders and clients and deliver SIEM Health Monitoring solutions accordingly. Troubleshoot and perform RCA on various data quality alerts and SIEM platform alerts. Create and drive vendor (Splunk) support cases independently. Maintain the SIEM Health Monitoring group in ServiceNow or Azure Devops and ensure all tasks and incident SLAs as met as required by our stakeholders. Create, document and update playbooks, process documents, SOW(s), RCA content periodically. Actively seek to improve and develop new content to drive process improvement and innovation. Participate in bi-annual health checks and strategize monitoring maturity road-map. Provide excellent customer service, as we will be required to interact/work with other teams to complete our daily tasks. What you’ll be part of—our Deloitte Global culture: At Deloitte, we expect results. Incredible—tangible—results. And Deloitte Global professionals play a unique role in delivering those results. We reach across disciplines and borders to serve our global organization. We are the engine of Deloitte. We develop and implement global strategies and provide programs and services that unite our network. In Deloitte Global, everyone has opportunities. We see the importance of your perspective and your ability to create value. We want you to fit in—with an inclusive culture, focus on work-life fit and well-being, and a supportive, connected environment; but we also want you to stand out—with opportunities to have a strategic impact, innovate, and take the risks necessary to make your mark. Who you’ll work with: The Deloitte Global Cybersecurity function is responsible for enhancing data protection, standardizing and securing critical infrastructure, and gaining cyber visibility through security operations centers. The Cybersecurity organization delivers a comprehensive set of security services to Deloitte’s global network of firms around the globe. Qualifications Required: Bachelor’s degree in Computer Science, Information Technology, or relevant educational or professional experience. Atleast 5 years of hands-on Splunk Enterprise and or SplunkCloud Administration experience. Splunk Enterprise Core certified Admin, Power User, & User Strong Working Knowledge of the Splunk Platform and integrations to public cloud, EDR, Networking toolsets. Proficient in troubleshooting Splunk performance and data quality issues. Strong experience in analyzing, troubleshooting and providing solutions for technical issues. Knowledge about various data onboarding methods (UF, HEC, DBConnect, syslog-ng, rsyslog) and means to troubleshoot them. Knowledge and experience in GIT, Microsoft Azure DevOps, or any CI/CD tools. Experience in requirement gathering and documentation. Experience in Log parsing, lookups, calculated fields extractions using regular expression (regex). Experience in creating and troubleshooting Splunk Dashboards, Reports, Alerts, Visualizations and optimize SPL searches. Sound judgment and deduction skills with a knack to see out patterns. Proactive mindset and a self-starter with minimum supervision Excellent interpersonal and organizational skills. Preferred: Splunk Enterprise Certified Admin SplunkCloud experience is a huge plus Cribl User / Admin certification Knowledge of risk assessment tools, technologies and methods Experience with Splunk Enterprise Security How you’ll grow: Deloitte Global inspires our people at every level. We believe in investing in you, helping you at every step of your career, and helping you identify and hone your unique strengths. We encourage you to grow by providing formal and informal development programs, coaching and mentoring. We want you to ask questions, take chances, and explore the possible. Benefits you’ll receive: Deloitte’s Total Rewards program reflects our continued commitment to lead from the front in everything we do — that’s why we take pride in offering a comprehensive variety of programs and resources to support your health and well-being needs. We provide the benefits, competitive compensation, and recognition to help sustain your efforts in making an impact that matters. Corporate Citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 305357

Job Title: Security Engineer (2–3 Years Experience) Location: Surat Department: Information Security / IT Reports To: Security Lead / CISO Job Summary: We are looking for a proactive and detail-oriented Security Engineer with 2–3 years of experience to join our cybersecurity team. The ideal candidate will play a key role in protecting our infrastructure, applications, and data by implementing, managing, and improving security technologies and processes. Key Responsibilities: Monitor and analyse security alerts, logs, and events using SIEM and other monitoring tools. Investigate and respond to potential security incidents, ensuring timely containment and resolution. Implement and manage security tools such as firewalls, endpoint protection, IDS/IPS, DLP, and vulnerability scanners. Ensure secure configurations of servers, network devices, and cloud platforms (AWS, Azure, etc.). Support the configuration and maintenance of log forwarding systems (e.g., rsyslog , syslog-ng ). Assist in threat hunting, malware analysis, and forensic investigations when needed. Collaborate with IT, DevOps, and application teams to enforce security best practices. Participate in internal and external security audits and assist with compliance requirements (e.g., ISO 27001, SOC 2, SEBI-CSCRF). Document incident reports, security procedures, and risk mitigation strategies. Required Qualifications & Skills: Bachelor’s degree in Computer Science, IT, Cybersecurity, or a related field. 2–3 years of hands-on experience in cybersecurity or information security roles. Solid understanding of network security, system hardening, access control, and encryption. Experience with SIEM platforms. Proficiency in Linux and Windows environments. Hands-on experience with log management and analysis tools. Knowledge of security frameworks and regulatory standards. Strong troubleshooting, analytical, and problem-solving skills. Excellent communication and collaboration abilities. Preferred Skills & Certifications: Security certifications like CEH , CompTIA Security+ , OSCP . Experience with cloud security (AWS, Azure, or GCP). Familiarity with scripting languages (Python, PowerShell, Bash). Exposure to DevSecOps practices and CI/CD security tools. What We Offer: A dynamic and security-focused work environment. Opportunities for career growth and technical development. Access to modern tools, technologies, and training. Support for certifications and continued learning. Flexible work culture and employee-centric policies. Interested? Apply now and be a part of a mission-driven team safeguarding technology and data with passion and purpose. Show more Show less

Jobs 03/18/2020 Carmatec is looking for passionate DevOps Engineers to be a part of our InstaCarma team. Not only will you have the chance to make your mark as an established DevOps Engineer, but you will also get to work and interact with seasoned professionals deeply committed to revolutionize the Cloud scenario. Job Responsibilities Work on Infrastructure provisioning/configuration management too ls. We use Packer, Terraform and Chef. Develop automation tools/scripts. We use Bash/Python/Ruby Responsible for Continuous integration and artefact management. We use Jenkins and Artifactory Setup automated deployment pipelines for microservices running as Docker containers. Setup monitoring, alerting and metrics scraping for java/scala/play applications using Prometheus and Graylog2 integrated with PagerDuty and Hipchat for alerting,reporting and monitoring. Will be doing on-call Production support an d related Incident Management, reporting & Postmortem. Create runbooks, wikis for incidents, troubleshooting performed etc. Be a proactive member of your team by sharing knowledge. Resource scheduling,orchestration using Mesos/Marathon Work closely with development teams to ensure that platforms are designed with operability in mind Function well in a fast-paced, rapidly changing environment. Required Skills A basic understanding of DevOps tools and automation framework Outstanding organization, documentation, and communication skills. Must be skilled in Linux System Administration (Ubuntu/Centos) Knowledge of AWS is a must. (EC2, EBS, S3, Route53, Cloudfront, SG, IAM, RDS etc.) Strong foundation in Docker internals and troubleshooting. Should know at least one configuration management tool – Chef/Ansible/Puppet Good to have experience at least in one scripting language – Bash/Python/Ruby Experience is an at- least one NoSQL Database Systems is a plus. – Elasticsearch/Mongodb/Redis/Cassandra Experience in a CI tool like Jenkins is preferred. Good understanding of how a 3-tier architecture works. Basic knowledge in any revision control tools like Git/Subversion etc. Should have experience working with monitoring tools like Nagios, Newrelic etc. Should be proficient in log management using tools like rsyslog, logstash etc. Working knowledge of the following items – cron, haproxy/nginx, lvm, MySql, BIND (DN S), iptables. Experience in Atlassian Tools – Jira, Hipchat,Confluence will be a plus. Experience: 5+ years Location: Bangalore If the above description is of your interest, please revert to us with your updated resume to teamhr@carmatec.com Apply now Show more Show less

Role Overview: The Infrastructure Monitoring & Security Engineer will be responsible for enhancing and maintaining monitoring platforms (Zabbix, Cacti, Report Portal), DNS and Syslog services, and ensuring the security hardening of all servers. This role requires hands-on experience in monitoring, performance tuning, upgrades, and security compliance across complex IT environments. Key Responsibilities: Zabbix Monitoring Enhancements: Design and customize templates, items, triggers, and dashboards. Optimize alert rules, integrate with third-party tools (email, WhatsApp, Telegram), and improve Grafana visualizations. Zabbix System Tuning & Upgrades: Upgrade to the latest version, fine-tune performance (pollers, proxies, DB tuning), and manage data retention policies. Cacti Monitoring Platform Management: Upgrade platform components (RRDTool, Spine, PHP, MySQL), implement performance optimizations, and apply security patches. Report Portal Optimization: Upgrade to the latest version, implement RBAC, and configure secure access with SSL. Syslog Server Optimization: Manage log rotation, compression, and archival. Migrate logs to archive server and upgrade syslog service. TACACS+ Server Hardening: Implement SSL, configure certificates, and ensure secure access controls. DNS Server Administration: Set up and manage DNS (BIND/PowerDNS), zone configuration, DNSSEC, and performance tuning. Integrate monitoring for DNS health. Security & Compliance Hardening: Perform security audits, enforce firewall rules, disable root access, enable SSL/TLS across services, manage password policies, and ensure regular encrypted backups. Required Skills: Zabbix, Grafana, Cacti, Report Portal Linux server administration (Ubuntu, CentOS, RHEL) DNS (BIND/PowerDNS), Syslog-ng or Rsyslog MySQL/PostgreSQL database tuning Shell scripting, basic Python scripting SSL/TLS, firewall configuration, SSH hardening CI/CD fundamentals and DevOps exposure (preferred) Minimum Experience: 6+ years in infrastructure monitoring, Linux administration, and security hardening. Show more Show less

Company Description TechEinHub Technologies Pvt Ltd. www.techein.com On-Site: Ahmadabad, Gujarat Role Description Experienced backend developer with a strong command of Python and deep expertise in integrating and managing syslog for logging, monitoring, and security event tracking. Skilled in building robust backend services, APIs, and microservices using frameworks like FastAPI , Flask , and Django . Specialties: Syslog protocol (RFC 3164/5424) implementation & parsing Centralized logging with Syslog (rsyslog/syslog-ng) & ELK stack Real-time log processing & alerting Python backend architecture and development RESTful APIs, authentication, and authorization Async IO, background workers (Celery/RQ), and performance optimization Working with Linux environments, socket programming, and system-level log handling Tech Stack: Python, FastAPI, Flask, Django, PostgreSQL, Redis, Celery, Docker, Linux, ELK Stack, Syslog-ng, rsyslog, Prometheus/Grafana, Git, CI/CD pipelines Share your CV on : info@techein.com Show more Show less

About Us Exotel is one of Asia's largest customer communication platforms. We are on a mission to move enterprise customer communication to the cloud. In 2020, we powered over 4 billion calls and connected over 320 million people. We work with some of the most innovative companies such as Ola, Swiggy, Zerodha, Whitehat Jr, Practo, Flipkart, GoJek, etc. We also power customer communication for some of the top banks in the country. Join us on this journey to improve how companies look at customer communication. Read our growth story here . SRO @ Exot el The SRO (Site Reliability Operations) team manages the setup/expansions of Exotel’s production Infrastructure in managed data centres ( DCs) at multiple locations. The SRO team also makes sure that our DCs are up and running all the ti me.Infrastructure includes Linux services, Linux cloud servers, Linux bare-metal servers, Network devices, internet leased lines, telephone lines, telephony hardware e tc.This team provides 24/7 coverage and support and is responsible for monitoring, reporting, troubleshooting, resolving, and escalating any Production infrastructure-related issues. This includes incidents where a Network infrastructure or a Carrier may experience issues. It also involves identifying, troubleshooting, and resolving issues with systems and applications reported through monitoring systems or trouble ticke ts.We as a team love to increase the efficiency and speed of execution by constantly automating the regular activiti es. What are we looking for? Design & Manage complex & large-scale Data Center infrastructures. (e.g. Servers/Network/Security/vendors/software upgrades, patches, hotfixes ) per business requir ement.Drive automation strategies and deployment processes following SDLC pro cessesAutomate systems administration-related solutions for various project and operational needsMonitor and react to security-related incidents as necessary and involve required stakeholders for short-term and long-term solu tions.Lead & drive root cause analysis efforts across multiple infrastructure layers( OS/ Networ k/App)Provide on-call and out-of-hours support for business-critical ser vices.Troubleshoot issues in detail whenever there is a failure with any component - Server/Monitoring/Service related issues following a solid data-driven approach while arriving at the hypothesis. Drive & implement short-term and long-term solu tions.Administer monitoring services such as Grafana, Nagios, Prometheus and custom-s criptsExplore and implement the latest technologies to improve the stability, security, efficiency, and scalability of the envir onmentDrive initiatives to reduce TAT, and MTTR for existing processes and pra cticesPerform benchmarking exercises for different system comp onentsDrive initiatives to improve the stability, security, efficiency, and scalability of the envir onmentMentor juniors in th e team What will you do? Must-haves [Must Have] 7+ years of strong hands-on working knowledge of RHEL/CentOS/Ubuntu in an enterprise environment & good understanding of the design and configuration of UNIX/Lin ux systems.[Must Have] Hands-on experience with Orchestration/Configuration Management tools (e.g. Ansible, Chef, or Puppet) and CI/CD tools li ke Jenkins.[Must Have] 7+ years of experience in supporting and managing a large number of complex multi-server, multi-vendor, multi-technology infra structures.[Must Have] 7+ years of experience in leading projects from technical design through t o delivery.[Must Have] Hands-on experience with one or more scripting languages (e.g. Ba sh, Python)[Must Have] Strong in Computer Science fundamentals and strong exploratory skills for exploring new-age t echnologies[Must Have] Exposure to a few of the following: Logging (Rsyslog), Monitoring frameworks (Prometheus, Nagios), Linux Security, Databases - MySQL/SQL[Must Have] A "SRE" mindset. You own what you will set up &a mp; manage. Good-to-haves 4+ years of hands-on experience in setting up and managing physical data centr e environmentsHave experience working in AWS services, VPC, EC2, S3, ELB, RDS, IAM, CloudFront Lambda,a nd Cloudwatch. Show more Show less

Job Title Platform Security Engineer Job Description Job Title Platform Security Engineer Job Description The Security Admin in the Security Engineering team is a new role responsible for supporting, maintaining, automating and improving our IT Security platforms. You will ensure IG’s security platforms are reliable and effective, and will proactively develop improved automation and integration among our systems. As IG migrates towards greater use of modern approaches like CI/CD pipelines, infrastructure-as-code, and immutable infrastructure, you will be responsible for developing and improving our platforms to align with these approaches. You will gain hand-on experience with many modern Enterprise security products, and play a key role in applying these tools to the challenges of an in-house SOC and Security team. So, who are we? Hello, we’re IG Group. No, not Instagram – though we're a pretty big deal ourselves. We’re a global, FTSE 250-listed company made up of a collection of progressive fintech brands in the world of online trading and investing. The best part? We’ve snapped up many awards for our top-class platforms, forward-thinking products, and incredible employee experiences. We believe in financial freedom. And our purpose is to help ambitious people achieve it. Around 400,000 people use our groundbreaking technology and forward-thinking platforms to trade the financial products they know and love. Did we mention we have offices in 18 countries? Yes, when you join IG Group, you'll have the chance to work across multiple brands, with people all over the world. Join us for an exciting future and let’s innovate together! Your role in the Team The Security Admin is responsible for supporting, maintaining, automating and improving our IT Security platforms. You will perform a wide and growing variety of technical tasks within the Security Engineering team. Your role will be to ensure the smooth and effective operation of a growing set of on-premise and cloud-based security products and solutions. Beyond maintenance, you will be the go-to person for adding functions and features to these tools such as onboarding new log sources, configuring new product integrations and developing custom automation. Maintain our key platforms by performing upgrades, designing and implementing health monitoring, extending functionality with new integrations and providing new capabilities with automation. Manage our SIEM platform, including SaaS SIEM & SOAR products and on-premises log collection with WEC and Rsyslog. Support the SOC team by ensuring that audit logs are collected, integrations function and any new requirements are developed and added. Builds and maintains the tools and integrations for IG’s in-house SOC Selects and implements technical security controls and platforms Provides security SME support to IT infrastructure and development projects Collaborates with architecture and application security teams to continually improve IG’s security posture. What you'll do Provide Maintenance & Support Perform necessary upgrades and troubleshoot issues with all security tools, especially the SIEM/SOAR/Logging platform, Vulnerability Scanner, Secrets Vault and Cloud Security Posture Management solution. Maintain and improve the growing variety of scripts and utilities used to perform many regular tasks within the SOC. Assist the SOC team with any questions or challenges they have with our toolset. Deliver Continuous Improvements Seek out and implement improvements to our existing tools for better performance, reliability or capability. Adapt our tools to an ever-changing environment, keeping pace with IG's own technology journey and the wider world of best practices. Take on and deliver requests from the wider security team for changes to the way our tools currently work. Enable Automation               Act as an SME for scripting and systems programming, delivering new scripts and utilities to meet the needs of the security team.               Drive improved integration between our various tools to enable new capabilities or solve exiting problems.               Enable the transition of our existing tools and configuration to a CI/CD and Infrastructure-as-Code model. Who we’re looking for? You’re curious about things like the client experience, the rapid developments in tech, and the complex world of fintech regulation. You’re also a confident, creative thinker with a knack for innovating. We know that you know every problem has a solution. Here, you can try new ideas, and lead the way in creating inspiring experiences for our clients and everyone around you. We don’t fit the corporate stereotype. If you want to work for a traditional, suit-and-tie corporate that just gives you a pay cheque at the end of the month, we might not be for you. But, if you have that IG Group energy and you can stand behind what we believe in, let’s raise the bar together. What you’ll need for this role  This is a mid-level role with significant independence, and therefore candidates are expected to convincingly satisfy most of the listed technical requirements while possessing the ability to work both independently and as part of a team. Successful candidates will demonstrate an independent and self-motivated approach to continuing the development of their own skills and knowledge. 3+ years of experience in technical IT and/or security roles in an enterprise IT environment is required. Scripting and/or programming capability is vital to this role. You will have the ability to code in at least two of the following languages, and the willingness to learn the others:               Python               PowerShell               Bash               Terraform A strong understanding of technical IT concepts is required, including the majority of the following:               Windows and Linux operating systems and system administration.               Virtualisation and Containers               Public Cloud               Networking & DNS               Gitlab / GitHub Strong analytical and problem solving skills Able to communicate complex information clearly and logically, both verbally and in writing. Able to collaborate effectively across teams within a complex, rapid-moving environment. How you’ll grow When you join IG Group, we want you to have more than a job – we want you to have a career. And you can. If you spot an opportunity, we want you to chase it. Stretch yourself, challenge your self-beliefs and go for the things you dream of. With internal and external learning opportunities, and the tools to help you skyrocket to success, we’ll support you all the way. The perks I t really is more than a job. We’ll recognize your talent and make sure that you can still have a life – at work, and outside of it. Networks, committees, awards, sports and social clubs, mentorships, volunteering opportunities, extra time off… the list goes on. Where you’ll work We follow a hybrid working model; we reckon it’s the best of both worlds. This model also feeds into our secret ingredients for innovation: diversity, flexibility, and close connection. Plus, you’ll be welcomed into a diverse and inclusive workforce with a lot of creative energy. Ask our employees what their favorite thing is about working at IG, and you’ll hear an echo of ‘our culture’! That’s because you can come to work as your authentic self. The things that make you, you – like your ethnicity, sexual orientation, faith, age, gender identity/expression or physical capacity – can bring a fresh perspective or new skill to our business. That’s why we welcome people from various walks of life; and anyone who wants to help us realize our vision and strategy. So, if you’re keen to connect with our values, and lead the charge on innovation, you know what to do. Apply now And these opportunities truly are endless because we have some bold targets. We plan to expand our global presence, increase revenue growth, and ultimately deliver the world’s best trading experience. We’d love to have you along for the ride. Number of openings 1