Opportunity to work in a world class organization
Exposure to global operations, processes and stakeholders
Work in a collaborative and fast paced environment - Montreal
Rio Tinto is a leading global mining and metals company. Our focus is on finding, mining and processing the Earth's mineral resources in order to maximise value for our shareholders.
Everything we do is done with the future firmly in mind, so our employees are rewarded with opportunity, an open and diverse culture and a responsible working environment in which they can go further.
We are a diverse team of talented, enthusiastic individuals who foster a culture of inclusion. No matter how they may differ, our people share one thing in common.
It’s a belief that work is more rewarding when we are accepted and valued for our differences, not judged by them. We all have something to contribute, and it’s this contribution that makes for a great organisation and fulfilling career.
We are looking for a Splunk Engineer to be the subject matter expert for our Splunk environment. This position requires a broad IT background, expertise in Cyber Security, strong familiarity with log collection, knowledge of network and server infrastructure, and strong analytical skills to support Cyber Security’s mission to protect Rio Tinto’s Digital Assets (including Industrial Control Systems).
Rio Tinto Information Systems and Technology (IS&T) is charged with delivering the portfolio of projects and services that are provided to and in collaboration with operational business units and other shared service organisations.
What the role entails
This role is a great opportunity to develop Splunk and our Cyber Security Operations toolsets, dashboard and report creation and other automation tasks.
Working and reporting to the Manager Cyber Ops Delivery & Assurance, you will be :
Maintaining, implementing and continuously improving our Splunk environment and Splunk Enterprise Security.
Assisting in project design of how new security controls are integrated into current toolsets and processes to support security operations.
Assisting in the delivery and continuous improvement of Advanced Threat Detection services.
Contributing to the development of cyber security toolsets and also the reporting of metrics to Cyber Security, IS&T and the Business.
An active team member in the day to day delivery of Cyber Security operations services
What you will need for this role
To succeed in this role, you will have :
Minimum of 3 years related experience
Bachelor’s degree or equivalent experience
Splunk Certified Admin Certifications
Experience deploying and maintaining Splunk Enterprise Security
Previous security operations experience
Ability to perform basic scripting tasks with Splunk to automate repeatable processes using Python, PowerShell, Perl, etc.
Good knowledge in the cybersecurity field,experienceinabreadthofcybersecuritytopics (Firewall, IPS IDS, EndPoint Security ect)
SANS or (ISC)² Certifications desirable
Bilingual (English / French)