We are looking for a Splunk Engineer to join our growing team in Brisbane.

Orro has a supportive team-based culture that promotes personal initiative, self-sufficiency, and the ability to be hands-on with your work. You will be part of a highly motivated team, on a mission to create “future now” solutions that make it faster, simpler and safer for people to access, store and share information – wherever, whenever and with whomever they want.

As a senior member of the Security Operations Centre team in Brisbane, you

Your main responsibilities will include but are not limited to:

• Deploy, configure and maintain Splunk environments on-premise and in cloud.
• Develop Splunk SPL queries to support security operations and customer data analysis requirements.
• Develop and customise Splunk dashboards to meet specific customer needs.
• Use Splunk TA’s to ingest, normalise and optimise data.
• Configure and manage Splunk Universal and Heavy Forwarders, Search Heads, Indexers and Deployment Servers.
• Implement and maintain data retention and backup policies.
• Conduct performance tuning and capacity planning activities for Splunk environments, including monitoring system health, identifying bottlenecks and scaling resources to meet demand.

We are looking for a well-organised professional, with initiative and enthusiasm. You will have over 5 years of relevant experience and will have a good mix of the following skills, knowledge & experience:

• Proficient in Splunk Enterprise Security or IT Service Intelligence modules.
• Expert in complex query development using Splunk Search Processing Language (SPL).
• Ability to implement advanced data models and analytics using Splunk.
• Experience in integrating Splunk with other tools and platforms using APIs.
• Knowledge of scripting languages such as Python, Bash or PowerShell.
• Certification in Splunk, such as Splunk Certified Architect, Splunk Certified Admin, or Splunk Certified Developer, is a plus.
• Knowledge of standards and frameworks including Essential 8, NIST CSF, CIS18 and ISO/IEC 27000 series.
• Ability to document and explain technical details clearly and concisely to both technical and non-technical audiences.

Note: The role is subject to state and federal police background checks.

Why Orro?

Orro is an exciting Australian technology company with a wealth of experience and expertise. We welcome and celebrate diversity of perspectives, background, and experience. We are committed to creating a workplace that supports diversity of all cultures including LGBTQI and those living with a disability including those on the autism spectrum.

If you require any assistance with submitting your application or need to discuss reasonable adjustments in the recruitment process, please get in touch with us on our website.

We are also a company that takes its Corporate Social Responsibility seriously and we try our best to positively impact society and the environment in all possible ways.

What's in it for you?

• An opportunity to join a rapidly growing national organisation – we were recognised as one of Australia’s fastest growing companies, making the 2021 AFR Fast100 list.
• Orro was also named Fortinet’s APAC Partner of the Year 2021.
• An opportunity to work with a supportive and passionate team to change the way Australian businesses connect, collaborate, and operate.
• An opportunity to drive a pivotal function within a growing business at an exciting point in its history.
• A competitive remuneration package.
• An opportunity for career advancement as our business expands further.

We also support our staff and their loved ones in a variety of ways, including public holiday swaps to support family responsibilities and diversity with religious holidays. Parental and caregiver leave policies, flexible working, Orro-wide mentoring program, and an emerging leaders development program.