Splunk Security Engineer

Role Overview

We are seeking a highly skilled Senior Splunk Developer / SME to lead Splunk engineering, integration, dashboarding, and performance optimization efforts within a large-scale enterprise environment. The ideal candidate will have strong expertise in Splunk platform architecture, security frameworks, automation, and cloud monitoring.

You will collaborate in an agile environment, work closely with security, IT operations, and cloud engineering teams, and ensure Splunk solutions meet enterprise-level performance, compliance, and security standards.

Key Responsibilities

• Lead Splunk development, customization, and platform optimization
• Build & optimize dashboards, alerts, reports, and search queries
• Integrate custom data sources, onboard logs & ensure parsing/field extraction
• Improve performance and tune Splunk search & indexing pipelines
• Provide SME guidance to internal teams and support Splunk best practices
• Work with security/compliance teams to support audit and monitoring needs
• Collaborate in agile squads and contribute to security monitoring initiatives
• Support cloud monitoring (GCP/AWS/Azure) and enterprise security tools

Must-Have Skills

• Min. 8 years Splunk development & architecture
• Splunk certifications (Enterprise Admin/Architect/Security)
• Hands on expertise in Splunk Enterprise Security & UEBA
• Strong knowledge of NIST, ISO 27001, SOC2, PCI DSS frameworks
• Experience in log ingestion, parsing, CIM mapping, dashboarding
• Performance tuning & search query optimization
• Strong understanding of security technologies & best practices

Nice to Have

• Experience with security incident workflows
• SIEM integration and security analytics exposure
• Knowledge of DevSecOps tools & cloud logging pipelines

Seniority level

Mid-Senior level

Employment type

Contract

Job function

Information Technology

Industries

IT Services and IT Consulting