Senior Security Engineer with Splunk

About the Role:

We are seeking a skilled Splunk Security Engineer to design, implement, and maintain advanced security monitoring solutions. You will be responsible for building and tuning detection rules, dashboards, and automated workflows to improve threat detection, incident response, and operational efficiency. The role involves working with enterprise-scale security data and integrating Splunk with various systems to enhance visibility and response capabilities.

Key Responsibilities:

• Develop, tune, and maintain correlation searches, alerts, and dashboards in Splunk Enterprise Security.

• Integrate Splunk with automation and orchestration tools to streamline security response processes.

• Design and implement data ingestion pipelines to onboard log sources from diverse systems.

• Parse, normalize, and enrich security data for accurate detection and reporting.

• Ensure stable, scalable, and secure operation of the Splunk platform, including agent deployment and monitoring.

• Collaborate with internal teams to expand logging coverage and improve security monitoring across IT environments.

Requirements:

• 5+ years of experience in IT or technology roles, including at least 3 years hands-on experience with Splunk Enterprise Security.

• Proven experience developing and tuning alerts, dashboards, and correlation searches.

• Strong understanding of log formats, parsing, regular expressions, and data normalization.

• Proficiency in scripting or programming languages (Python, PowerShell, Perl, SQL, etc.).

• Solid understanding of cybersecurity principles, threat detection, and security operations workflows.

• Familiarity with enterprise IT environments, networks, operating systems, applications, and cloud platforms.

• Ability to handle sensitive security information with discretion and maintain high ethical standards.

Preferred Qualifications:

• Experience implementing Splunk solutions in large or complex IT environments.

• Knowledge of automation, monitoring, and advanced analytics for security operations.

• Familiarity with Agile or DevOps delivery methodologies.

Why This Role:

• Work with enterprise-scale security data and advanced detection solutions.

• Direct impact on improving threat detection, incident response, and operational efficiency.

• Opportunity to expand expertise in Splunk, cybersecurity, and enterprise monitoring.