1

Splunk Cybersecurity Defense Analyst Jobs in Raleigh, NC

This role serves as a frontline defender, analyzing alerts from SIEM, EDR, and email security ... Exposure to SIEM platforms (e.g., Rapid7, Splunk) * Exposure to EDR solutions (e.g., CrowdStrike ...

This role serves as a frontline defender, analyzing alerts from SIEM, EDR, and email security ... Exposure to SIEM platforms (e.g., Rapid7, Splunk) * Exposure to EDR solutions (e.g., CrowdStrike ...

This role serves as a frontline defender, analyzing alerts from SIEM, EDR, and email security ... Exposure to SIEM platforms (e.g., Rapid7, Splunk) * Exposure to EDR solutions (e.g., CrowdStrike ...

This role serves as a frontline defender, analyzing alerts from SIEM, EDR, and email security ... Exposure to SIEM platforms (e.g., Rapid7, Splunk) * Exposure to EDR solutions (e.g., CrowdStrike ...

Cyber Security Tutor

Raleigh, NC · Remote

$18 - $40/hr

Skilled at teaching security analysis, threat modeling, and defensive strategy implementation ... Familiar with cybersecurity curricula and certification pathways including CompTIA Security+ and ...

Cyber Security Tutor

Durham, NC · Remote

$18 - $40/hr

Skilled at teaching security analysis, threat modeling, and defensive strategy implementation ... Familiar with cybersecurity curricula and certification pathways including CompTIA Security+ and ...

Cyber Security Tutor

Chapel Hill, NC · Remote

$18 - $40/hr

Skilled at teaching security analysis, threat modeling, and defensive strategy implementation ... Familiar with cybersecurity curricula and certification pathways including CompTIA Security+ and ...

next page

Showing results 1-20

Splunk Cybersecurity Defense Analyst information

See Raleigh, NC salary details

$41.8K

$96.6K

$145.8K

How much do splunk cybersecurity defense analyst jobs pay per year?

As of Jul 6, 2026, the average yearly pay for splunk cybersecurity defense analyst in Raleigh, NC is $96,625.00, according to ZipRecruiter salary data. Most workers in this role earn between $77,300.00 and $112,300.00 per year, depending on experience, location, and employer.

How does a Splunk Cybersecurity Defense Analyst typically collaborate with other IT and security teams?

A Splunk Cybersecurity Defense Analyst frequently works alongside network administrators, incident response teams, and other security professionals to detect, investigate, and remediate threats. Collaboration often involves sharing threat intelligence, creating automated alerts, and developing dashboards to provide visibility into security events across the organization. Analysts also participate in regular meetings to coordinate response strategies, review incident post-mortems, and ensure that Splunk configurations align with evolving security requirements. This cross-functional teamwork is essential for maintaining an effective and proactive cybersecurity posture.

What are Splunk Cybersecurity Defense Analysts?

Splunk Cybersecurity Defense Analysts are professionals who use the Splunk platform to monitor, analyze, and defend an organization’s digital infrastructure against cyber threats. They collect and interpret security data, investigate incidents, and create alerts and dashboards to detect suspicious activity in real-time. Their work helps organizations respond quickly to threats, ensuring the safety and integrity of sensitive information and systems. These analysts often collaborate with IT and security teams to develop best practices for threat detection and response.

What are the key skills and qualifications needed to thrive as a Splunk Cybersecurity Defense Analyst, and why are they important?

To thrive as a Splunk Cybersecurity Defense Analyst, you need a solid understanding of cybersecurity principles, threat analysis, and incident response, typically supported by a degree in information security or related certifications like CompTIA Security+ or GIAC. Proficiency with Splunk Enterprise Security, SIEM platforms, and scripting languages such as Python or PowerShell is essential. Strong analytical thinking, problem-solving abilities, and effective communication are important soft skills for collaborating with teams and responding to security incidents. These skills and qualities are critical for quickly identifying, investigating, and mitigating cyber threats to protect organizational assets.

What is the difference between Splunk Cybersecurity Defense Analyst vs Security Operations Center (SOC) Analyst?

AspectSplunk Cybersecurity Defense AnalystSecurity Operations Center (SOC) Analyst
CertificationsSplunk certifications, CompTIA Security+CompTIA Security+, GIAC certifications
Work EnvironmentPrimarily uses Splunk platform for data analysisMonitors security alerts across various tools in a SOC
Industry UsageFinancial, healthcare, tech sectors leveraging SplunkBroadly in all sectors with security teams
Job FocusAnalyzing security data with Splunk, threat detectionMonitoring, incident response, alert management

While both roles focus on cybersecurity, the Splunk Cybersecurity Defense Analyst specializes in using Splunk for data analysis and threat detection, whereas the SOC Analyst performs broader security monitoring and incident response across multiple tools. The roles often overlap but differ in platform focus and scope of responsibilities.

What are popular job titles related to Splunk Cybersecurity Defense Analyst jobs in Raleigh, NC? For Splunk Cybersecurity Defense Analyst jobs in Raleigh, NC, the most frequently searched job titles are:
What job categories do people searching Splunk Cybersecurity Defense Analyst jobs in Raleigh, NC look for? The top searched job categories for Splunk Cybersecurity Defense Analyst jobs in Raleigh, NC are:
What cities near Raleigh, NC are hiring for Splunk Cybersecurity Defense Analyst jobs? Cities near Raleigh, NC with the most Splunk Cybersecurity Defense Analyst job openings:
Infographic showing various Splunk Cybersecurity Defense Analyst job openings in Raleigh, NC as of June 2026, with employment types broken down into 93% Full Time, and 7% Part Time. Highlights an 80% In-person, and 20% Remote job distribution, with an average salary of $96,625 per year, or $46.5 per hour.
Splunk Cyber Security Infrastructure/Cloud Platform SME

Splunk Cyber Security Infrastructure/Cloud Platform SME

PLANIT Group

Morrisville, NC • On-site

$53.50 - $65.75/hr

Other

Posted 16 days ago


Job description

Splunk Cyber Security Infrastructure/Cloud Platform SME

PlanIT Group is seeking a Splunk Cyber Security Infrastructure/Cloud Platform SME to support our Federal customer in the Washington, DC area. The ideal candidate will be responsible for designing, deploying, and maintaining on-premises and cloud based Splunk environments to support enterprise-level monitoring, alerting, and reporting. This role demands deep expertise in Splunk system architecture, design, implementation, configuration, and operational support in a hybrid on-prem Unix/Linux and cloud-based environment.

Locations: Raleigh, NC, Falls Church, VA, Eagan, MN

Start Date: 07/07/25

Duration: One year plus annual extensions

Job Description: Our US Government customer is seeking an experienced Splunk Engineer with strong infrastructure and software management skills to join our dynamic team. The ideal candidate will be responsible for designing, deploying, and maintaining on-premises and cloud based Splunk environments to support enterprise-level monitoring, alerting, and reporting. This role demands deep expertise in Splunk system architecture, design, implementation, configuration, and operational support in a hybrid on-prem Unix/Linux and cloud-based environment. Candidates must be able to collaborate across DevOps, Security, and IT teams to optimize performance, ensure data integrity, system availability and support mission-critical operations. Proven hands-on experience with a large enterprise wide Splunk environment is mandatory. Off-hours and weekend efforts for systems maintenance, upgrades and support may be required from time to time.

Required skills:

  • Expertise in Splunk Enterprise architecture including indexers, search heads, deployment servers, and forwarders
  • Advanced knowledge of Unix/Linux systems administration and troubleshooting
  • Experience with Splunk deployment and configuration management in large-scale environments
  • Proficiency in writing complex Splunk queries, dashboards, and alerts using SPL (Search Processing Language)
  • Strong scripting skills in Bash, Python, or Perl for automation and integration tasks
  • Experience with Splunk upgrades, patching, and performance tuning
  • Proficiency in integrating Splunk with cloud platforms (AWS, GCP, Azure)
  • Understanding of security and compliance requirements and implementation of role-based access controls (RBAC) in Splunk
  • Experience with REST APIs for Splunk and external system integration
  • Strong knowledge of logging standards and best practices across application and infrastructure layers
  • Ability to analyze and troubleshoot complex data ingestion and parsing issues

Experience Level: A minimum of thirteen (13) to twenty (20) years' relevant experience.

Education: A degree from an accredited College/University in the applicable field of services is preferred. Four additional years of relevant experience in lieu of a college degree is required. If the individual's degree is not in the applicable field, then four additional years of related experience is required.

Certifications: (One or more required) -CompTIA Security + -CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker -CISA - Certified Information Systems Auditor CISSP CISSP-ISSEP CISSP-ISSAP CISSP-ISSMP preferred

Additional Provisions: Must be able to obtain a Public Trust Clearance. Pass both a client mandated clearance process to include drug screening, criminal history check and credit check. All candidates must be a US Citizen or US Permanent Resident. Candidate must have lived in the United States for the past 5 years. Cannot have more than 6 months travel outside the United States within the last five years. Military Service excluded. (Exception does not include military family members.)