ZipRecruiter

Log In

1

Splunk Engineer Jobs in Oregon (NOW HIRING)

ECS

Senior Splunk Engineer

Portland, OR · On-site

$121.40K - $166.50K/yr

The Senior Splunk Engineer designs, implements, maintains, and optimizes Splunk capabilities that support cybersecurity monitoring, investigation, reporting, and security operations. This role is ...

ECS

Splunk Architect Lead

Portland, OR · On-site

The ideal candidate combines deep Splunk architecture expertise, hands-on engineering experience, security operations knowledge, and leadership ability to guide engineers, analysts, stakeholders, and ...

Cisco

OR · On-site

Be the voice of the seller and sales engineer/technical seller in all content planning and design, ensuring sellers can effectively position Splunk as Cisco's Digital Resilience Platform, articulate ...

ECS

SOC Tier 3 Analyst

Portland, OR · On-site

... Splunk engineering, security engineering, and program stakeholders. Key Responsibilities Advanced Incident Analysis & Escalation Leadership * Lead analysis of complex, high-impact, multi-stage, or ...

ECS

SOC Tier 2 Analyst

Portland, OR · On-site

Provide operational requirements and validation feedback to SOC Analyst 3, SOC Threat Hunter, Senior Splunk Engineer, Splunk Architect/Lead, Security Engineer, and SOC Technical Writer as appropriate.

ECS

Security Engineer

Portland, OR · On-site

Coordinate with SOC analysts, Splunk engineers, threat hunters, and system administrators to ensure security tooling supports monitoring, investigation, and response requirements. Vulnerability, Risk ...

Cisco

Account Executive - Splunk Commercial

Portland, OR · On-site +1

$136K - $187K/yr

... Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end ... Relevant experience in software industry domains such as IT systems, enterprise management, DevOps, ...

iHerb

OR

$114.40K - $156.80K/yr

About the Role We are looking for a hands-on Security Automation Engineer and builder who thrives ... Architect, build, and maintain Splunk Enterprise Security (ES) integrations, including onboarding ...

ECS

SIEM Infrastructure and Detection Engineer

Portland, OR · On-site +1

$151.70K/yr

The SIEM Infrastructure and Detection Engineer supports a federal energy sector cybersecurity ... Lead the design, deployment, and monitoring of enterprise SIEM platforms (e.g., Splunk, Elastic ...

AditiStaffing

Reliability Engineer

Beaverton, OR

$106.60K - $134.20K/yr

Reliability Engineer Location: Beaverton, OR Type: 12+ months Contract Position: Reliability ... Java, (7) Splunk, (8) New Relic, (9) cloud computing / Amazon AWS, (10) Linux. Additional ...

AditiStaffing

Devops/ AWS Engineer

Beaverton, OR

$55 - $75.25/hr

... Engineer Duration: 12+ months Location: Beaverton, OR Responsibilities Write and manage Puppet ... Newrelic, Cloudwatch, Splunk, etc.) Familiarity with Agile and waterfall development methodologies ...

Guidehouse

OR

$102K - $170K/yr

Guidehouse seeks a Data Engineer to support in building, optimizing, and maintaining data pipelines ... Hands-on experience with monitoring and logging tools, including Splunk, CloudWatch, Kibana, and ...

Guidehouse

OR

$113K - $188K/yr

Guidehouse seeks a Data Engineer to support in building, optimizing, and maintaining data pipelines ... Hands-on experience with monitoring and logging tools, including Splunk, CloudWatch, Kibana, and ...

Guidehouse

OR · On-site

$113K - $188K/yr

Guidehouse seeks a Data Engineer to support in building, optimizing, and maintaining data pipelines ... Monitoring and logging tools (Splunk, CloudWatch, Kibana, Elasticsearch) * Effectively operate ...

AditiStaffing

Sr. Release Engineer

Beaverton, OR

As a Sr. Release Engineer you will be responsible for automating, configuring, and executing builds ... Splunk, New Relic, Dynatrace * Puppet, Maven, Ant, Nolio, Chef, OpenShift * Continuous Integration ...

next page

Showing results 1-20

People also search for

All JobsSplunk Engineer JobsSplunk Engineer Jobs in Oregon

Splunk Engineer information

What are the key skills and qualifications needed to thrive as a Splunk Engineer, and why are they important?

To thrive as a Splunk Engineer, you need expertise in data analysis, log management, and scripting languages like Python or Bash, often backed by a degree in computer science or related field. Familiarity with Splunk Enterprise, Splunk Cloud, and certifications such as Splunk Certified Power User or Splunk Certified Admin are typically required. Strong problem-solving abilities, attention to detail, and effective communication help you stand out in this position. These skills are crucial for efficiently managing complex data environments, delivering actionable insights, and supporting organizational security and operations.

What are some common challenges Splunk Engineers face when managing large-scale log data environments?

Splunk Engineers working with large-scale log data environments often encounter challenges related to data ingestion bottlenecks, maintaining indexer performance, and ensuring efficient search query execution. Balancing storage management with retention policies and optimizing dashboards for real-time analysis can also be complex. Successful engineers proactively collaborate with IT, security, and development teams to fine-tune data sources, streamline parsing, and implement best practices for scalability, ensuring that Splunk delivers timely and actionable insights.

What is a Splunk Engineer?

A Splunk Engineer is an IT professional who specializes in deploying, configuring, and managing Splunk software for data analysis and monitoring. They are responsible for setting up data ingestion pipelines, creating dashboards, and developing alerts to help organizations monitor their systems and security. Splunk Engineers often work with large datasets to extract meaningful insights, support troubleshooting, and ensure system health. Their expertise is essential for leveraging Splunk’s capabilities in IT operations, security, and compliance.

What is the difference between Splunk Engineer vs Data Analyst?

AspectSplunk EngineerData Analyst
Required CredentialsSplunk certifications, technical degreesStatistics, data analysis certifications, degrees
Work EnvironmentIT/security teams, tech-focused companiesBusiness, marketing, finance departments
Employer & Industry UsageTech, cybersecurity, enterprise ITFinance, healthcare, retail, marketing

Splunk Engineers focus on deploying, configuring, and maintaining Splunk platforms for data monitoring and security. Data Analysts interpret data to generate insights for business decisions. While both roles work with data, Splunk Engineers specialize in technical implementation of Splunk tools, whereas Data Analysts focus on analyzing data to inform strategies.

What are popular job titles related to Splunk Engineer jobs in Oregon? For Splunk Engineer jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Splunk Engineer jobs in Oregon look for? The top searched job categories for Splunk Engineer jobs in Oregon are:
Splunk Engineer jobs near you
Senior Splunk Engineer

Senior Splunk Engineer

ECS

Portland, OR • On-site

$121.40K - $166.50K/yr

Full-time

Posted 10 days ago

Job description

Everforth ECS is seeking a Senior Splunk Engineer to work in our Portland, OR office. Please Note: This position is contingent upon contract award.
The Senior Splunk Engineer designs, implements, maintains, and optimizes Splunk capabilities that support cybersecurity monitoring, investigation, reporting, and security operations. This role is responsible for Splunk platform engineering, data onboarding, search performance, dashboards, alerts, integrations, and technical support for SOC and cybersecurity stakeholders.
The ideal candidate has deep hands-on experience administering Splunk Enterprise, Splunk Enterprise Security, or Splunk Cloud environments; understands security data pipelines and SIEM operations; and can independently troubleshoot complex platform, data ingestion, parsing, indexing, search, and content issues while collaborating with analysts, engineers, and program leadership.
Key Responsibilities
Splunk Platform Engineering & Administration
  • Administer, configure, maintain, and optimize Splunk Enterprise, Splunk Enterprise Security, Splunk Cloud, or distributed Splunk environments.
  • Support indexers, search heads, deployment servers, heavy forwarders, universal forwarders, apps, add-ons, knowledge objects, and role-based access controls.
  • Monitor platform health, availability, license utilization, data ingestion, storage, capacity, search concurrency, and overall performance.
  • Plan and execute upgrades, patches, configuration changes, backup and recovery activities, and platform maintenance in accordance with change management processes.

Data Onboarding & Integration
  • Onboard, normalize, validate, and maintain security, infrastructure, cloud, endpoint, network, application, identity, and operational data sources.
  • Configure and troubleshoot inputs, forwarders, sourcetypes, indexes, props.conf, transforms.conf, field extractions, lookups, event types, tags, and data routing.
  • Map data to the Splunk Common Information Model and support data model acceleration, normalization, and content readiness for security analytics.
  • Integrate Splunk with security tools, ticketing systems, SOAR platforms, vulnerability tools, EDR solutions, firewalls, IDS/IPS, cloud platforms, and identity systems.

Security Analytics & Detection Support
  • Develop, maintain, and tune SPL searches, correlation searches, alerts, dashboards, reports, notable event rules, and security monitoring use cases.
  • Partner with SOC analysts, threat hunters, threat intelligence analysts, and security engineers to translate detection requirements into reliable Splunk content.
  • Tune detections and searches to improve fidelity, reduce false positives, increase operational value, and support risk-based alerting or prioritization.
  • Support incident response and investigations by validating log availability, developing ad hoc searches, retrieving evidence, and assisting with event timelines.

Dashboarding, Reporting & Metrics
  • Design and maintain dashboards, reports, scorecards, and visualizations for SOC operations, platform health, data coverage, compliance, and leadership reporting.
  • Track and report key Splunk metrics such as ingestion volume, license consumption, search performance, alert volume, source coverage, and data quality.
  • Automate recurring reporting and improve visibility into monitoring coverage, data source gaps, content effectiveness, and operational trends.
  • Develop executive, operational, and technical views that communicate platform status and security monitoring performance clearly and accurately.

Troubleshooting, Optimization & Engineering Support
  • Diagnose and resolve complex Splunk issues involving ingestion delays, parsing problems, dropped data, search errors, slow dashboards, indexer performance, and app conflicts.
  • Optimize SPL, data models, summary indexes, scheduled searches, acceleration settings, storage usage, and search workloads for reliability and efficiency.
  • Support infrastructure planning, scaling, retention strategies, data lifecycle management, high availability, and disaster recovery considerations.
  • Collaborate with system administrators, network engineers, cloud teams, security engineers, and vendors to resolve technical dependencies and platform issues.

Documentation, Standards & Continuous Improvement
  • Develop and maintain architecture diagrams, onboarding procedures, configuration standards, runbooks, troubleshooting guides, and operational documentation.
  • Support governance of index naming, source type standards, app deployment, permissions, data retention, change control, and knowledge object management.
  • Evaluate new Splunk apps, add-ons, content packs, integrations, and platform capabilities to improve security monitoring and operational efficiency.
  • Mentor junior engineers and analysts on Splunk usage, search practices, data validation, dashboard development, and platform troubleshooting.

  • 5+ years of experience in cybersecurity engineering, SIEM engineering, log management, infrastructure engineering, or security operations support.
  • 3+ years of hands-on Splunk administration, engineering, or implementation experience in enterprise or mission-critical environments.
  • Strong working knowledge of Splunk Enterprise, Splunk Enterprise Security, or Splunk Cloud administration, including indexes, forwarders, apps, add-ons, permissions, and distributed components.
  • Demonstrated experience with SPL, data onboarding, sourcetype configuration, field extraction, parsing, normalization, dashboards, reports, and alert development.
  • Experience troubleshooting ingestion, indexing, search performance, dashboard performance, licensing, and data quality issues.
  • Understanding of SOC operations, security monitoring, incident response, detection engineering, and common cybersecurity data sources.
  • Ability to document technical procedures clearly and communicate effectively with analysts, engineers, stakeholders, and leadership.

Apply