1

Splunk Engineer Jobs (NOW HIRING)

Sr. Splunk Engineer

San Francisco, CA · Hybrid

$134K - $185K/yr

The Senior Splunk Engineer maintains the logging infrastructure for Splunk Enterprise and other dependent infrastructure, such as syslog (syslog-ng/rsyslog) to ensure that reports are available, fast ...

Sr. Splunk Engineer

Chicago, IL · Hybrid

$118K - $161K/yr

The Senior Splunk Engineer maintains the logging infrastructure for Splunk Enterprise and other dependent infrastructure, such as syslog (syslog-ng/rsyslog) to ensure that reports are available, fast ...

Sr. Splunk Engineer

Scottsdale, AZ · Hybrid

$115K - $158K/yr

The Senior Splunk Engineer maintains the logging infrastructure for Splunk Enterprise and other dependent infrastructure, such as syslog (syslog-ng/rsyslog) to ensure that reports are available, fast ...

Splunk Engineer

Dallas, TX · Remote

CA$55 - CA$60/hr

Position Title Splunk Engineer Location Remote (100%) Type of Hire Contract Start Date Immediate Project description * The project focuses on enhancing enterprise observability, operational ...

Senior Splunk Engineer

Portland, OR · On-site +1

$125K - $148K/yr

The Senior Splunk Engineer designs, implements, maintains, and optimizes Splunk capabilities that support cybersecurity monitoring, investigation, reporting, and security operations. This role is ...

Senior Splunk Engineer

Washington, DC · On-site

$129K - $177K/yr

The Senior Splunk Engineer will be responsible for designing, implementing, and optimizing Splunk solutions to support cybersecurity, compliance, and operational visibility across government systems.

... science, engineering) * 2-5 years of windows and linux system administration * 1-3 years of commercial software development experience * 1-3 years of experience with Splunk, SIEMs, and analytic ...

Splunk Engineer : Familiar with Splunk architectures in addition to RMF and Splunk best practices. Experience with Splunk vendor modules and solutions such as: SOAR, IT Services Infrastructure (ITSI ...

Splunk Engineer

Plano, TX · On-site

$63.68 - $71.68/hr

Genesis10 is currently seeking a Splunk Engineer for a contract position with a Global Financial Institution located in Charlotte, NC or Plano, TX. This is a 12+ month contract opportunity. The ...

Responsibilities The Mid-Level Splunk Engineer supports enterprise-wide monitoring, alerting, and analytics across the customer's operational and security environments. This position develops and ...

Responsibilities The Mid-Level Splunk Engineer supports enterprise-wide monitoring, alerting, and analytics across the customer's operational and security environments. This position develops and ...

Responsibilities The Mid-Level Splunk Engineer supports enterprise-wide monitoring, alerting, and analytics across the customer's operational and security environments. This position develops and ...

Architect, implement, and manage Splunk infrastructure and solutions. * Administer Splunk ... Lentech's Mission Technical Solutions Division is focused on providing engineering, operations, I&T ...

Responsibilities The Mid-Level Splunk Engineer supports enterprise-wide monitoring, alerting, and analytics across the customer's operational and security environments. This position develops and ...

next page

Showing results 1-20

Splunk Engineer information

What are the key skills and qualifications needed to thrive as a Splunk Engineer, and why are they important?

To thrive as a Splunk Engineer, you need expertise in data analysis, log management, and scripting languages like Python or Bash, often backed by a degree in computer science or related field. Familiarity with Splunk Enterprise, Splunk Cloud, and certifications such as Splunk Certified Power User or Splunk Certified Admin are typically required. Strong problem-solving abilities, attention to detail, and effective communication help you stand out in this position. These skills are crucial for efficiently managing complex data environments, delivering actionable insights, and supporting organizational security and operations.

What are some common challenges Splunk Engineers face when managing large-scale log data environments?

Splunk Engineers working with large-scale log data environments often encounter challenges related to data ingestion bottlenecks, maintaining indexer performance, and ensuring efficient search query execution. Balancing storage management with retention policies and optimizing dashboards for real-time analysis can also be complex. Successful engineers proactively collaborate with IT, security, and development teams to fine-tune data sources, streamline parsing, and implement best practices for scalability, ensuring that Splunk delivers timely and actionable insights.

What is the difference between Splunk Engineer vs Data Analyst?

AspectSplunk EngineerData Analyst
Required CredentialsSplunk certifications, technical degreesStatistics, data analysis certifications, degrees
Work EnvironmentIT/security teams, tech-focused companiesBusiness, marketing, finance departments
Employer & Industry UsageTech, cybersecurity, enterprise ITFinance, healthcare, retail, marketing

Splunk Engineers focus on deploying, configuring, and maintaining Splunk platforms for data monitoring and security. Data Analysts interpret data to generate insights for business decisions. While both roles work with data, Splunk Engineers specialize in technical implementation of Splunk tools, whereas Data Analysts focus on analyzing data to inform strategies.

What is a Splunk Engineer?

A Splunk Engineer is an IT professional who specializes in deploying, configuring, and managing Splunk software for data analysis and monitoring. They are responsible for setting up data ingestion pipelines, creating dashboards, and developing alerts to help organizations monitor their systems and security. Splunk Engineers often work with large datasets to extract meaningful insights, support troubleshooting, and ensure system health. Their expertise is essential for leveraging Splunk’s capabilities in IT operations, security, and compliance.
More about Splunk Engineer jobs
What cities are hiring for Splunk Engineer jobs? Cities with the most Splunk Engineer job openings:
What are the most commonly searched types of Splunk Engineer jobs? The most popular types of Splunk Engineer jobs are:
What states have the most Splunk Engineer jobs? States with the most job openings for Splunk Engineer jobs include:
What job categories do people searching Splunk Engineer jobs look for? The top searched job categories for Splunk Engineer jobs are:

Splunk Content Developer

Kinzo Staffing

Owings Mills, MD

Full-time

Re-posted 21 days ago


Job description

Kinzo Staffing is seeking a Splunk Enterprise Security Engineer who can develop custom detection content (correlation rules) identify threat activity. This includes developing notable events, visualizations, forms, reports, alerts, as well as Splunk Apps, Technology Add-ons, and normalize data sources to the Common Information Model. The candidate will provide optimization of data flow using aggregation, filters, etc. The Splunk Engineer will provide overall engineering, and administration in supporting a very large distributed clustered Splunk environment consisting of search heads, indexers, deployers, deployment servers, heavy/universal forwarders and Splunk Enterprise Security app, spanning security, performance, and operational roles. The Engineer should be proficient with recognizing and onboarding new data sources into Splunk, analyzing the data for anomalies and trends, and building dashboards highlighting the key trends of the data. The Splunk engineer should be proficient within a Linux environment, editing and maintaining Splunk configuration files and apps.

What you will do:

  • Alert use case development
  • Upgrade Splunk apps required by Splunk ES upgrades.
  • Splunk Enterprise Security administration and management.
  • Configure notable event actions, action menus and Adaptive Responses.
  • Data onboarding and data ingestion normalization recommendations.
  • Strong knowledge of security risk procedures, security patterns, authentication technologies and security attack pathologies.
  • Develop, evaluate, and document, specific metrics for management purpose.
  • Write complex code to install and manage the Splunk enterprise development.
  • Performing maintenance and optimization of existing clustered Splunk deployments.
  • Create Dashboards to monitor the traffic volumes, response times, errors, and warnings across various data centers.
  • Monitor the web portals, log files and databases.
  • Provide debugging and monitoring capabilities.
  • Design and Develop Splunk for routine use.
  • Solve complex Integration challenges and debug complex configuration issues.
  • Consult with stakeholders to establish, maintain and refresh their strategic direction in cloud adoption.
  • Become knowledgeable on the CDM technical requirements for the federal government’s CDM program. Understand your role in CDM activities.
  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
  • Design, manage, and maintain enterprise SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data.
  • Maintenance, configuration and implementing products, appliances and devices on the enterprise network.

Qualifications:Required Qualifications:

  • Bachelor’s degree and 8 years of experience, Master's degree and 6 years of experience. Additional years of relevant experience may be accepted in lieu of the degree.
  • At least 4 years’ experience using customer-focused Splunk Enterprise Security SIEM engineering background - SME knowledge of ES v4.7
  • At least 4 years’ experience in a senior Splunk role working in a Splunk clustered environment supporting SOC or NOC environments
  • At least 4 years of experience with:
    • In-depth knowledge of designing, upgrading, maintaining and implementing network devices on a large-scale enterprise
    • Direct experience with Splunk Engineering and data integration
    • Prior SIEM data modelling experience on similar platform at scale (>50 servers)
    • Scripting and development skills in Python/Perl with deep comprehension of regular expressions
    • Coordination and communication with other remotely deployed team members
    • Developing documentation with processes and procedures
    • Proposing, implementing automation features in a large enterprise environment
  • At least 3 years of experience with Linux and SQL/ODBC interfaces
  • At least 2 years of experience in app interface development, using REST API’s
  • Hold active Splunk Core Certifications of at least Splunk Architect
  • Minimum of 3 year of experience in developing and tailoring reporting from network security tools.
  • Must be able to obtain and maintain a US Public Trust clearance.

Preferred Qualifications:

  • Experience with Splunk Common Information Model (CIM) and Enterprise Analytic
  • Strong problem-solving abilities with an analytic and qualitative eye for reasoning under pressure.
  • Self-starter with the ability to independently prioritize and complete multiple tasks with little to no supervision
  • Knowledge of Cloud Services such as AWS, Azure, Office365
  • Ability to script in one more of the following computer languages Python, Bash, Visual Basic or Powershell
  • Experience in automating Splunk Deployments and orchestration with in a Cloud environment