Splunk Engineer Jobs (NOW HIRING)

Splunk Architecture – Design / Implement Multi-Site / Highly Available Splunk Enterprise Deployments | Cluster Manager / License Master / Deployer / Deployment Server / Monitoring Console / Multi-Site Indexer Cluster / Search Head Cluster Forwarder Deployment – Deploy / Configure Universal Forwarders / Heavy Forwarders | Build Deployment Apps / Server Classes / Automated Rollout Scripts Data Onboarding – Onboard / Validate Data Sources (Windows / Firewall / Cloud) | Ensure Proper Common Information Model (CIM) Alignment Platform Configuration – Configure Custom Indexes / Authentication (LDAP / SAML) / SMTP Relay / Load Balancer Requirements Splunk ES (Enterprise Security) – Install / Configure / Operationalize Splunk ES ES Validation – Validate ES Data Model Acceleration / Correlation Searches / Dashboards / Notable Events / Detection Use Case Logic Detection / Performance Tuning – Tune Correlation Searches / Thresholds / Data Models / Overall Platform Performance Platform Integration – Ensure ES Content Integration with the Underlying Splunk Enterprise Deployment Documentation – Produce As-Built Documentation / Architecture Diagrams / Runbooks / Tuning Guidance / Operational Procedures Platform Validation – Validate Ingest Pipelines / Cluster Stability / Search Performance / CIM Compliance / ES Functionality Knowledge Transfer / Enablement – Provide Technical Knowledge Transfer / Hands-On Enablement to Customer Engineering Teams JOB REQUIREMENTS Senior Splunk Engineering (5+ years) – Engineering Splunk Enterprise in Distributed / Clustered Environments Splunk Performance / Tuning (expertise) – Diagnosing / Optimizing Platform Performance | Indexer Cluster Replication Factors / Search Head Clustering Member Health / Data Model Acceleration / KV Storage Usage / Resource Utilization (CPU / Memory / I/O) | Reducing MTTR via Proactive Tuning of Correlation Searches / Thresholds / Suppression Rules Splunk SPL (advanced) – Write / Optimize / Debug Complex SPL Queries (Statistical Commands / Lookups / Macros / Eventtypes / Tags / Data Models / Subsearches) for Detection Logic / Performance Tuning / Custom Content Development) Splunk ES Deployment (hands-on) – Deploying / Tuning Splunk Enterprise Security in Production Environments | Configure / Operationalize / Maintain SE | Installation / App/Framework Enablement / Data Model Acceleration / Notable Event Handling / Risk-Based Alerting / Asset/Identity Correlation / Integration with Core Splunk Data Onboarding / CIM (advanced) – Onboard Diverse Data Sources (Windows Events / Firewall Logs / Cloud Services / Endpoints / Networks) / Perform Common Information Model (CIM) Alignment (Field Extractions / Props.conf/Transforms.conf Configuration) Scripting / Automation – Python / BASH / PowerShell | Automating Forwarder Deployments / Configuration Management / Rollout Scripts / Custom Apps / REST API Interactions, etc. Linux Administration (strong) – Server Hardening / Package Management / File System Configuration Process Monitoring / Log Rotation / Troubleshooting Splunk Processes in Linux-based Deployments Networking (strong understanding) – Enterprise Networking Fundamentals | TCP/IP / Firewalls / Load Balancers / DNS / VLANs | Network Troubleshooting | Splunk Impact (Data Flow / Forwarder Communication / Clustering Replication / Search Head Clustering) Authentication Integration – Integrating with Enterprise Authentication Systems (LDAP / SAML / AD / SSO Providers) | Configuring RBAC / Implementing Secure Multi-Tenancy Documentation / Operationalization – Create / Develop / Maintain Technical Documentation / Runbooks / Operational Procedures PREFERRED (not required) Splunk Certifications – SPLK-1003 (Splunk Administrator Certification) / SPLK-3003 (Splunk Architect Certification) / SPLK-5001 (Splunk Enterprise Security Certified Admin) Enterprise Deployments – Supporting Large-Scale / Multi-Site Enterprise Deployments Security Operations (familiarity) – Security Operations Workflows | SIEM Detection / Performance Tuning Practices Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual’s skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting.

The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company’s 401(k) retirement plan. Additional disclaimer: Unless otherwise noted in the job description, the position Vaco/Highspring is filing for is occupied. Please note, however, that Vaco/Highspring is regularly asked to provide talent to other organizations.

By submitting to this position, you are agreeing to be included in our talent pool for future hiring for similarly qualified positions. Submissions to this position are subject to the use of AI to perform preliminary candidate screenings, focused on ensuring minimum job requirements noted in the position are satisfied. Further assessment of candidates beyond this initial phase within Vaco/Highspring will be otherwise assessed by recruiters and hiring managers.

Vaco/Highspring does not have knowledge of the tools used by its clients in making final hiring decisions and cannot opine on their use of AI products. Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. EEO Notice Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race (including but not limited to traits historically associated with race such as hair texture and hair style), color, sex (includes pregnancy or related conditions), religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law.

Vaco by Highspring and its parents, affiliates, and subsidiaries are committed to the full inclusion of all qualified individuals. As part of this commitment, Vaco by Highspring and its parents, affiliates, and subsidiaries will ensure that persons with disabilities are provided reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR@vaco.com .

Vaco by Highspring also wants all applicants to know their rights that workplace discrimination is illegal. By submitting to this position, you agree that you will be giving Vaco by Highspring the exclusive right to present your as a candidate for the foregoing employment opportunity. You further agree that you have represented information about yourself accurately and have not affirmatively misrepresented your qualifications.

You also agree to maintain as confidential, to the fullest extent permitted by law, any information you learn from Vaco by Highspring about the position and you will limit disclosure of information about the position only to the extent necessary to perform any obligations in furtherance of your application. In exchange, Vaco by Highspring agrees to exercise reasonable efforts to represent you through all solicitation, job screening and resume dispersal. Privacy Notice Vaco by Highspring and its parents, affiliates, and subsidiaries (“we,” “our,” or “Vaco by Highspring”) respects your privacy and are committed to providing transparent notice of our policies.

California residents may access Vaco by Highspring HR Notice at Collection for California Applicants and Employees here. Virginia residents may access our state specific policies here. Residents of all other states may access our policies here.

Canadian residents may access our policies in English here and in French here. Residents of countries governed by GDPR may access our policies here. Pay Transparency Notice Determining compensation for this role (and others) at Vaco by Highspring depends upon a wide array of factors including but not limited to: the individual’s skill sets, experience and training; licensure and certification requirements; office location and other geographic considerations; other business and organizational needs.

With that said, as required by local law, Vaco by Highspring believes that the following salary range referenced above reasonably estimates the base compensation for an individual hired into this position in geographies that require salary range disclosure. The individual may also be eligible for discretionary bonuses.