1

Splunk Phantom Jobs (NOW HIRING)

... Splunk Phantom; experience with AWS Services and technologies like AWS Lambda, VPC, CloudTrail, CloudWatch, IAM, S3, EKS; hands-on experience with integrating Kubernetes platforms like AWS EKS or ...

Splunk Engineer

Plano, TX · On-site

$63.68 - $71.68/hr

Genesis10 is currently seeking a Splunk Engineer for a contract position with a Global Financial ... Phantom or equivalent) Exposure to cloud logging and security architectures (AWS, Azure, GCP ...

New

Splunk Engineer

Plano, TX · On-site

$63.68 - $71.68/hr

Experience with Splunk Enterprise Security (ES) and SOAR (Phantom or equivalent) * Exposure to cloud logging and security architectures (AWS, Azure, Google Cloud Platform) * Knowledge of Red Hat ...

New

Experience with Splunk SOAR / Phantom * Experience with DevSecOps and Infrastructure as Code * Background in enterprise data platforms and analytics Role Overview We are seeking an experienced Senior ...

Cyber Systems Engineer

San Diego, CA · On-site

$185K - $200K/yr

Splunk Enterprise, Splunk Phantom, ELK (Elastic) * Cortex XSOAR * CrowdStrike Falcon, Microsoft Defender for Endpoint Infrastructure & Platforms * VMware ESXi * Kubernetes (RKE2 or equivalent) * AWS ...

SOC Analyst

Austin, TX · On-site

$55K - $109K/yr

Cortex XSOAR, Siemplify, Splunk Phantom, IBM Resilient, Swimlane Experience with other security monitoring or data collection platforms is preferred, such as: MISP, Proofpoint, Gigamon ThreatINSIGHT ...

SOAR Engineer, Senior

$86K - $198K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

New

IL · On-site

$86K - $198K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

IL · On-site

$86K - $198K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

IL · On-site

$86K - $198K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

IL · On-site

$61K - $141K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

IL · On-site

$86K - $198K/yr

Experience with playbook development using Security Orchestration and Automated Response (SOAR) platforms such as Tines, Palo Alto XSOAR, Splunk Phantom, or Swimlane * Experience with programming ...

next page

Showing results 1-20

Splunk Phantom information

See salary details

$58

$80

$91

How much do splunk phantom jobs pay per hour?

As of Jul 10, 2026, the average hourly pay for splunk phantom in the United States is $80.95, according to ZipRecruiter salary data. Most workers in this role earn between $74.76 and $88.46 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Splunk Phantom position, and why are they important?

To excel as a Splunk Phantom professional, you should have a solid background in cybersecurity, incident response, and familiarity with security orchestration, automation, and response (SOAR) platforms. Proficiency in using Splunk Phantom (now known as Splunk SOAR), scripting languages like Python, and relevant certifications such as Splunk Certified SOAR Administrator are highly valued. Strong problem-solving, communication skills, and an aptitude for collaborating across security and IT teams help set candidates apart. These abilities enable effective automation of security workflows, optimizing incident response and enhancing organizational defenses.

What is a Splunk Phantom job?

A Splunk Phantom job involves working with Splunk's Security Orchestration, Automation, and Response (SOAR) platform to automate cybersecurity operations. Professionals in this role configure and manage playbooks, integrate security tools, and streamline incident response. Their responsibilities may include threat hunting, data enrichment, and developing automated workflows to enhance security efficiency. This role is ideal for security analysts, engineers, and automation specialists who want to improve response times and reduce manual efforts in cybersecurity operations.

Which Phantom job is best?

In the context of Splunk Phantom, roles such as Security Analyst or Security Engineer are common, focusing on incident response, automation, and security orchestration. The best job depends on your skills in cybersecurity, scripting, and familiarity with security tools, as well as your career goals. Certifications like CISSP or GIAC can enhance prospects in these roles.

What are some common challenges faced by professionals working with Splunk Phantom, and how can they prepare for them?

Professionals working with Splunk Phantom often face challenges around integrating diverse security tools, creating and managing effective playbooks, and keeping up with the fast-paced nature of security threats. It’s important to stay updated on the latest SOAR best practices and maintain a strong understanding of both the platform’s technical capabilities and the broader security environment. Collaboration with other cybersecurity team members and continuous learning allow you to identify gaps, optimize automation, and adapt to evolving threats. By proactively addressing these areas, you’ll be better equipped to maximize the value of Splunk Phantom in your organization.

Is it hard to get hired at Splunk?

Getting hired for a Splunk Phantom role typically requires relevant experience in security automation, scripting, and familiarity with the platform. Strong technical skills, certifications, and a good understanding of cybersecurity concepts can improve chances, but the hiring process is competitive and often involves technical assessments and interviews.

What is phantom in Splunk?

In the context of a Splunk Phantom analyst or security professional, Phantom refers to Splunk Phantom, a security orchestration, automation, and response (SOAR) platform that helps security teams automate incident response workflows. It enables analysts to streamline threat detection, investigation, and remediation processes using playbooks and integrations with various security tools.

What is a phantom job?

A Phantom job in the context of Splunk Phantom refers to an automated or scheduled task that runs within the security orchestration, automation, and response platform. These jobs help security teams automate incident response processes, often involving playbooks and scripts to handle alerts efficiently. Understanding how to manage and troubleshoot Phantom jobs is important for security analysts and automation engineers.
More about Splunk Phantom jobs
Infographic showing various Splunk Phantom job openings in the United States as of July 2026, with employment types broken down into 1% Internship, 2% As Needed, 88% Full Time, 7% Part Time, 1% Contract, and 1% Nights. Highlights an 95% Physical, 1% Hybrid, and 4% Remote job distribution, with an average salary of $168,372 per year, or $80.9 per hour.
Splunk SIEM Security Engineer/Architect

Splunk SIEM Security Engineer/Architect

WaveStrong, Inc.

Los Angeles, CA

Contractor

Re-posted 3 days ago


Job description

Exciting Splunk SIEM Security Engineer/Architect contract opportunity.

Requirements

Requirements

  • 3 plus years of experience in Spunk (SIEM) Security Enterprise: architecting, configuring, deploying, and customizing the tool, preferably both in supporting the application and utilizing the application for information security monitoring, incident response, and compliance
  • Onboard new data sources to the Splunk environment as required by the customer Cybersecurity Team for monitoring by the client SOC
  • Configuration of Correlation Searches, Dashboard Searches, Risk Modifiers, Threat Intelligence Feeds, Workflow Actions and Enterprise Security content
  • Validate and Manage all Splunk forwarders reporting into the Splunk environment
  • Manage and optimize the Splunk environment, Enterprise Security Module and Phantom Module.
  • Implement new Correlation Rules (Correlation Searches) in the Splunk environment Enterprise Security Module
  • Ability to perform security analysis, development and implementation of security policies, standards, and guidelines
  • Perform ongoing development for additional use case and SIEM tuning.
  • Experience with implementation of Log Management and Analytics products - Splunk