1

Splunk Security Analyst Jobs (NOW HIRING)

KEY TECHNOLOGIES: - SIEM (Splunk, Azure Sentinel, LogRhythm..) - Cisco Security Suite (Secure Malware Analytics, Secure Cloud Analytics, Umbrella) - Cloud (AWS, Azure, GCP) - Linux Systems (Debian ...

... tools (SPLUNK, Wazuh) and other security monitoring systems. • Conduct initial triage and ... Analyze logs from various sources (e.g., firewalls, IDS/IPS, endpoint protection systems). • ...

... in Splunk Analytics Solid understanding of Cisco ASA Experience in identifying network security vulnerabilities Willingness to respond swiftly and effectively to network security events Must work ...

Security Analyst MUST HAVE: * Experience with implementing a vulnerability scanner * Familiarity ... Experience with a log management system (Splunk, Elastic Search, etc) * General understanding of ...

Security Analyst/Engineer REDMOND, WA- HYBRID NOTES: YOU WILL NEED TO MAKE SURE AND INCLUDE A ... Splunk ES, Crowdstrike, Proofpoint, Wiz to shave on training time • Escalate AD findings • ...

next page

Showing results 1-20

Splunk Security Analyst information

See salary details

$39.5K

$107.3K

$141K

How much do splunk security analyst jobs pay per year?

As of Jul 7, 2026, the average yearly pay for splunk security analyst in the United States is $107,334.00, according to ZipRecruiter salary data. Most workers in this role earn between $91,500.00 and $130,000.00 per year, depending on experience, location, and employer.

Is SOC an entry level job?

A Security Operations Center (SOC) analyst role can be entry-level, but many positions require some prior knowledge of cybersecurity, networking, or security tools like SIEM platforms such as Splunk. Entry-level SOC roles often focus on monitoring and alerting, while more advanced positions may require certifications like CompTIA Security+ or CISSP and experience with incident response. The level of difficulty depends on the specific organization and job requirements.

What are the key skills and qualifications needed to thrive as a Splunk Security Analyst, and why are they important?

To thrive as a Splunk Security Analyst, you need expertise in cybersecurity principles, strong analytical abilities, and experience with security incident detection and response, often supported by a degree in computer science or related certifications like Splunk Core Certified User or Security+. Proficiency with Splunk Enterprise Security, SIEM platforms, and scripting languages such as Python or PowerShell is typically required. Strong problem-solving skills, attention to detail, and effective communication set top performers apart in this role. These skills enable analysts to efficiently detect, investigate, and mitigate security threats, ensuring robust protection of organizational assets.

Is IT hard to get hired at Splunk?

Getting hired as a Splunk Security Analyst can be competitive, as it requires relevant skills in cybersecurity, data analysis, and experience with Splunk tools. Strong technical knowledge, certifications like Splunk Certified Security Intelligence Expert, and a solid understanding of security principles can improve your chances of securing the role.

How much do Splunk analysts make?

Splunk Security Analysts typically earn between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level roles may start around $60,000, while experienced analysts with advanced skills and certifications can earn over $130,000.

What is a Splunk Security Analyst?

A Splunk Security Analyst is a cybersecurity professional who specializes in using Splunk, a leading Security Information and Event Management (SIEM) platform, to monitor, analyze, and respond to security events within an organization. They are responsible for configuring Splunk dashboards, creating alerts, investigating potential threats, and helping to ensure compliance with security policies. Their work is essential for detecting and mitigating cyber threats, as well as supporting incident response efforts. Splunk Security Analysts often collaborate with IT and security teams to improve the overall security posture of their organization.

What are some typical challenges Splunk Security Analysts face when managing large-scale security events?

Splunk Security Analysts often encounter challenges such as handling high volumes of security alerts and ensuring timely incident response. Effectively parsing and correlating diverse data sources can be complex, especially in organizations with vast or fragmented IT environments. Analysts must prioritize alerts, filter out false positives, and maintain up-to-date detection rules to stay ahead of evolving threats. Collaborating closely with IT, network, and application teams is key to resolving incidents efficiently and improving overall security posture.

What is the difference between Splunk Security Analyst vs SOC Analyst?

AspectSplunk Security AnalystSOC Analyst
CertificationsSplunk certifications, Security+Security+ or GIAC certifications, Splunk certifications
Work EnvironmentSecurity teams, SIEM-focused rolesSecurity Operations Centers, incident response teams
Industry UsageIT security, cybersecurity firms, enterprise securitySecurity operations, threat monitoring, incident handling

Both roles involve security monitoring and require knowledge of SIEM tools like Splunk. A Splunk Security Analyst specializes in using Splunk for security data analysis, while a SOC Analyst performs broader security operations, including incident response and threat detection, often using Splunk as a tool. The roles are complementary, with overlapping skills but different focus areas within cybersecurity teams.

Can you make $500,000 a year in cyber security?

A Splunk Security Analyst typically earns between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires advanced roles such as security manager, director, or executive, along with extensive experience, specialized skills, and often leadership responsibilities. High salaries in cybersecurity are more common in senior or executive positions rather than entry- or mid-level analyst roles.
More about Splunk Security Analyst jobs
What job categories do people searching Splunk Security Analyst jobs look for? The top searched job categories for Splunk Security Analyst jobs are:
Infographic showing various Splunk Security Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $107,334 per year, or $51.6 per hour.

Other

Medical, Retirement, PTO

Posted 10 days ago


Job description

Position Overview
Resource Management Concepts, Inc. (RMC) provides high-quality, professional services to government and commercial sectors. Our mission is to deliver exceptional management and technology solutions supporting the protection and preservation of the people and environment of the United States of America.
We are seeking a skilled Splunk SIEM Engineer to lead the evolution of our Splunk environment into a fully operational, enterprise-grade Security Information and Event Management (SIEM) platform. This role will be responsible for both the build-out and ongoing operations of the platform, ensuring it delivers reliable, actionable security insights and supports evolving cybersecurity initiatives. This is a hybrid position that requires regular onsite presence in Crane, Indiana.
Key Responsibilities
  • Lead the transformation of the Splunk environment into a fully functional SIEM platform
  • Manage and optimize the data ingestion pipeline:
    • Audit existing data sources for relevance and efficiency
    • Eliminate unnecessary data ingestion to control licensing costs
    • Onboard and integrate new data sources
  • Parse, normalize, and map ingested data to the Splunk Common Information Model (CIM)
  • Configure, maintain, and optimize Splunk Enterprise Security (ES)
  • Configure, maintain, and optimize Splunk security orchestration, automation, and response platform (SOAR)
  • Develop and maintain correlation searches, detections, and use cases
  • Create and tune alerts to improve fidelity and reduce false positives
  • Build dashboards and visualizations for operational awareness and trend analysis
  • Monitor overall platform health and performance
  • Perform system upgrades, patching, and capacity planning
  • Manage intra Splunk certificates
  • Manage the lifecycle of security content:
    • Continuously refine detections and correlation rules
    • Enhance visibility and detection coverage based on emerging threats
  • Ensure consistent SIEM operations regardless of hosting environment or infrastructure ownership
  • Support ongoing security operations and future cybersecurity initiatives

Requirements
Required Qualifications
  • A SecurityX, CASP, or equivalent DoD 8140 IAT-3 certification is required.
  • Security Clearance: An interim DoD Secret security clearance or higher is required to start. Applicant selected may be subject to a security investigation and must meet eligibility requirements for access to classified information.
  • Hands-on experience with Splunk Enterprise and Splunk Enterprise Security (ES)
  • Strong understanding of SIEM architecture, design, and operations
  • Experience with log ingestion, parsing, normalization, and CIM mapping
  • Proficiency in developing correlation searches, alerts, and dashboards
  • Experience tuning SIEM content to reduce false positives and improve detection accuracy
  • Familiarity with data onboarding strategies and license optimization
  • Knowledge of cybersecurity principles, threat detection, and incident response
  • Experience with system administration tasks including patching, upgrades, and performance monitoring

Preferred Qualifications
  • Experience operating Splunk in distributed or multi-tenant environments
  • Knowledge of data pipelines and log forwarding technologies (e.g., syslog, APIs, forwarders)
  • Familiarity with frameworks such as MITRE ATT&CK
  • Experience supporting Zero Trust or advanced security architectures
  • Preferred certifications (e.g., Splunk Certified Admin, Splunk ES Certified, Security+)

Benefits
At RMC, we're committed to your career growth! RMC differentiates itself from other firms through its investment in our employees. We invest our resources to train, certify, educate, and build our employees.
RMC can offer you a great place to work with a small company feel and give you the experience, tuition assistance, and certifications that will take your career to the next level. This also includes a competitive paid vacation package with 11 paid federal holidays. Additionally, we also offer high-quality, low-deductible healthcare plans, pet insurance, and a competitive 401K package.
Salary at RMC is determined by various factors, including but not limited to location, a candidate's specific combination of education, knowledge, skills, competencies, and experience, as well as contract-specific requirements.