1

Splunk Jobs in Oregon (NOW HIRING)

The Splunk Architect and Lead is responsible for defining, guiding, and overseeing the architecture, implementation, optimization, and governance of Splunk capabilities that support cybersecurity ...

Senior Splunk Engineer

Portland, OR · On-site +1

$125K - $148K/yr

The Senior Splunk Engineer designs, implements, maintains, and optimizes Splunk capabilities that support cybersecurity monitoring, investigation, reporting, and security operations. This role is ...

Senior Splunk Engineer

Portland, OR · On-site

$125K - $148K/yr

Senior Splunk Engineer Everforth ECS is seeking a Senior Splunk Engineer to work in our Portland, OR office or Remotely. The Senior Splunk Engineer designs, implements, maintains, and optimizes ...

Your Impact The Account Executive will play a crucial role in driving significant revenue growth for Splunk Commercial accounts. You will establish a strategic vision and plan for pipeline generation ...

OR

$114K - $156K/yr

Architect, build, and maintain Splunk Enterprise Security (ES) integrations, including onboarding log sources, managing indexes, tuning correlation searches, and configuring automated response ...

... Splunk SIEM platform • Conduct in-depth network security analysis and collaborate with SOC analyst team on preliminary incident response, event analysis, and threat intelligence activities • ...

Senior SIEM Engineer

$114K - $156K/yr

Splunk Core Certified Power User and Splunk Enterprise Certified Admin. Splunk Certified Architect, Splunk Enterprise Security Certified Admin, or Splunk Core Certified Consultant is strongly ...

Cybersecurity Analyst

Portland, OR · On-site

$75K - $85K/yr

Monitor information security alerts through Splunk to respond, triage, and escalate incidents as appropriate * Process alerts from diverse security tools including firewalls, intrusion detection ...

Monitor information security alerts through Splunk to respond, triage, and escalate incidents as appropriate * Process alerts from diverse security tools including firewalls, intrusion detection ...

next page

Showing results 1-20

Splunk information

See Oregon salary details

$43

$63

$81

How much do splunk jobs pay per hour?

As of Jul 3, 2026, the average hourly pay for splunk in Oregon is $63.62, according to ZipRecruiter salary data. Most workers in this role earn between $56.15 and $70.14 per hour, depending on experience, location, and employer.

Is Splunk in high demand?

Splunk professionals are in high demand due to the increasing need for data analysis, security monitoring, and IT operations management. Skills in data visualization, scripting, and certifications like Splunk Certified User can enhance job prospects in this field.

What are the key skills and qualifications needed to thrive in the Splunk position, and why are they important?

To thrive in a Splunk role, you should possess strong analytical skills, experience with data analysis and security monitoring, and a solid understanding of IT infrastructures. Familiarity with the Splunk platform, related modules (such as Enterprise Security or IT Service Intelligence), and certifications like Splunk Core Certified User are highly valued. Problem-solving, attention to detail, and effective communication are key soft skills, especially when collaborating across technical and business teams. These skills are vital for efficiently transforming raw data into actionable insights and supporting organizational security and operational goals.

Is it hard to get hired at Splunk?

Getting hired for a Splunk-related role can be competitive, as the company seeks candidates with strong technical skills in data analysis, cybersecurity, or software development. Relevant certifications, such as Splunk Certified User or Power User, and experience with data tools can improve chances, but the hiring process typically involves technical interviews and assessments. Overall, preparation and relevant skills are key factors in securing a position.

What is a Splunk job?

A Splunk job typically involves managing and analyzing machine-generated data using the Splunk platform. Roles may include data analysis, system monitoring, and security investigation, often requiring knowledge of scripting, data visualization, and certifications like Splunk Certified User or Power User.

What are the main day-to-day responsibilities of someone working in a Splunk role?

In a Splunk position, your primary responsibilities typically include designing and maintaining Splunk dashboards, creating and optimizing searches, and setting up alerts for various IT operations and security events. You'll often collaborate with network, security, and operations teams to analyze system logs and investigate incidents or anomalies. Regular tasks may also involve onboarding data sources, fine-tuning system performance, and documenting configurations and processes. This role offers the opportunity to develop your technical skills while playing a key part in your organization's cybersecurity and data-driven decision-making.

Is Splunk a good career?

A career involving Splunk typically involves roles such as Splunk administrator, engineer, or analyst, focusing on data analysis, security, and IT operations. These roles often require knowledge of data indexing, scripting, and certifications like Splunk Certified User or Power User. The field offers growth opportunities in cybersecurity, data analytics, and IT management, with demand for skilled professionals increasing across various industries.

What is a Splunk job?

A Splunk job typically involves monitoring, analyzing, and visualizing machine-generated data using Splunk software. Professionals in this role manage data ingestion, create dashboards, write queries using SPL (Search Processing Language), and optimize system performance. They may also troubleshoot issues, set up alerts, and ensure security compliance. Splunk jobs are common in IT operations, cybersecurity, and data analytics across various industries.

What are the most commonly searched types of Splunk jobs in Oregon? The most popular types of Splunk jobs in Oregon are:
What are popular job titles related to Splunk jobs in Oregon? For Splunk jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Splunk jobs in Oregon look for? The top searched job categories for Splunk jobs in Oregon are:
What cities in Oregon are hiring for Splunk jobs? Cities in Oregon with the most Splunk job openings:
Infographic showing various Splunk job openings in Oregon as of June 2026, with employment types broken down into 88% Full Time, 6% Part Time, and 6% Contract. Highlights an 83% Physical, 7% Hybrid, and 10% Remote job distribution, with an average salary of $132,330 per year, or $63.6 per hour.

Other

Posted 2 days ago


Job description

Job Description
Everforth ECS is seeking a Splunk Architect Lead to work in our Portland, OR office or Remotely .
The Splunk Architect and Lead is responsible for defining, guiding, and overseeing the architecture, implementation, optimization, and governance of Splunk capabilities that support cybersecurity monitoring, threat detection, incident response, reporting, and enterprise security operations. This role provides technical leadership for Splunk Enterprise, Splunk Enterprise Security, Splunk Cloud, and related integrations across complex operational environments.
The ideal candidate combines deep Splunk architecture expertise , hands-on engineering experience, security operations knowledge, and leadership ability to guide engineers, analysts, stakeholders, and vendors. This role establishes scalable designs, enforces technical standards, ensures platform reliability, and translates mission and SOC requirements into secure, maintainable, and operationally effective Splunk solutions.
Key Responsibilities
Splunk Architecture & Strategy
  • Define and maintain the target Splunk architecture, including indexer clusters, search head clusters, deployment servers, heavy forwarders, universal forwarders, apps, add-ons, integrations, storage, and high-availability components.
  • Develop technical roadmaps, architecture recommendations, implementation plans, and modernization strategies for Splunk Enterprise, Splunk Enterprise Security, Splunk Cloud, or hybrid Splunk environments.
  • Ensure Splunk architecture supports SOC operations, security monitoring, incident response, compliance reporting, data retention, scalability, resilience, and performance requirements.
  • Assess current-state capabilities, identify architectural gaps, and recommend improvements aligned to program priorities, operational needs, and cybersecurity best practices.
Technical Leadership & Governance
  • Serve as the technical lead for Splunk engineering activities, providing direction, review, and mentorship to Splunk engineers, security engineers, analysts, and other technical contributors.
  • Establish and enforce Splunk standards for index naming, sourcetypes , field extractions, Common Information Model alignment, knowledge objects, access controls, app deployment, configuration management, and change control.
  • Review major design decisions, configuration changes, content deployments, and integration approaches for technical soundness, maintainability, security, and operational impact.
  • Coordinate Splunk engineering priorities, assign technical work as needed, and ensure deliverables are completed accurately, consistently, and on schedule.
Platform Design, Scalability & Reliability
  • Lead design efforts for platform performance, capacity, storage, retention, data lifecycle management, search concurrency, licensing, disaster recovery, backup, and high availability.
  • Oversee platform health monitoring, performance tuning, system optimization, upgrade planning, patching strategies, and long-term maintenance planning.
  • Guide troubleshooting of complex issues involving ingestion delays, parsing problems, skipped or dropped data, search performance, data model acceleration, app conflicts, and infrastructure dependencies.
  • Partner with infrastructure, cloud, network, identity, endpoint, and system administration teams to ensure Splunk architecture integrates securely and reliably with the broader environment.
Data Architecture & Integration Oversight
  • Define data onboarding architecture and integration patterns for security, infrastructure, cloud, endpoint, network, identity, application, vulnerability, and operational data sources.
  • Oversee normalization, parsing, field extraction, data routing, index design, retention settings, source coverage, and Splunk Common Information Model implementation.
  • Prioritize data source onboarding based on mission value, SOC use cases, detection requirements, compliance needs, and platform capacity constraints.
  • Ensure integrations with EDR, NDR, firewalls, IDS/IPS, proxy, DNS, cloud platforms, identity providers, ticketing systems, SOAR platforms, and case management tools are secure, reliable, and supportable.
Security Analytics & SOC Enablement
  • Translate SOC, threat hunting, threat intelligence, incident response, and leadership requirements into Splunk architecture, data, dashboard, reporting, and detection engineering capabilities.
  • Provide technical guidance for correlation searches, notable event rules, dashboards, reports, risk-based alerting, data models, content packs, and security monitoring use cases.
  • Support detection tuning, alert fidelity improvement, false-positive reduction, source coverage analysis, and monitoring gap remediation in coordination with SOC leadership and analysts.
  • Ensure Splunk content and data capabilities support timely triage, investigation, evidence retrieval, event reconstruction, and operational reporting.
Implementation Oversight & Quality Assurance
  • Lead or oversee implementation activities for Splunk platform components, integrations, apps, add-ons, dashboards, reports, alerts, and security content.
  • Validate engineering work products, test plans, deployment packages, configuration changes, and operational procedures before release into production environments.
  • Ensure Splunk changes follow approved change management, configuration management, testing, documentation, and rollback processes.
  • Coordinate with vendors, product support, and external technical teams to resolve complex issues and evaluate new capabilities.
Stakeholder Engagement & Program Support
  • Act as the primary technical point of contact for Splunk architecture, platform strategy, implementation risks, technical dependencies, and capability planning.
  • Brief program leadership, SOC leadership, technical teams, and stakeholders on Splunk status, risks, roadmap items, architectural decisions, and recommended investments.
  • Translate complex Splunk platform issues, data coverage gaps, and technical tradeoffs into clear operational and business language.
  • Support planning, estimation, schedule coordination, status reporting, and prioritization for Splunk-related initiatives.
Documentation, Standards & Continuous Improvement
  • Develop and maintain architecture diagrams, engineering standards, design documents, runbooks, operational procedures, troubleshooting guides, and technical decision records.
  • Maintain governance for knowledge object management, role-based access, app lifecycle management, source onboarding, dashboard standards, and detection content lifecycle processes.
  • Evaluate emerging Splunk features, apps, add-ons, integrations, automation approaches, and security analytics practices to improve reliability, efficiency, and mission value.
  • Mentor technical staff and promote consistent Splunk engineering practices, SPL development standards, data quality expectations, and operational discipline.
Salary Range:$165,000-$200,000
General Description of Benefits
Required Skills
  • U.S. Citizenship with ability to obtain and maintain a DOE "L" clearance after start.
  • 7+ years of experience in cybersecurity engineering, SIEM architecture, security operations, infrastructure engineering, or related technical roles.
  • 5+ years of hands-on Splunk administration, engineering, implementation, or architecture experience in enterprise, mission-critical, or security operations environments.
  • Proven experience designing, leading, or supporting complex Splunk Enterprise, Splunk Enterprise Security, Splunk Cloud, or distributed Splunk environments.
  • Strong understanding of Splunk architecture, including indexers, search heads, deployment servers, forwarders, apps, add-ons, indexes, sourcetypes , knowledge objects, permissions, data models, and licensing.
  • Demonstrated experience with data onboarding, parsing, field extraction, normalization, Common Information Model alignment, dashboards, reports, correlation searches, and SPL development.
  • Experience leading technical teams, reviewing engineering work products, establishing standards, and coordinating complex implementation or optimization activities.
  • Understanding of SOC operations, incident response, threat hunting, detection engineering, cybersecurity data sources, and security monitoring use cases.
  • Strong written and verbal communication skills, including the ability to brief technical and non-technical stakeholders on architecture, risks, priorities, and recommendations.

Desired Skills
  • Splunk certifications such as Splunk Enterprise Certified Architect, Splunk Enterprise Security Certified Admin, Splunk Core Certified Consultant, Splunk Enterprise Certified Admin, or equivalent credentials.
  • Experience with Splunk Enterprise Security, Splunk SOAR, Splunk ITSI, Splunk Cloud, risk-based alerting, data model acceleration, Common Information Model implementation, or security content lifecycle management.
  • Experience leading Splunk modernization, migration, scaling, high-availability, disaster recovery, cloud transition, or large-scale data onboarding initiatives.
  • Experience supporting government, critical infrastructure, financial, healthcare, or other regulated and compliance-driven environments.
  • Familiarity with Linux, Windows, networking, cloud platforms, APIs, scripting, automation, configuration management, DevOps practices, and infrastructure-as-code concepts.
  • Security or technical certifications such as CISSP, Security+, CySA +, GCIA, GCIH, GCDA, GSEC, CCNA, AWS, Azure, or equivalent credentials.
  • Experience briefing executives, leading technical working groups, managing vendor interactions, or supporting project and program management activities.
ECS Federal LLC is an equal opportunity employer and does not discriminate or allow discrimination on the basis any characteristic protected by law. All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, or local jurisdiction law.
Everforth ECS is the federal segment of Everforth , a $4B global organization with over 10,000 employees. Our nearly 3,500 professionals deliver advanced technology solutions in data and AI, cybersecurity, and enterprise transformation, serving defense, intelligence, and federal civilian agencies.
Our work powers mission-critical outcomes, strengthens technology partnerships, and creates meaningful opportunities for our people. We are defined by a commitment to excellence in delivery, a culture of innovation, and an environment where talent can thrive and grow.
We value:
  • Attracting and developing top talent and high-performing teams
  • Fostering a culture that is engaging, accountable, and mission-driven

Meet the challenge. Make a difference with Everforth ECS!