Splunk Cyber Security Infrastructure/Cloud Platform SME

Splunk Cyber Security Infrastructure/Cloud Platform SME

Posted 3 days ago by 1750839090

Apply
Negotiable
Outside
Remote
USA
Apply
Access Controls Application Programming Interface (API) Automation Bash (Scripting Language) Certified Ethical Hacker (CEH) Cloud Computing Cloud Technology Configuration Management Cyber Security Data Ingestion Data Integrity DevOps Enterprise Architecture Google Cloud Google Cloud Platform (GCP) Information Systems Management Microsoft Azure Parsing Penetration Testing Performance Tuning Perl (Programming Language) Python (Programming Language) Role-Based Access Control (RBAC) Scripting Splunk Systems Architecture

Summary: The role of Splunk Cyber Security Infrastructure/Cloud Platform SME involves designing, deploying, and maintaining both on-premises and cloud-based Splunk environments to support enterprise-level monitoring and reporting. The ideal candidate will possess deep expertise in Splunk architecture and collaborate with various teams to ensure system performance and data integrity. Proven experience in managing large enterprise Splunk environments is essential, along with the ability to handle off-hours maintenance as needed. This position may allow for remote support for exceptional candidates.

Key Responsibilities:

  • Design, deploy, and maintain on-premises and cloud-based Splunk environments.
  • Collaborate with DevOps, Security, and IT teams to optimize performance and ensure data integrity.
  • Provide operational support for Splunk system architecture and configuration.
  • Perform systems maintenance, upgrades, and support during off-hours and weekends as required.
  • Write complex Splunk queries, dashboards, and alerts using SPL.
  • Integrate Splunk with cloud platforms and external systems using REST APIs.
  • Analyze and troubleshoot data ingestion and parsing issues.

Key Skills:

  • Expertise in Splunk Enterprise architecture including indexers, search heads, and deployment servers.
  • Advanced knowledge of Unix/Linux systems administration.
  • Experience with Splunk deployment and configuration management in large-scale environments.
  • Strong scripting skills in Bash, Python, or Perl.
  • Experience with Splunk upgrades, patching, and performance tuning.
  • Proficiency in integrating Splunk with cloud platforms (AWS, Google Cloud Platform, Azure).
  • Understanding of security and compliance requirements in Splunk.
  • Experience with logging standards and best practices.
  • Ability to analyze and troubleshoot complex data issues.

Salary (Rate): undetermined

City: undetermined

Country: USA

Working Arrangements: remote

IR35 Status: outside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Splunk Cyber Security Infrastructure/Cloud Platform SME
Start/End Dates: 7/7/2025 - 7/20/2025 (Annual extension is expected)
Location work will be performed: NCO024 - Morrisville - 6001 Hospitality Court

Job Description: Splunk Engineer with strong infrastructure and software management skills to join our dynamic team. The ideal candidate will be responsible for designing, deploying, and maintaining on-premises and cloud based Splunk environments to support enterprise-level monitoring, alerting, and reporting. This role demands deep expertise in Splunk system architecture, design, implementation, configuration and operational support in a hybrid on-prem Unix/Linux and cloud-based environment. Candidates must be able to collaborate across DevOps, Security, and IT teams to optimize performance, ensure data integrity, system availability and support mission-critical operations. Proven hands-on experience with a large enterprise wide Splunk environment is mandatory. Off-hours and weekend efforts for systems maintenance, upgrades and support may be required from time to time.

Required skills:
Expertise in Splunk Enterprise architecture including indexers, search heads, deployment servers, and forwarders
Advanced knowledge of Unix/Linux systems administration and troubleshooting
Experience with Splunk deployment and configuration management in large-scale environments
Proficiency in writing complex Splunk queries, dashboards, and alerts using SPL (Search Processing Language)
Strong scripting skills in Bash, Python, or Perl for automation and integration tasks
Experience with Splunk upgrades, patching, and performance tuning
Proficiency in integrating Splunk with cloud platforms (AWS, Google Cloud Platform, Azure)
Understanding of security and compliance requirements and implementation of role-based access controls (RBAC) in Splunk
Experience with REST APIs for Splunk and external system integration
Strong knowledge of logging standards and best practices across application and infrastructure layers
Ability to analyze and troubleshoot complex data ingestion and parsing issues

EXPERIENCE LEVEL:
o A minimum of thirteen (13) to twenty (20) years relevant experience.

EDUCATION:
o A degree from an accredited College/University in the applicable field of services is preferred. Four additional years of relevant experience in lieu of a college degree is required. If the individual's degree is not in the applicable field then four additional years of related experience is required.

CERTIFICATIONS: (One or more required)
-CompTIA Security +
-CPTE - Certified Penetration Testing Engineer or CEH - Certified Ethical Hacker
-CISA - Certified Information Systems Auditor
CISSP
CISSP-ISSEP
CISSP-ISSAP
CISSP-ISSMP preferred

Remote support will be considered for exceptional candidates.

Apply
Similar Jobs
Loading data...