19 Splunk Es Jobs

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

Role & responsibilities We are looking for an experienced Splunk Developer/Engineer to support our enterprise logging, monitoring, and alerting platform using Splunk. The ideal candidate will have hands-on experience designing, configuring, and managing Splunk environments and dashboards for data visualization and incident management. Key Responsibilities: Develop, maintain, and manage dashboards, data models, and alerts in Splunk. Integrate logs from various systems (cloud, on-prem, hybrid) into Splunk for centralized visibility. Create Splunk queries using SPL (Search Processing Language) to extract actionable insights. Onboard new data sources and work with application owners to define log formats and parsing logic. Develop automation and alerting for critical events and performance anomalies. Collaborate with Security, DevOps, and Infrastructure teams for proactive monitoring and root cause analysis. Implement best practices for Splunk architecture, indexing, and data retention. Required Skills: 7+ years of experience with Splunk (Enterprise and/or Cloud). Strong knowledge of SPL and data visualization techniques. Experience integrating Splunk with platforms such as AWS, Azure, Linux, Windows, or network devices. Ability to troubleshoot performance issues and optimize searches and dashboards. Knowledge of onboarding logs using UF/HF and configuring parsing rules. Familiarity with scripting (Python, Shell) is a plus. Experience with Splunk apps (ITSI, ES, DB Connect, etc.) is an added advantage. Good to Have: Splunk certifications (e.g., Splunk Core Certified Power User, Admin, Architect). Familiarity with ITIL/ITSM frameworks. Knowledge of security frameworks (SIEM/UEBA) if working in a security-focused role. Experience with CI/CD and DevOps tools integration.

Arctiq is a leader in professional IT services and managed services across three core Centers of Excellence: Enterprise Security, Modern Infrastructure and Platform Engineering. Renowned for our ability to architect intelligence, we connect, protect, and transform organizations, empowering them to thrive in today's digital landscape. Arctiq builds on decades of industry expertise and a customer-centric ethos to deliver exceptional value to clients across diverse industries. Arctiq is currently seeking a candidate to fulfill the role of a Splunk Consultant within our managed services practice. This position requires expertise in Splunk and related technologies, and a passion for continuous learning. In this role you will have an opportunity to deliver Splunk services to our managed services customers, and occasionally work within our professional services with new clients. Lead project delivery by defining, maintaining and communicating systems requirements, solution approach & design, standards and standardized methodologies across the enterprise. Develop and assist clients with creating requirements, identifying gaps and translating business requirements into technical solutions. Regularly develop methods of improvement for internal processes related to Splunk administration. Work closely with clients to execute a common strategy across multiple functions. Define and implement effective and efficient solutions to challenges and opportunities. Seize opportunities to make use of Splunk technology to drive greater operational intelligence. Create and maintain documentation related to implementations at managed clients. Possesses Splunk ES, ITSI, or Cloud accreditations. Experience with storage technologies, platform administration on Linux and Windows, computer networks, experience with AWS or Azure and experience with many of today's security tool sets. Creating production quality dashboards, reports and threshold alerting mechanisms. Experience with other Splunk products (eg. Splunk UBA, Splunk Observability Cloud, Splunk SOAR). Proficiency in developing add-ons or DevOps. Expertise with MITRE and developing security use cases. Have a strong background working in the IT and IT Security arena. Splunk Enterprise Experience: 5-8 years experience implementing or administering large scale business systems with at least three large scale implementations. Expert in working across Splunk and related utilities. At a minimum, is a Splunk Core Certified Consultant. Have a bachelor's degree in computer science or a related field, or have a minimum of 5 years relevant experience. Excellent planning and execution skills with a demonstrable history of establishing and meeting impactful goals and objectives with regards to data integration. Ability to work in project teams and complete individual tasks in a timely manner. Have a sense of personal accountability. Must be a U.S. Citizen, working within the continental US, and will be subject to standard background checks. Arctiq is an equal opportunity employer. If you need any accommodations or adjustments throughout the interview process and beyond, please let us know. We celebrate our inclusive work environment and welcome members of all backgrounds and perspectives to apply. We thank you for your interest in joining the Arctiq team! While we welcome all applicants, only those who are selected for an interview will be contacted.,

Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as SME experience on Splunk ITSI .

-Role-OCI Cloud Architect - B3 RolesOCI Cloud Architect - 8 to 10 yrs exp Mandatory Skills (Must Have)Primary skills:OCI CertificationOracle Cloud Infrastructure Architect - Associate/ProfessionalSecondary Skills at least L2 or L2+ (Good to have)Knowledge on other Cloud - AWS/Azure Knowledge on Infrastructure as Code (IAC) like Terraform Knowledge of any of the tools like Servicenow, BMC Helix, Ansible, Jenkins, Splunk Cloud automation using Python and Powershell scripts Knowledge on Devops, KubernetesBehavioral Skill (Must have):Good Communication Skill - effective written and oral Lead the team of juior architects Eagerness to learn new cloud services and technology Team Collaboration Creative thinking in implementing new solutions Mandatory Skills: Oracle Database Admin. Experience5-8 Years.

We are seeking a highly skilled and experienced Splunk Architect to lead the design, implementation, and optimization of our Splunk infrastructure. The ideal candidate will have a strong background in IT operations, security, and data analytics, with a proven track record of architecting and managing enterprise-level Splunk deployments. Key Responsibilities: Design and implement scalable and resilient Splunk architectures across enterprise environments. Lead the deployment, configuration, and maintenance of Splunk components (indexers, forwarders, search heads, deployment servers). Develop and maintain data ingestion pipelines, parsing, and normalization of logs from various sources. Create and manage Splunk dashboards, alerts, reports, and visualizations for IT operations and security use cases. Collaborate with security, DevOps, and infrastructure teams to ensure effective log management and monitoring. Optimize performance and troubleshoot issues within the Splunk environment. Ensure compliance with data governance and security policies. Provide mentorship and guidance to junior Splunk engineers and analysts. Stay updated with the latest Splunk features, apps, and industry best practices. Required Skills & Qualifications: 79 years of experience in Splunk architecture and administration. Strong expertise in Splunk Enterprise, Splunk Cloud. Experience with onboarding data sources, creating custom apps, and developing SPL queries. Proficiency in scripting languages (Python, Bash, PowerShell) for automation and integration. Familiarity with ITSI, and other Splunk premium apps is a plus. Splunk certifications (e.g., Splunk Certified Architect, Splunk Certified Admin) are highly desirable. Excellent problem-solving, communication, and documentation skills. Preferred Qualifications: Experience with cloud platforms (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes). Understanding of networking, firewalls, and endpoint security. Exposure to other log management.

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

Role & responsibilities Good knowledge on Splunk monitoring platform Facilitating the integration of new data sources into Splunk. Developing use cases and crafting dashboards in Splunk tailored to our clients' needs. Monitoring and generating reports on the performance metrics of the Splunk environment Developing Application Security and Platform Security Dashboards. Work with onsite and offshore Splunk developers to deliver Splunk dashboards, reports and alerts Configuration in Splunk Experience: Minimum 5 years of experience in splunk admin role.

Immediate Openings on SIEM Engineer _Contract_Pan India Notice Period :Immediate. Type : Contract Key Accountabilities Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS Solution Building Co-relation searches for Cyber Operation requirements Evaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness audit Structure phased deliverables to link long term vision with time-boxed activities. Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully. Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Stakeholder Management and Leadership Negotiate and solicit engagement and support at all levels of the organisation, particularly where support is low or challenging. Communicate clearly and regularly. Typically faces off to AVP VP level stakeholders. Considers the impact of their actions and decisions on key stakeholders, seeking to deliver a positive outcome for those involved. Decision-making and Problem Solving Apply evaluative judgement and analytical skills to operate effectively within a complex and changing environment. Understand the requirements and perspectives of stakeholders and integrate into their understanding of complex situations. Demonstrates a broad understanding of how the bank operates and the metrics used to measure performance Analyses problems and evaluates options in a logical and systematic way. Seeks the advice of stakeholders to better create clarity in complex situations, understand problems, evaluate options and make decisions What were looking for: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud Knowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction. Knowledge of the Common Information Model, data models, enrichment, and automation Good experience on Splunk add-Ons installation configuration to bring security logs into Splunk. Good understanding of the Security Domain. Documentation skills in order to provide high quality documentation for internal customers and technical teams.

Diverse Lynx is looking for Splunk Developer to join our dynamic team and embark on a rewarding career journey A Splunk Developer is responsible for designing, implementing, and maintaining Splunk-based solutions to collect, analyze, and visualize machine-generated data for various operational and security purposes They work closely with stakeholders to understand data requirements, develop data ingestion processes, create dashboards and reports, and automate data analysis workflows Splunk Developers also collaborate with cross-functional teams to ensure optimal performance, scalability, and security of Splunk deployments Key Responsibilities:Collaborate with stakeholders to understand data requirements, use cases, and objectives for Splunk deployments Design and implement data ingestion processes, including data collection, parsing, normalization, and indexing in Splunk Develop custom Splunk queries, search strings, and data models to extract meaningful insights from machine-generated data Create interactive dashboards, reports, and visualizations using Splunk's search processing language (SPL) and visualization tools Implement and maintain Splunk apps, add-ons, and configurations to support specific use cases or data sources Automate data analysis workflows and alerting mechanisms to identify and respond to critical events and anomalies Optimize Splunk deployments for performance, scalability, and search efficiency Monitor and troubleshoot Splunk infrastructure and resolve issues related to data ingestion, search performance, and system availability Collaborate with security and operations teams to develop and implement Splunk-based security monitoring, log analysis, and incident response solutions Ensure data privacy and security by implementing access controls, data encryption, and compliance with relevant regulations Stay updated with Splunk product releases, new features, and best practices to recommend and implement improvements in Splunk deployments Provide training and support to end-users on utilizing Splunk for data analysis and visualization

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM), Splunk Administration, Splunk Enterprise Security, Splunk Phantom Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Splunk Engineer, you will be working within the Security Engineering & Technology Services team, responsible for understanding, researching, designing, developing, operating, and enhancing security solutions with the products client has acquired for consumption as a service offering across all of client. You will collaborate with Security Operations (mainly Cyber) teams to support in implementation of new technical solutions, on-board new data into Splunk and develop use cases to meet the business requirements Roles & Responsibilities:Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS SolutionBuilding Co-relation searches for Cyber Operation requirementsEvaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness auditStructure phased deliverables to link long term vision with time-boxed activities.Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully.Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Professional & Technical Skills: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud & SOARKnowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction.Knowledge of the Common Information Model, data models, enrichment, and automationGood experience on Splunk add-Ons installation / configuration to bring security logs into Splunk.Good understanding of the Security Domain.Documentation skills in order to provide high quality documentation for internal customers and technical teams. Additional Information:- The candidate should have a minimum of 8+ years of experience in Security Information and Event Management (SIEM) with 5+ yrs experience on Splunk SIEM.- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions.- This position is based at our Pune office with flexible locations as banglore and Chennai. Qualification 15 years full time education

Greetings !! We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers. Roles & Responsibilities: Splunk Deployment & Administration: Install, configure, and manage Splunk Enterprise and Splunk Cloud. Handle indexers, search heads, forwarders, and clustering. Optimize Splunk performance, storage, and scalability. Security & Splunk Monitoring Solutions: Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards. Troubleshoot security-related issues within Splunk. Customer Interaction & Troubleshooting: Engage with customers to understand their requirements and provide technical guidance. Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding. Splunk Architecture & Implementation: Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. Lead end-to-end Splunk implementations, migrations, and upgrades. Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics. Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools. Team Leadership & Customer Engagement: Lead and mentor a team of Splunk Administrators & Engineers. Interact with customers to gather requirements, design solutions, and conduct workshops etc. Review and improve Splunk use cases, dashboards, and data models. Optimization & Automation: Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration. Tune Splunk performance, search queries, and indexing strategies. Implement best practices for data onboarding, parsing, and CIM compliance. Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details. Current CTC: Expected CTC: Notice Period:

Roles and Responsibilities Collaborate with cross-functional teams to develop custom solutions using Python scripts. Troubleshoot complex issues related to data ingestion, processing, and visualization in Splunk. Configure and manage indexers, search heads, and other components of the Splunk platform. Design, implement, and maintain large-scale Splunk environments across multiple sites. Develop and execute deployment plans for new Splunk instances on AWS cloud infrastructure.

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30669 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity " FICO is seeking a Cyber/Cloud security Lead Engineer with Engineering experience to implement detections of Cloud and Container security.As a part of your role, you will be responsible for implementing automations to manage the Cloud and Container security solution. This role is specifically to build prototypes and orchestrate the manual tasks using automation in the cloud security space ." - Sr Director, Cyber Security What Youll Contribute Experience in Designing, Engineering, and Securing complex infrastructure architectures. Security relevant experience with AWS and implementing best practices regarding securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Experience in Python scripting or programming languages with an automation mindset. Experience working on Multi account, multi region infrastructure setup. Should have experience with AWS Org, Cross account access and working with services like CloudWatch, CloudTrail, GuardDuty, Security Hub, AWS Inspector, AWS SSM and other security related services. Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket (Bitbucket is desirable). Experience with agile project management tools like JIRA, Confluence (JIRA is desirable). Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). What Were Seeking 3 or more years of Engineering experience specifically implementating automations using Python in AWS Public cloud environment. Experience working on containerized solutions with Docker, Kubernetes using ECR, ECS and EKS services in AWS. 2 or more years of security relevant experience with AWS and implementing best practices in regards to securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket. Experience with agile project management tools like JIRA, Confluence. Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). Experience implementing automations using serverless platforms in the Cloud environment. Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience on integration with SIEM tool like Splunk Cloud. Experience with regulated environments in regards to exceeding published controls such as PCI-DSS, CIS, NIST, and/or STIG and meeting compliance. Our Offer to You An inclusive culture strongly reflecting our core values:Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

Implement and manage Splunk for monitoring and analyzing machine data to ensure system performance and security.

The Splunk Developer role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Splunk Developer domain.

Infrastructure Engineering Senior Advisor - HIH - Evernorth Position Overview As a Splunk / Cribl Sr. Engineer (Infrastructure Engineering Senior Advisor) for Cigna’s Enterprise Logging Team you’ll provide operations, engineering, design and troubleshooting support for the teams on premise and SaaS based logging products. You’ll also be working with peers and customers gathering requirements, onboarding data, and assist with searches, dashboards, reports, and knowledge objects. The role will require you to use your hands-on technical expertise with Splunk Enterprise, Splunk Cloud, Cribl and AWS to come up with solutions for technical and business problems. You should have continuous learning and engineering mindsets along with the ability to adapt new technologies to improve Splunk and Cribl on premise and cloud operations. Responsibilities Support systems engineering lifecycle activities for large hybrid Splunk and Crib deployments, including requirements gathering, design, testing, implementation, operations, and documentation. Lead troubleshooting efforts and identify root cause of problems across the enterprise logging environment. Work on and lead projects that drive continuous improvement, enhancements of products, services offerings, and governance.Coach and mentor customers and staff that may need technical assistance or guidance.Partner with Agile Program and Product Management leads to develop, plan, and execute large initiatives.Available On-Call 24x7 support on a rotational schedule. Qualifications Required Skills: Strong written and verbal communication skills with the ability to interact with all levels of the organization. Strong influencing/negotiation skills. Strong interpersonal/relationship management skills. Strong time and project management skills. Skilled in operations, support and engineering with of the following products – Linux, Splunk Enterprise, Splunk Cloud, Cribl Stream and AWS Familiarity with agile methodology including SCRUM team leadership. Familiarity with modern delivery practices such as continuous integration, behavior/test driven development, and specification by example. Required Experience & Education: 13-16 years of experience requiredBachelor’s degree or equivalent degree and work experience is requiredA minimum of 12 years of experience supporting, operating, and managing large Splunk environments. At least 2 years specifically is with Splunk Cloud.A minimum of 8 years of experience supporting and managing Cribl Stream deployments.Experience with Splunk Premium Applications, IT Service Intelligence and Enterprise Security.A minimum of 3-4 years with AWS Services and implementations with a working knowledge of core AWS products including S3, Terraform, ALB/NLB, EC2, PrivateLink and VPCsAWS, Cribl and Splunk certifications, such as Splunk Certified Architect or AWS Associate, are highly desirable.At least 8 years of experience with LAN/WAN technologies and clear understanding of basic network concepts and services.11 to 13 years of experience with Linux operating system management or administration.Demonstrated proficiency in scripting and programming languages (e.g., Python, PowerShell) for custom Splunk app development.Experience with Ansible and leveraging playbooks for task automation. Location & Hours of Work (Specify whether the position is remote, hybrid, in-office and where the role is located as well as the required hours of work) Equal Opportunity Statement Evernorth is an Equal Opportunity Employer actively encouraging and supporting organization-wide involvement of staff in diversity, equity, and inclusion efforts to educate, inform and advance both internal practices and external work with diverse client populations. About Evernorth Health Services Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.

Role & responsibilities Job Description: Senior Splunk Engineer About the Role: We are looking for a Splunk Level 3 Engineer with a strong Linux background to design, implement, and optimize Splunk solutions for enterprise-level security, observability, and operational intelligence. You will play a key role in developing and maintaining a high-performing Splunk environment, ensuring real-time monitoring, analytics, and automation across IT infrastructure and security domains. Key Responsibilities: Splunk Architecture & Administration Design, deploy, and manage large-scale Splunk environments (Enterprise Security, ITSI, Observability, Cloud, or Hybrid). Configure and optimize Splunk components such as indexers, search heads, forwarders, and clustering. Implement best practices for data ingestion, parsing, and indexing to ensure high availability and performance. Security & Observability Develop and manage Splunk dashboards, alerts, and reports for security monitoring (SIEM), IT operations, and business analytics. Integrate Splunk with various security tools ( SOAR, EDR, Firewalls, IDS/IPS ) to enhance threat detection and response. Implement anomaly detection, predictive analytics, and correlation searches. Implement logging best practices for Linux servers , applications and containers . Automation & Optimization Automate Splunk deployments using Infrastructure-as-Code (IaC) tools such as Ansible, Terraform, or Python scripts . Tune searches, optimize queries, and improve system efficiency to handle high-volume data ingestion. Develop Splunk apps and custom scripts for data enrichment and automation. Collaboration & Support Work closely with Security, DevOps, and Infrastructure teams to integrate Splunk into enterprise workflows. Provide technical leadership, mentorship, and training to junior Splunk engineers. Troubleshoot Splunk performance issues, logs, and data pipeline challenges. Qualifications & Skills: Must-Have: 5+ years of hands-on Splunk engineering experience (design, deployment, tuning, and troubleshooting). Expertise in Splunk architecture, SPL (Search Processing Language) , and dashboard development. Experience with Splunk Enterprise Security (ES), IT Service Intelligence (ITSI), or Splunk Observability Suite . Strong scripting skills ( Python, Bash, PowerShell ) for automation and data enrichment. Familiarity with Linux security hardening and system auditing . Preferred: Experience with cloud-based Splunk ( AWS, Azure, GCP ) and integrations with cloud-native logging solutions. Familiarity with Infrastructure-as-Code ( Terraform, Ansible ) and CI/CD pipelines. Certifications such as Splunk Certified Admin, Splunk Certified Architect, or Splunk Certified Security Analyst or RHCE (Red Hat Certified Engineer) . Preferred candidate profile

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)