***Candidates willing to work on W2 are eligible for this role.
Our Client is seeking a Senior Splunk Enterprise Security Engineer to join our Security Engineering & Architecture team. In this high-impact individual contributor role, you will own the deployment, optimization, and day-to-day administration of our Splunk Enterprise Security (ES) platform across a cloud-based environment supporting one of the largest retail operations in the country.
You will be the go-to subject matter expert for Splunk ES, partnering with SOC analysts, threat intelligence teams, compliance stakeholders, and IT leadership to ensure our security monitoring platform delivers maximum visibility, reliability, and value. This is a hands-on, technically deep role for someone who thrives in complex, high-volume environments and takes pride in building resilient security infrastructure.
What You ll Do
Lead the end-to-end administration of Splunk Enterprise Security across a cloud-hosted (AWS/Azure/Google Cloud Platform) deployment, including architecture decisions, capacity planning, performance tuning, and version upgrades.
Design, implement, and maintain ES frameworks including notable event configurations, risk-based alerting, asset and identity correlation, and threat intelligence integrations.
Develop and optimize correlation searches, dashboards, and investigation workflows to reduce alert fatigue and accelerate analyst response times.
Drive data source onboarding and ensure CIM (Common Information Model) compliance for new and existing log sources across the enterprise.
Partner with compliance teams to ensure Splunk ES configurations directly support PCI DSS, SOX, and NIST CSF audit and reporting requirements.
Establish and maintain health monitoring for the Splunk environment, including search performance, indexing throughput, forwarder connectivity, and license utilization.
Create and maintain operational documentation, runbooks, and knowledge base articles for Splunk ES administration and troubleshooting.
Serve as the escalation point for complex Splunk issues and participate in incident response efforts during critical security events as needed.
Evaluate and recommend new Splunk apps, add-ons, and integrations that strengthen the organization s security posture.
Collaborate with Security Architecture peers to align Splunk ES capabilities with the broader security tooling ecosystem and long-term technology roadmap.
Required
5+ years of hands-on experience with Splunk platform administration, with significant depth in Splunk Enterprise Security.
Active Splunk certifications required: Splunk Enterprise Certified Admin and/or Splunk ES Certified Admin.
Proven experience managing Splunk deployments in cloud environments (AWS, Azure, or Google Cloud Platform).
Deep understanding of security monitoring, log management, SIEM operations, and event correlation at enterprise scale.
Working knowledge of PCI DSS, SOX, and NIST CSF compliance frameworks and how they translate into SIEM use cases and reporting requirements.
Strong SPL (Search Processing Language) proficiency, including complex statistical commands, lookups, macros, and data models.
Experience with Splunk infrastructure components: indexers, search heads, heavy/universal forwarders, deployment servers, and cluster management.
Excellent communication skills with the ability to translate complex technical concepts for non-technical stakeholders.
Preferred
Experience in large-scale retail or similarly complex, high-transaction-volume environments.
Familiarity with Splunk SOAR (formerly Phantom) and security automation/orchestration workflows.
Background in detection engineering, threat hunting, or SOC operations.
Additional certifications such as CISSP, GIAC (GCIA, GCIH), or cloud security credentials (AWS Security Specialty, AZ-500).
Experience with Infrastructure as Code (Terraform, Ansible) for Splunk deployment management.
Scripting proficiency in Python, Bash, or PowerShell for automation and custom integrations.
Rate: $60- $70/hr (depends on experience). This is a contract opportunity with candidates expected to work 40 hours a week. Candidates willing to work on W2 are eligible for this role.
About The Company
Peterson Technology Partners (PTP) is an Equal Opportunity Employer committed to creating a transparent, inclusive, and human-centered hiring experience.
For more than 28 years, PTP has operated as one of the top IT staffing and recruiting firms in the USA built on trust, long-term partnerships, and technical excellence.
Based in the Chicago suburb of Park Ridge, IL, our team of more than 500 employees and consultants is dedicated to:
Helping every client make the best hiring decisions possible
Matching professionals with the right IT jobs and career opportunities
As part of that commitment, we believe in providing clear information about how our hiring technologies work and how your data is used. The following section outlines our AI-assisted interview process and your rights as a candidate.
AI-Assisted Interview Experience (Pete & Gabi Rebecca)
To provide a consistent, fair, and flexible experience for all candidates, we use AI-assisted tools to support parts of the interview process. This includes our proprietary AI platform Pete & Gabi, which includes AI recruiter Rebecca.
These AI hiring tools help us:
- Transcribe interviews
- Summarize candidate responses
- Generate job-related insights
- Streamline communication and scheduling
Please note that:
The AI does NOT make hiring decisions; all decisions are made by our human recruiters, hiring managers, or client partners.
The AI does not evaluate facial expressions, emotions, or physical traits; it is used only to support fairness, consistency, and efficiency.
If you prefer a non-AI interview format, we will gladly provide an alternative.
Technical or Case Interviews (Role-Dependent):
When applying for certain tech jobs, you may participate in:
- A technical interview
- A coding challenge
- A case study
- A client-specific assessment
We will always explain what to expect in advance so you can prepare with confidence.
Human Review & Selection:
Every candidate's profile including interviews, conversations, and assessments is reviewed by experienced recruiters and hiring leaders.
AI insights may assist with organization and evaluation, but final decisions are always human-driven.
Your Rights as a Candidate:
At PTP, every candidate has the right to:
Request a non-AI interview path
Ask how your data is being used
Request access to transcripts or interview recordings
Request deletion of your AI-recorded interview
Receive clear, timely communication
Our goal is to ensure you feel respected, informed, and supported throughout your experience.
Our Commitment:
For more than 28 years, PTP has focused on putting people first candidates, consultants, employees, and clients.
We're committed to a hiring process that is:
- Transparent
- Compliant
- Equitable
- Powered by innovative technology that enhances not replaces human judgment
Welcome to the future of hiring at Peterson Technology Partners.
We're excited to learn more about you.
Equal Employment Opportunity:
Peterson Technology Partners is an Equal Opportunity Employer. All qualified applicants will receive consideration without regard to race, color, religion, national origin, gender identity, sexual orientation, disability, veteran status, or any other protected characteristic.
Never miss an opportunity! Create an alert based on the job you applied for.
