Job Summary We are seeking a Senior Splunk Engineer to support a centralized enterprise logging initiative by onboarding diverse systems and data sources into Splunk. This role focuses on enhancing operational monitoring, improving troubleshooting capabilities, and ensuring reliable data ingestion and alerting. The ideal candidate will have deep expertise in Splunk, strong analytical skills, and the ability to collaborate effectively with cross-functional teams. Key Responsibilities Onboard network, cloud, server, and application data sources into Splunk. Develop, execute, and optimize advanced searches using Splunk Search Processing Language (SPL). Design, build, and maintain dashboards and alerts to provide actionable insights. Manage Splunk Technology Add-ons (TAs) for data onboarding, normalization, and alignment with the Common Information Model (CIM). Perform data onboarding activities including source type configuration, field extraction, and index design strategies. Ensure accurate timestamp recognition, parsing, and data formatting. Support alerting workflows and ensure consistent, reliable data ingestion. Collaborate with internal teams to troubleshoot issues and improve monitoring capabilities. Lead technical discussions and workshops, explaining complex concepts to stakeholders. Required Qualifications 8+ years of hands-on experience with Splunk Enterprise and/or Splunk Cloud. Advanced proficiency in SPL, including commands such as stats, timechart, eval, lookup, transaction, and data model queries. Experience with data onboarding processes including source type design, field extraction (regex, props.conf, transforms.conf), timestamp handling, and line breaking. Strong understanding of Splunk Common Information Model (CIM) and management of Technology Add-ons (TAs). Experience designing KPI-driven dashboards, real-time and scheduled alerts, and anomaly-based detections. Strong analytical, troubleshooting, and problem-solving skills. Ability to communicate technical concepts clearly to both technical and non-technical stakeholders. Preferred Qualifications Experience working with cloud-native log sources. Familiarity with security tools such as endpoint detection and response (EDR), identity and access management (IAM), firewalls, or intrusion detection/prevention systems (IDS/IPS). Experience with Splunk Cloud environments aligned with compliance frameworks such as FedRAMP. Relevant Splunk certifications such as Architect, Administrator, or Certified Consultant. Education: Bachelors Degree Certification: Splunk Architect , Splunk Administrator , Splunk Certified Consultant
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
- Dice Id: compun
- Position Id: TIWDC5784410
- Posted 3 hours ago
Never miss an opportunity! Create an alert based on the job you applied for.
