Splunk Engineer with Enterprise Security (Remote)

Splunk Engineer with Enterprise Security (Remote)

We are looking to hire a candidate with the skills sets mentioned and experience for one of our clients within the technology industry. This is a REMOTE role. It is a 6-month contract with the potential for extension (s).

Job Summary:

We are seeking an experienced Splunk Engineer specializing in Splunk Enterprise Security (ES) to administer, manage, and optimize our Splunk operations. The ideal candidate will be responsible for configuring, monitoring, and maintaining Splunk ES to support our security operations, working closely with Security Analysts to ensure effective threat detection and response.

Position Responsibilities:

• Splunk Enterprise Security (ES) Configuration & Management
  • Configure, customize, and maintain Splunk Enterprise Security to meet organizational security monitoring needs.
  • Able to monitor and resolve data breachesand catch up the alerts.
  • Develop, tune, and monitor security alerts, correlation searches, and dashboards within Splunk ES.
  • Implement and manage use cases, data models, and risk-based alerting frameworks.
• Collaboration & Security Operations Support
  • Work closely with Security Analysts to triage, investigate, and respond to security alerts generated by Splunk ES.
  • Provide timely and accurate data from Splunk to support incident investigation and forensic analysis.
  • Assist in developing and refining detection rules, reports, and visualizations to improve analyst efficiency.

Required Skills & Experience:

• 8+ years of experience in Splunk Enterprise Security.
• This role requires technical Splunk expertise and security operations collaboration to ensure effective threat detection and response.
• Proven experience as a Splunk security engineer with hands-on expertise in Splunk Enterprise Security.
• Strong ability to configure, run, and monitor alerts within Splunk ES.
• Experience working collaboratively with Security Analysts in a SOC or similar environment.
• Familiarity with security data sources, log formats, and SIEM integration.
• Splunk certifications (e.g., Splunk Certified Admin, Splunk Enterprise Security Certified Admin) are a plus.
• Knowledge of security frameworks, compliance requirements, and threat intelligence integration.
• Scripting skills (Python, Bash, etc.) for automation and customization.
• Experience in large-scale or multi-site Splunk deployments.

Other job specifications:

• Contracting Period: 6 months. C2C or W2.
• Job Location: This is a REMOTE role.
• Contract Rate/Salary: Market Rate.
• Interview Process: Phone/Video Interview (s).