Software Engineer - Attack Analyzer

Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an amazing career destination. No matter where in the world or what level of the organization, we approach our work with kindness. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Come help organizations be their best, while you reach new heights with a team that has your back.

Role Summary

As a Software Engineer, you’ll play a vital role in building and improving systems that defend against cyber threats like phishing, malware, and malicious content delivered via URLs, emails, files, and QR codes. You’ll contribute to the development of automated threat analysis tools that enhance our customers’ security. If you're passionate about cybersecurity and excited to grow your skills while making a real-world impact, we encourage you to apply. Your work will help strengthen cyber defenses and protect organizations from evolving threats.

Meet the Team

The Splunk Attack Analyzer (SAA) team streamlines security threat analysis, providing forensic evidence and metadata to customers via API and Portal. As a Software Engineer, you'll orchestrate the optimization of backend code and detection capabilities, focusing on automated URL, file analysis and web navigation. You'll help with innovative solutions to overcome challenges posed by the threat actors.

Key Responsibilities

Design, build, and test scalable software features aligned with business and user needs.
Collaborate across teams to solve technical challenges and enhance legacy systems.
Follow best practices in code quality, testing, and maintainability.
Participate in design/code reviews and contribute to documentation.
Debug and resolve issues, including bugs and performance bottlenecks.
Engage in Agile workflows, sprint planning, and team collaboration.
Improve development efficiency through automation and test optimization.
Support reliability through on-call, incident response, and performance tuning.
Contribute to CI/CD, testing, and DevOps efforts in cloud environments.
Build product knowledge to deliver impactful, user-focused solutions.

Required Qualifications:

Bachelor’s degree in Computer Science, Engineering, or a related field, or equivalent practical experience.
2+ years of professional software engineering experience, ideally with exposure to cybersecurity or web technologies.
Proficiency in Python or Go, with experience using relevant frameworks and libraries.
Familiarity with basic security concepts such as common attack vectors, authentication, and secure coding practices.
Understanding of software design principles and patterns for building maintainable, scalable systems.
Experience working with cloud platforms (e.g., AWS, GCP, or Azure).
Comfortable using development tools such as Git, CI/CD pipelines, Docker, or Kubernetes.
Solid debugging and problem-solving skills, with a focus on delivering reliable code.
Exposure to data processing or analytics, particularly as it relates to security, is a plus.
Strong communication skills and ability to work collaboratively within a team environment.
Eagerness to learn from peers, take feedback, and grow technical expertise over time.

Key Proficiencies:

Contributes to feature design and development with solid programming skills.
Follows best practices and participates in code reviews.
Writes well-tested code with appropriate test coverage.
Troubleshoots and resolves low-complexity customer issues.
Supports system operations at the team’s level.
Participates in sprint estimation and planning.
Understands the product and has deep knowledge of their feature area.

Splunk is an Equal Opportunity Employer

At Splunk, we believe crafting a culture of belonging isn’t just the right thing to do; it’s also the smart thing. We prioritize diversity, equity, inclusion, and belonging to ensure our employees are supported to bring their best, most authentic selves to work where they can thrive. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements.

Apply Now

Explore open roles >

Splunk's Hiring Practices

^{Splunk turns machine data into answers. Organizations use market-leading Splunk solutions with machine learning to solve their toughest IT, Internet of Things and security challenges.}

^{Splunk, a Cisco company, is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. We consider qualified applicants with criminal histories, consistent with legal requirements. Click here to review the US Department of Labor’s EEO is The Law notice. If you need assistance or an accommodation to apply or during the hiring process, please let us know by completing our Accommodation Request form.}

^{Splunk also has policies in place to protect the personal information candidates disclose to us as part of the application process. Please click here to review Splunk’s Career Site Privacy Policy.

Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.

Splunk is committed to the health and safety of our employees and customers. Splunk is impacted by the mandates outlined for U.S. Government contractors in President Biden’s Path out of the Pandemic: COVID-19 Action Plan. As a result, Splunk requires U.S. employees, whether assigned to an office or 100% remote, to provide proof of full vaccination, as defined by the CDC. Splunk provides reasonable accommodations for employees who have qualifying medical or religious reasons.

Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to accessiblecareers@splunk.com. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.

Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.

To check on your application click here.}