false
Careers
Careers
Overview
Engineering

Principal Engineer - Attack Analyzer

  • - Hybrid Remote
Apply Now
< Back to search results
Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an amazing career destination. No matter where in the world or what level of the organization, we approach our work with kindness. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Come help organizations be their best, while you reach new heights with a team that has your back.

Role Summary

Your role as a Principal Engineer is crucial in revolutionizing cyber threat defense, particularly against phishing and malware distributed through malicious URLs, emails, files and qr codes.. Your expertise will directly improve our customers' security posture! If you're passionate about advancing cybersecurity technology and making a significant impact in automated threat analysis, we invite you to apply. Your work will be key in shaping future cyber defense strategies and protecting organizations from data breaches and cyber attacks!

Meet the Team

The Splunk Attack Analyzer (SAA) team streamlines security threat analysis, providing forensic evidence and metadata to customers via API and Portal. As a Principal Engineer, you'll orchestrate the optimization of backend code and detection capabilities, focusing on automated URL, file analysis and web navigation. You'll architect innovative solutions to overcome challenges posed by the threat actors.

Key Responsibilities

  • Serves as technical lead for a team or key domain, driving a 6+ month roadmap focused on features, operations, observability, and supportability to enhance customer experience
  • Actively engaged in technical work, including code reviews and hands-on contributions
  • Improves test health and code coverage through processes, tools, and mentorship
  • Mentors developers on technical and soft skills, including roadmap development and advocacy
  • Leads system design discussions, ensuring non-functional requirements (scale, security, usability, etc.) are addressed and documented
  • Communicates effectively as a technical authority in broader architectural and tech forums
  • Drives complex projects and operational improvements end-to-end, partnering with PMs on prioritization, execution, and continuous feedback
  • Translates customer needs and operational insights into system simplifications that speed development and increase value
  • Introduces innovative tools and methods to measurably improve troubleshooting efficiency

Required Qualifications:

  • Bachelor's degree in Computer Science, Computer Engineering, or a related field; or equivalent practical experience. Advanced degrees are a plus.
  • 8+ years of professional experience in software engineering, with a deep focus on cybersecurity, distributed systems, and modern web technologies.

  • Recognized technical authority in Python and Go, with extensive experience in building and scaling production-grade systems using these languages and ecosystems.
  • Expertise in security architecture, threat modeling, vulnerability assessment, and the design of secure-by-default systems and processes.
  • Deep knowledge of software architecture and design patterns, with a track record of defining long-term architectural strategy and guiding complex, multi-team implementations.
  • Extensive experience with cloud platforms (e.g., AWS, GCP, Azure), including securing cloud-native applications, infrastructure-as-code, and multi-region deployments.
  • Proficient in modern development practices and tooling (e.g., Git, CI/CD, Docker, Kubernetes), with an ability to influence DevSecOps processes across teams.
  • Exceptional debugging, profiling, and performance optimization skills across the entire tech stack.
  • Experience leveraging data analytics, large-scale data processing, or machine learning to enhance security and threat detection capabilities.
  • Proven ability to communicate complex technical ideas to diverse stakeholders, from engineers to executives, and to lead technical direction across teams.
  • Demonstrated success in mentoring senior and junior engineers, fostering a culture of learning, and driving engineering excellence across an organization.
  • Significant experience designing and leading the implementation of large-scale, resilient, distributed systems with high availability and strong security guarantees.
  • Track record of driving cross-functional technical initiatives and influencing product and organizational strategy through thought leadership.

Key Proficiencies:

  • Ability to think creatively to solve complex technical challenges in cybersecurity.
  • Strong analytical skills with a focus on performance optimization and scalability.
  • Excellent communication skills, able to explain sophisticated technical concepts to both technical and non-technical audiences.
  • Proactive problem-solver with a strong sense of ownership and drive for results.

Splunk is an Equal Opportunity Employer

At Splunk, we believe crafting a culture of belonging isn’t just the right thing to do; it’s also the smart thing. We prioritize diversity, equity, inclusion, and belonging to ensure our employees are supported to bring their best, most authentic selves to work where they can thrive. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. 

 

Apply Now
Explore open roles >

Splunk's Hiring Practices

Splunk turns machine data into answers. Organizations use market-leading Splunk solutions with machine learning to solve their toughest IT, Internet of Things and security challenges.
 
Splunk, a Cisco company, is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. We consider qualified applicants with criminal histories, consistent with legal requirements. Click here to review the US Department of Labor’s EEO is The Law notice. If you need assistance or an accommodation to apply or during the hiring process, please let us know by completing our Accommodation Request form.
 
Splunk also has policies in place to protect the personal information candidates disclose to us as part of the application process. Please click here to review Splunk’s Career Site Privacy Policy.

Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.

Splunk is committed to the health and safety of our employees and customers. Splunk is impacted by the mandates outlined for U.S. Government contractors in President Biden’s Path out of the Pandemic: COVID-19 Action Plan. As a result, Splunk requires U.S. employees, whether assigned to an office or 100% remote, to provide proof of full vaccination, as defined by the CDC. Splunk provides reasonable accommodations for employees who have qualifying medical or religious reasons.

Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to accessiblecareers@splunk.com. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.

Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.

To check on your application click here.

DIVE DEEPER

Find out what makes Splunk such a great place to work
box1 box1
Our Values

Splunkers are encouraged and empowered to be Innovative, passionate, disruptive, open and fun.

Learn More
box2 box2
Benefits and Wellbeing

Our benefits are designed to support your physical, financial, emotional and mental wellbeing.

Explore Splunk Benefits
box3 box3
Early Talent Program

Intern with people you want to hang out with, even outside the office.

Learn More
box3 box3

Our Blog

Hear from Splunkers on the latest.

Read the Blog
box2 box2
Diversity, Equity, Inclusion & Belonging

Learn about Splunk’s commitment to creating a culture of belonging.

See Our Approach
box1 box1
LinkedIn

Follow Splunk on LinkedIn for job announcements, company news and more.

Follow Us
Legal
Privacy
Sitemap
Cookies / Do not sell or share my personal data
Website Terms of Use
Modern Slavery

© 2005 - 2025 Splunk LLC All rights reserved.