Skip to main content
Security and Risk Management

Senior Engineer, Splunk Security CoE Operations

  • - Hybrid Remote

Join us as we pursue our exciting new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn more about Splunk careers and how you can become a part of our journey!

Role

Do you want to make a difference in the security posture of an entire company? In this role, you will be responsible for developing, fixing, and debugging internal deployments of Splunk products, such as Splunk Cloud Platform and SOAR. You will have an expert level understanding of Information Security and Software Development principles coupled with a strong aspiration to learn and grow within the organization. This role will be part of the Splunk Security Center of Excellence team and will engage in problem solving, effectively elevating the internal customer experience, automating processes, and improving the reliability of our services. This is an upbeat team who has fun and enjoys a good laugh but above all else thinks security first!

Responsibilities

  • Ensure the steady-state operations of the Splunk products used by Splunk's in-house Security Operations team
  • Work closely with the Splunk Global Security (SGS) teams to improve existing automation and search initiatives that deliver resilient solutions
  • Tap into your expertise of all things Splunk to address sophisticated issues while mentoring new engineers
  • Perform as a technical team lead to help lead prioritization efforts across your shift
  • Drive projects from conception to implementation across the full Splunk product portfolio
  • Assess, design, and improve SGS processes and workflows with a focus on integrating automation through various tools
  • Own the end-to-end development of custom data onboarding scripts and add-ons for internal corporate tools and services
  • Integrate new, complicated logging sources and build intricate playbooks and custom scripts to automate current detection and response workflows while unlocking operational efficiencies
  • Analyze internal metrics and workflows to reduce false positives and accurately focus engineering efforts
  • Develop repeatable processes to build and remediate playbooks in order to efficiently resolve any incidents that arise
  • Build high-quality documentation to establish repeatable, reproducible processes to drive consistency of execution across the team
  • Implement validated security strategies related to our team’s Linux-based and AWS-based infrastructure, Python code, and containerized services

Requirements

  • 5+ years of strong background in Splunk and/or Splunk SOAR administration that supported cybersecurity or information technology teams
  • 5+ years of demonstrable experience in tool integrations and software development, with strengths in CI/CD and REST APIs, Python, Golang, JavaScript, or similar
  • Fully proficient in git and version control systems, like GitLab and GitHub
  • Skilled in Linux administration and Cloud Technologies, such as AWS.
  • Excellent communication skills, both verbal and written; able to explain intricate technical topics to varying groups
  • Splunk Certified Architect or 2+ years architecture experience managing distributed Splunk deployment and all components - OR -
  • Splunk Certified Developer or 2+ years developing Splunk applications and add-ons - OR -
  • Splunk SOAR Certified Automation Developer or 2+ years designing, creating, and debugging SOAR playbooks

We value diversity at our company. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or any other applicable legally protected characteristics in the location in which the candidate is applying.



Splunk's Hiring Practices
Splunk turns machine data into answers. Organizations use market-leading Splunk solutions with machine learning to solve their toughest IT, Internet of Things and security challenges.

We value diversity, equity, and inclusion at Splunk and are an equal employment opportunity employer. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. Click here to review the US Department of Labor’s EEO is The Law notice. Please click here to review Splunk’s Equal Employment Opportunity Policy Statement. If you need assistance or an accommodation to apply or during the hiring process, please let us know by completing our Accommodation Request form.

Splunk also has policies in place to protect the personal information candidates disclose to us as part of the application process. Please click here to review Splunk’s Career Site Privacy Policy.

Splunk does not discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Please click here to review Splunk’s Pay Transparency Nondiscrimination Provision.

Splunk is committed to the health and safety of our employees and customers. We comply with local, state/territory, and federal regulations to prevent the spread of COVID-19 in the countries in which we operate. Splunk provides reasonable medical, religious, or other legally required accommodations for eligible employees.

Splunk is also committed to providing access to all individuals who are seeking information from our website. Any individual using assistive technology (such as a screen reader, Braille reader, etc.) who experiences difficulty accessing information on any part of Splunk’s website should send comments to accessiblecareers@splunk.com. Please include the nature of the accessibility problem and your e-mail or contact address. If the accessibility problem involves a particular page, the message should include the URL of that page.

Splunk doesn't accept unsolicited agency resumes and won't pay fees to any third-party agency or firm that doesn't have a signed agreement with Splunk.

DIVE DEEPER

Find out what makes Splunk such a great place to work

box1 box1
Our Values

Splunkers are encouraged and empowered to be Innovative, passionate, disruptive, open and fun.

Learn More
box2 box2
Benefits and Wellbeing

Our benefits are designed to support your physical, financial, emotional and mental wellbeing.

Explore Splunk Benefits
box3 box3
Early Talent Program

Intern with people you want to hang out with, even outside the office.

Learn More
box3 box3

Our Blog

Hear from Splunkers on the latest.

Read the Blog
box2 box2
Diversity, Equity, Inclusion & Belonging

Learn about Splunk’s commitment to creating a culture of belonging.

See Our Approach
box1 box1
LinkedIn

Follow Splunk on LinkedIn for job announcements, company news, and more.

Follow Us