Splunk Engineer Architect

Key Role:

Lead consulting engagements focused on assessment, architecture, and deployment of enterprise-scale Splunk solutions, including operational development and providing oversight for a Splunk log management infrastructure. Manage Splunk and oversee production support. Provide architecture-level design to support and operate Splunk using Security Information and Event Management (SIEM) and Security Event Management (SEM) best practices and Splunk enterprise security. Design Splunk systems to meet growth while maintaining the balance between performance, stability, and agility. Manage customer expectations, onboard data into Splunk, support projects in multi-site and clustered Splunk installations, and assist with the development of advanced Key Performance Indicators (KPIs) and metrics to meet the requirements of key stakeholders. Conduct research in areas driven by customer use cases, architect and support systems to configure and deploy enterprise SIEM log management solutions and develop automation for security tools management. Assist with the automation, deployment, integration, and testing of enterprise systems and services and create and optimize Big Data correlations as a Splunk search language (SPL) expert. This position may require extensive travel to client sites of up to 80% of the time.

Basic Qualifications:
-5+ years of experience with IT infrastructure, networking, architecture, administration, or security

-3+ years of experience as a Splunk administrator or architect for a large scale enterprise SIEM
-Experience with working in a large enterprise environment
-Experience with using automation technologies to manipulate data, including continuous integration (CI) or continuous delivery (CD) pipelines, deployment tools, and scripting
-Knowledge of enterprise logging, including application, OS, and security technology logging
-Knowledge of Splunk and integration of Incident Management systems, Change Management solutions, customer interaction, data onboarding, configuration, optimization, and syslog, including Rsyslog, SyslogNG, and Linux

-Ability to demonstrate SPL expertise

-Ability to multitask and solve complex technical problems
-Ability to travel up to 80% of the time
-HS diploma or GED

Additional Qualifications:

-Experience with working in a commercial consulting or professional services environment
-Experience with infrastructure management and support and system administration in Windows and UNIX environments
-Experience with enterprise-scale operations and maintenance environments
-Experience with programming a plus
-Experience with Linux shell scripting, Python, and Regex preferred
-Experience with security tools, including Firewall, IDS, Active Directory, Nmap, Burp, Proxy, Bro, or Endpoint technologies
-Experience with Cloud solution building

-Knowledge of networking protocols
-Possession of excellent leadership, negotiation, and conflict resolution skills

-BA or BS degree in CS, IT, or related field
-Splunk Administrator Certification preferred

-Splunk Architect Certification preferred
-CISSP, CEH, or SANS Certifications preferred

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, veteran status, or other protected characteristic—to fearlessly drive change.

Not ready to apply? Join our talent community and sign up for job alerts.