Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications. Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies. Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities. Assist with development of … knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and Tier 2/3 Help Desk technicians. Required: Experience managing user authentication within Splunk including RBAC/ABAC Strong organizational, communication, and collaboration skills CompTIA Security+ CE Required Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls … communications. Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies. Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities. Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and More ❯
Splunk Database Engineer Location: Lackland AFB, San Antonio, Texas JOB SUMMARY: The Splunk Database Engineer provides expertise in the implementation, management, and maintenance of Splunk solutions. This role requires a deep understanding of Splunk core components, data ingestion, SPL, and dashboard/alert creation. The Engineer will be responsible for data ingestion, data transformation, data analysis, dashboard creation, and collaborating … with technical teams to support project requirements. PR IMARY DUTY RESPONSIBILITIES: Splunk Expertise: Provide Subject Matter Expertise for Splunk software. Demonstrate knowledge of different Splunk versions and data migration techniques between environments. Install, configure, troubleshoot, and patch Splunk software (Enterprise, Forwarders, Indexers, Search Heads). Demonstrate working knowledge of host computing, virtual machine computing, and Splunk software operation in Docker … Kubernetes, and cloud environments. Ingest data into Splunk and transform it for advanced analysis using SPL and Splunk tools. Demonstrate knowledge of programming/scripting languages common to Splunk (SPL, Python). Data Analysis and Visualization: Provide Splunk dashboards from datasets utilizing predefined templates or custom components. Understand and use SPL queries and aggregations for dashboard creation. Write Python code More ❯
We're Hiring: Splunk Architect Location: Canary Wharf, London (Hybrid - 3 days onsite/week) Contract: 12 months Industry: Energy & Trading We're looking for two experienced Splunk Architects to join a cutting-edge team in the Energy & Trading sector. This is a long-term contract role based in Canary Wharf , offering a hybrid work model (3 days onsite). … What You'll Be Doing: Lead the design and implementation of observability frameworks using Splunk for end-to-end monitoring, logging, and tracing. Drive automation of infrastructure provisioning and configuration using DevOps best practices . Provide technical authority and mentorship to engineering teams. Build and optimize ETL pipelines and data workflows for seamless data integration. Manage Docker/Kubernetes environments … teams-especially in Wallstreet FX environments. Lead incident response efforts and conduct post-mortem analysis to improve system resilience. What We're Looking For: Strong hands-on experience with Splunk architecture and observability tooling Expertise in containerization (Docker/Kubernetes) and cloud-based infrastructure Proficient in ETL/data engineering workflows Background in Energy Trading or Financial Systems is a More ❯
SPLUNK RESIDENT ENGINEER - (TOP SECRET CLEARANCE) Chantilly, VA Entelligence is seeking a Splunk Resident Engineer to support Splunk's clients. The successful candidate must be able to work in a cross-functional environment and interact with representatives from Entelligence, Splunk and the end-user. The Splunk Resident Engineer will function as the Splunk products Subject Matter Expert (SME) and will … Resource Managers to ensure that your projects have the best people with the right skills and at the right time. Contribute to and lead the development and maintenance of Splunk standards, processes, and practices. JOB REQUIREMENTS: Required to maintain a Top Secret Clearance 5+ years of relevant experience with implementing Splunk products with a track record of on-schedule delivery. … Practical understanding of cloud-centric architectures and services Experience in customer facing, problem solving positions. An understanding of ITSI, SIEM, Splunk Enterprise Security (ES), and Splunk Cloud. (Ideally Splunk migration) Strong communication, time management, and interpersonal skills. Basic project management skills are required. BENEFITS Competitive base salary Medical, dental, vision and life insurance Vacation, sick time and paid holidays Matching More ❯
Are you an experienced Splunk Engineer ready to make a real impact in cybersecurity? Join a leading European technology company specializing in consulting, digital services, and software development, with a presence in nearly 30 countries and a team of over 51,000 professionals. This is your opportunity to take ownership of critical security tooling that protects national infrastructure. You'll … tools. Develop and maintain security strategies in line with business objectives. Innovate and apply technical solutions to meet client requirements and security challenges. Skills/Must have: Expertise in Splunk; ideally Splunk Cloud Certified Admin or Splunk Enterprise Certified Admin (strong experience considered if certification is not held). Demonstrated success leading Security Engineering teams and managing large client bases. More ❯
JOB DESCRIPTION: Insight Global is seeking a Top Secret Cleared Splunk Developer to join a federal client of ours in the Charleston, SC area. This individual will join a team of about 5 others, supporting a local Navy Program with compute and defense by improving cyber posture and security of operations centers and naval vessels. This individual will work to … architect a new Splunk dashboard solution. They will mostly work with Log and System Data specifically. They will overall be building and analyzing the security posture of systems. Mostly working in a Windows environment. There will also be some need for scripting using Pythong/Bash. REQUIRED SKILLS AND EXPERIENCE: - Active Top Secret Clearance - Experience with Qlik, PowerBi, Tableau or More ❯
Annapolis Junction, Maryland, United States Hybrid / WFH Options
GTSC Talent Solutions
AEITS, Inc. is looking to grow its team! We are seeking a Splunk Engineer - Mon-Fri Day Shift, to support our customer in the Annapolis Junction, MD area. The Splunk Engineer will manage user authentication within Splunk, including RBAC/ABAC, and analyze security logs from networks, hosts, and firewalls. Mission: As a Splunk Engineer on this government program, you … CompTIA Security+ CE, DoD 8570 IAT II Requirements: U.S. Citizenship Active TS/SCI with polygraph A Bachelor's Degree and Twenty (20) years of relevant experience. Experience with Splunk Machine Learning Toolkit (MLTK) Proficiency in scripting languages such as CSS, HTML, JavaScript, and Python Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning tools Experience with ServiceNow Ticketing … System Proficiency in shell scripting to automate tasks and manipulate data Ability to ensure Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications Contribute to the development and improvement of industry best practices for enterprise data analytics technologies Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product More ❯
Cyber Security Engineer (Splunk) Senior and SME level positions available Top Secret Clearance is required Huntsville, AL ALTA IT Service is seeking a highly skilled and knowledgeable CyberSecurity Engineer - Senior Level to support a 24x7x365 Watch Floor team and safeguard the confidentiality, integrity, and availability of an organization's information assets. This position is located on a customer site in … Huntsville, AL or Clarksburg WV. Responsibilities include but are not limited to: • Develop, upgrade, and enhance the enterprise Security Information and Event Monitoring (SIEM) strategy and tool implementation via Splunk, design data flow diagrams and alert feed architectures to ensure seamless alert integration • Develop and maintain SIEM architecture, including data sources, log management, and alerting mechanisms • Configure tools, settings, alerts More ❯
on-site Microsoft Exchange and Microsoft Skype deployment -Maintain a Cisco WAN and LAN using technologies such as SD-WAN, FirePower, and DNA Center -Configure, tune, and monitor a Splunk Enterprise SIEM including monitoring, rulesets, and response -Microsoft Windows and Red Hat Enterprise Linux Clients and Servers, including management using Ivanti Endpoint Manager -Management of a virtual environment containing VMWare … years experience, or similar education/work experience via customer approval. Certifications/Relevant Experience: -Cisco CCNP (CCNA may be substituted with 3+ years of experience in Cisco networking) Splunk Enterprise Certified Admin and Splunk Enterprise Core Certified Power User -VMWare and NetApp experience -Red Hat Enterprise Linux experience -Microsoft Client and Server On-Prem Experience -Microsoft Exchange and Skype More ❯
Cybersecurity, or related discipline, or equivalent hands-on experience. 2-5 years of experience in security operations or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python, PowerShell, or Bash. Experience with REST APIs … critical thinking, and communication skills. Desirable Qualifications Experience with CI/CD for playbook development and version control (e.g., Git). Familiarity with other SOC tools (e.g., ServiceNow, Jira, Splunk, Elastic, SentinelOne). Security certifications such as: SOAR-specific certifications (e.g., Cortex XSOAR Certified Engineer) CrowdStrike Certified Falcon Responder Google Cybersecurity Certificate General security certs (e.g., CySA+, GCIH, CISSP) Please More ❯
Web/Email gateway security technologies, Security Orchestration, Automation and Response (SOAR) and cloud based platforms such as Azure, AWS, or Google • Experience with MITRE ATT&CK • Experience with Splunk or Splunk Enterprise Security Preferred Qualifications: • Ability to demonstrate interpersonal, organizational, writing, communications, and briefing skills • Ability to effectively use analytical and problem-solving skills • Provide logical use case development. More ❯
improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment. Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk . Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ). Skilled in incident response and threat intelligence analysis . Familiarity with Mitre Att&ck framework … you will be at the forefront -leading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ). Leading incident response and driving improvements in detection and containment strategies. Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck . Collaborating with colleagues to enhance More ❯
Nottingham, Nottinghamshire, East Midlands, United Kingdom Hybrid / WFH Options
Experian Ltd
Mac OS), Security Technologies (Anti-Virus, Intrusion Prevention), and Networking (Firewalls, Proxies) Interpret device and application logs from a variety of sources (e.g. Firewalls, Proxies, Web Servers, System Logs, Splunk, Packet Captures) to identify cause and determine next steps for containment, eradication, and recovery. Provide Advanced Support to analysts (Logs review, IP Block question).?Mentor other analysts (process question … networking, networking infrastructure, and network topologies (DMZ, VPN, WAN) and network technologies (WAF, IPS, Routers, Firewalls) Experience with commercial & opensource SIEMs, full packet capture tools, and network analysis tools (Splunk, Wireshark, SOF-ELK) Have a demonstrated knowledge of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs). Exhibit skills using common Incident Response and Security Monitoring?applications … such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR.), WAF, IPS Additional Information Benefits package includes: Flexible work environment, working hybrid or in the office if you prefer. Great compensation package and discretionary bonus plan Core benefits include pension, bupa healthcare, sharesave scheme and more 25 days annual leave with 8 bank holidays and 3 volunteering days. More ❯
Gosport, Hampshire, South East, United Kingdom Hybrid / WFH Options
Walsh Employment
improvement of cybersecurity postures. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Strong hands-on expertise with SIEM tools such as Microsoft Sentinel and Splunk Solid understanding of network protocols and infrastructure (e.g. TCP/IP , VPNs , firewalls ) Skilled in incident response and threat intelligence analysis Familiarity with Mitre Att&ck framework and advanced threat … be at the forefront of digital defenceleading incident response, improving detection mechanisms, and mentoring junior analysts. Your responsibilities will include: Analysing security incidents using advanced SIEM platforms ( Microsoft Sentinel , Splunk ) Leading incident response and driving improvements in detection and containment strategies Tuning and maintaining detection rules, using threat frameworks like Mitre Att&ck Collaborating with colleagues to enhance the overall More ❯
implementation and maintenance of annual security controls assessments. Assist with FISMA System audits as necessary. Leverage necessary vulnerability assessment and scanning tools including Nessus and ACSA to identify vulnerabilities, Splunk tools to monitor, detect and rectify misconfigurations. Working directly with development, platform, and infrastructure teams on security problems. What You Need to Succeed (Minimum Requirements): TS Clearance with SCI eligibility. … federal cybersecurity frameworks, including RMF, NIST 800-53, CNSS, and FISMA. Experience supporting cloud security in environments such as AWS GovCloud, C2S, SC2S, and Microsoft Azure. Analyze logs using Splunk and AWS tools. Hands-on experience with vulnerability assessment and configuration tools such as Nessus, ACSA, and Splunk. Work with GRC tools such as Xacta/JCAM Hold at least More ❯
process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Participation in a rotational on-call schedule for emergency page-outs is required. - Additional tasks to be assigned as needed. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. Minimum Requirements TCS087, T3, Band 6 EEO Statement Maximus More ❯
process. - Collaborate with cross-functional teams to ensure compliance with security standards and regulatory requirements. - Automate and orchestrate security processes, including incident response and threat detection, using technologies like Splunk, Chef Automate, and others. - Stay updated with emerging DevSecOps trends, tools, and practices, and provide recommendations for implementing new technologies. - Provide mentorship and guidance to junior engineers in DevSecOps practices … Candidates must reside within a commutable distance. - Participation in a rotational on-call schedule for emergency page-outs is required. - Experience in any or all the following: - Docker Enterprise, Splunk, Chef, Chef Automate, Chef (Ruby), Puppet, Ansible, Kubernetes, Openshift - Hands-on working experience in Terraform (IaC), Jenkins groovy scripts, and Python. - Additional tasks to be assigned as needed. Minimum Requirements More ❯
experience in network or cybersecurity roles Strong expertise in network protocols, security controls, and firewall technologies (e.g., Palo Alto, Cisco ASA, Fortinet, Check Point) Familiar with SIEM tools (e.g., Splunk, QRadar) and endpoint protection systems Understanding of secure architecture in cloud environments (AWS, Azure or GCP) Relevant certifications (e.g., CISSP, CISM, CEH, CCNP Security) are a strong asset Independent, analytical More ❯
storage Experience with hands-on troubleshooting, customer interfacing, issue resolution, discrepancy tracking, and report generation Familiar with software frameworks used for searching, monitoring, and analyzing big data such as Splunk and Elastic Stack Experience with Linux configuration regarding Storage, Networking, Load Balancing, Memory Management, VMs, Firewalls, and System Monitoring Experience with corporate STE/STN security compliance policies, procedures, and More ❯
fast-paced and evolving environment, we'd love to hear from you! As a Security Analyst at Trainline, you will Own the management and configuration of our SIEM platform (Splunk), ensuring its fully operational, updated, configured to best practice and providing value for money. Drive the creation of new alerts, working with the wider Security Operations team to ensure appropriate … to hear from you if you have Strong technical knowledge, this could be across the domain (Security, Networks, Infrastructure, End User Compute). Hands-on experience with SIEM platforms (Splunk, Microsoft Sentinel, Elastic, etc). Familiarity with other security tools (EDR, Vulnerability Management, Firewalls, IDS). An understanding of cloud platforms (AWS, Azure, GCP) and relevant Security principles. A desire More ❯
Leeds, West Yorkshire, England, United Kingdom Hybrid / WFH Options
4Square Recruitment Ltd
SC-200, SC-100, AZ-500) Experience with automation (Logic Apps, Power Automate, PowerShell/Python) Exposure to compliance frameworks (NIST, ISO 27001, Cyber Essentials) Familiarity with other SIEMs (Splunk, QRadar, LogRhythm) #SOC #MicrosoftSentinel #CyberSecurityJobs #ThreatDetection #WeAreHiring #MSSP More ❯
documentation. • Experience with automation using Ansible, Terraform or other similar tools DESIRED SKILLS • Experience operating in a virtual environment such as VMware vSphere/ESXi, or KVM • Experience with Splunk • Experience monitoring network activity and network traffic redirection. • Familiarity with web proxies, common web servers (i.e. Apache, NGINX), SSL certificates, and DNS records. • Experience with installing, configuring and maintaining physical More ❯
TCPDump). Proficient in Linux, Windows, and TCP/IP networking. Skilled with and/or demonstrated technical aptitude with vulnerability and risk assessment tools such as Elasticsearch or Splunk SIEMs, Rapid7 Nexpose, and IDS/IPS monitoring and alerting More ❯