Splunk Security Platform Engineer

Experis is a global leader in recruitment of specialists and management staff in key IT areas. They offer competitive employment opportunities and interesting IT projects for both experienced experts and those starting their careers in IT.

• 3+ years working in large scale Splunk environment.
• Splunk Enterprise Security experience is a must.
• Track record of designing, developing, and onboarding solutions into Enterprise Splunk deployments.
• Extensive knowledge of Splunk architecture and distributed components (indexer clusters, forwarders, search head clusters, deployment servers, DMCs, dashboards).
• Strong knowledge of Splunk Enterprise Security at administration and use case level.
• Deep understanding of Splunk language (SPL).
• Intermediate Python or PowerShell scripting skills are a must.
• Knowledge of CSS, XML, macros, and JavaScript.
• Experience with external systems management products and feeds, particularly the M365 security portfolio.
• Knowledge of optimized data architectures and data analytics.
• Experience with IaaS and SaaS deployments, security, and integration.
• Understanding of WANs, LANs, and TCP/IP.

• Ensure the continuity and smooth functionality of the Splunk service, its associated components, and its integrations with other services.
• Design and implement solutions to address business problems, understanding the Splunk architecture requirements for scalability, security, performance, and cost-efficiency.
• Own the overall solution blueprint and roadmap and work closely with business units to translate requirements into an appropriate solution design.
• Ensure the security of the Splunk environment by performing proactive health checks and keeping abreast of new threats and vulnerabilities.
• Remain current with emerging technologies, business requirements, and enhancements; develop proposals for required changes.
• Develop best practices, standards, and architectural principles for the Splunk service.
• Execute creation and maintenance of architectural documentation.
• Assist and engage other system owners and project development teams with integration requirements with other enterprise security systems.
• Assist and engage other engineering teams for problem determination of incidents.