13 Splunk Es Jobs

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

Role & responsibilities Good knowledge on Splunk monitoring platform Facilitating the integration of new data sources into Splunk. Developing use cases and crafting dashboards in Splunk tailored to our clients' needs. Monitoring and generating reports on the performance metrics of the Splunk environment Developing Application Security and Platform Security Dashboards. Work with onsite and offshore Splunk developers to deliver Splunk dashboards, reports and alerts Configuration in Splunk Experience: Minimum 5 years of experience in splunk admin role.

Immediate Openings on SIEM Engineer _Contract_Pan India Notice Period :Immediate. Type : Contract Key Accountabilities Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS Solution Building Co-relation searches for Cyber Operation requirements Evaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness audit Structure phased deliverables to link long term vision with time-boxed activities. Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully. Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Stakeholder Management and Leadership Negotiate and solicit engagement and support at all levels of the organisation, particularly where support is low or challenging. Communicate clearly and regularly. Typically faces off to AVP VP level stakeholders. Considers the impact of their actions and decisions on key stakeholders, seeking to deliver a positive outcome for those involved. Decision-making and Problem Solving Apply evaluative judgement and analytical skills to operate effectively within a complex and changing environment. Understand the requirements and perspectives of stakeholders and integrate into their understanding of complex situations. Demonstrates a broad understanding of how the bank operates and the metrics used to measure performance Analyses problems and evaluates options in a logical and systematic way. Seeks the advice of stakeholders to better create clarity in complex situations, understand problems, evaluate options and make decisions What were looking for: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud Knowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction. Knowledge of the Common Information Model, data models, enrichment, and automation Good experience on Splunk add-Ons installation configuration to bring security logs into Splunk. Good understanding of the Security Domain. Documentation skills in order to provide high quality documentation for internal customers and technical teams.

Diverse Lynx is looking for Splunk Developer to join our dynamic team and embark on a rewarding career journey A Splunk Developer is responsible for designing, implementing, and maintaining Splunk-based solutions to collect, analyze, and visualize machine-generated data for various operational and security purposes They work closely with stakeholders to understand data requirements, develop data ingestion processes, create dashboards and reports, and automate data analysis workflows Splunk Developers also collaborate with cross-functional teams to ensure optimal performance, scalability, and security of Splunk deployments Key Responsibilities:Collaborate with stakeholders to understand data requirements, use cases, and objectives for Splunk deployments Design and implement data ingestion processes, including data collection, parsing, normalization, and indexing in Splunk Develop custom Splunk queries, search strings, and data models to extract meaningful insights from machine-generated data Create interactive dashboards, reports, and visualizations using Splunk's search processing language (SPL) and visualization tools Implement and maintain Splunk apps, add-ons, and configurations to support specific use cases or data sources Automate data analysis workflows and alerting mechanisms to identify and respond to critical events and anomalies Optimize Splunk deployments for performance, scalability, and search efficiency Monitor and troubleshoot Splunk infrastructure and resolve issues related to data ingestion, search performance, and system availability Collaborate with security and operations teams to develop and implement Splunk-based security monitoring, log analysis, and incident response solutions Ensure data privacy and security by implementing access controls, data encryption, and compliance with relevant regulations Stay updated with Splunk product releases, new features, and best practices to recommend and implement improvements in Splunk deployments Provide training and support to end-users on utilizing Splunk for data analysis and visualization

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM), Splunk Administration, Splunk Enterprise Security, Splunk Phantom Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Splunk Engineer, you will be working within the Security Engineering & Technology Services team, responsible for understanding, researching, designing, developing, operating, and enhancing security solutions with the products client has acquired for consumption as a service offering across all of client. You will collaborate with Security Operations (mainly Cyber) teams to support in implementation of new technical solutions, on-board new data into Splunk and develop use cases to meet the business requirements Roles & Responsibilities:Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS SolutionBuilding Co-relation searches for Cyber Operation requirementsEvaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness auditStructure phased deliverables to link long term vision with time-boxed activities.Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully.Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Professional & Technical Skills: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud & SOARKnowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction.Knowledge of the Common Information Model, data models, enrichment, and automationGood experience on Splunk add-Ons installation / configuration to bring security logs into Splunk.Good understanding of the Security Domain.Documentation skills in order to provide high quality documentation for internal customers and technical teams. Additional Information:- The candidate should have a minimum of 8+ years of experience in Security Information and Event Management (SIEM) with 5+ yrs experience on Splunk SIEM.- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions.- This position is based at our Pune office with flexible locations as banglore and Chennai. Qualification 15 years full time education

Greetings !! We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers. Roles & Responsibilities: Splunk Deployment & Administration: Install, configure, and manage Splunk Enterprise and Splunk Cloud. Handle indexers, search heads, forwarders, and clustering. Optimize Splunk performance, storage, and scalability. Security & Splunk Monitoring Solutions: Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards. Troubleshoot security-related issues within Splunk. Customer Interaction & Troubleshooting: Engage with customers to understand their requirements and provide technical guidance. Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding. Splunk Architecture & Implementation: Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. Lead end-to-end Splunk implementations, migrations, and upgrades. Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics. Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools. Team Leadership & Customer Engagement: Lead and mentor a team of Splunk Administrators & Engineers. Interact with customers to gather requirements, design solutions, and conduct workshops etc. Review and improve Splunk use cases, dashboards, and data models. Optimization & Automation: Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration. Tune Splunk performance, search queries, and indexing strategies. Implement best practices for data onboarding, parsing, and CIM compliance. Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details. Current CTC: Expected CTC: Notice Period:

Roles and Responsibilities Collaborate with cross-functional teams to develop custom solutions using Python scripts. Troubleshoot complex issues related to data ingestion, processing, and visualization in Splunk. Configure and manage indexers, search heads, and other components of the Splunk platform. Design, implement, and maintain large-scale Splunk environments across multiple sites. Develop and execute deployment plans for new Splunk instances on AWS cloud infrastructure.

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30669 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity " FICO is seeking a Cyber/Cloud security Lead Engineer with Engineering experience to implement detections of Cloud and Container security.As a part of your role, you will be responsible for implementing automations to manage the Cloud and Container security solution. This role is specifically to build prototypes and orchestrate the manual tasks using automation in the cloud security space ." - Sr Director, Cyber Security What Youll Contribute Experience in Designing, Engineering, and Securing complex infrastructure architectures. Security relevant experience with AWS and implementing best practices regarding securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Experience in Python scripting or programming languages with an automation mindset. Experience working on Multi account, multi region infrastructure setup. Should have experience with AWS Org, Cross account access and working with services like CloudWatch, CloudTrail, GuardDuty, Security Hub, AWS Inspector, AWS SSM and other security related services. Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket (Bitbucket is desirable). Experience with agile project management tools like JIRA, Confluence (JIRA is desirable). Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). What Were Seeking 3 or more years of Engineering experience specifically implementating automations using Python in AWS Public cloud environment. Experience working on containerized solutions with Docker, Kubernetes using ECR, ECS and EKS services in AWS. 2 or more years of security relevant experience with AWS and implementing best practices in regards to securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket. Experience with agile project management tools like JIRA, Confluence. Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). Experience implementing automations using serverless platforms in the Cloud environment. Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience on integration with SIEM tool like Splunk Cloud. Experience with regulated environments in regards to exceeding published controls such as PCI-DSS, CIS, NIST, and/or STIG and meeting compliance. Our Offer to You An inclusive culture strongly reflecting our core values:Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

Implement and manage Splunk for monitoring and analyzing machine data to ensure system performance and security.

The Splunk Developer role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Splunk Developer domain.

Infrastructure Engineering Senior Advisor - HIH - Evernorth Position Overview As a Splunk / Cribl Sr. Engineer (Infrastructure Engineering Senior Advisor) for Cigna’s Enterprise Logging Team you’ll provide operations, engineering, design and troubleshooting support for the teams on premise and SaaS based logging products. You’ll also be working with peers and customers gathering requirements, onboarding data, and assist with searches, dashboards, reports, and knowledge objects. The role will require you to use your hands-on technical expertise with Splunk Enterprise, Splunk Cloud, Cribl and AWS to come up with solutions for technical and business problems. You should have continuous learning and engineering mindsets along with the ability to adapt new technologies to improve Splunk and Cribl on premise and cloud operations. Responsibilities Support systems engineering lifecycle activities for large hybrid Splunk and Crib deployments, including requirements gathering, design, testing, implementation, operations, and documentation. Lead troubleshooting efforts and identify root cause of problems across the enterprise logging environment. Work on and lead projects that drive continuous improvement, enhancements of products, services offerings, and governance.Coach and mentor customers and staff that may need technical assistance or guidance.Partner with Agile Program and Product Management leads to develop, plan, and execute large initiatives.Available On-Call 24x7 support on a rotational schedule. Qualifications Required Skills: Strong written and verbal communication skills with the ability to interact with all levels of the organization. Strong influencing/negotiation skills. Strong interpersonal/relationship management skills. Strong time and project management skills. Skilled in operations, support and engineering with of the following products – Linux, Splunk Enterprise, Splunk Cloud, Cribl Stream and AWS Familiarity with agile methodology including SCRUM team leadership. Familiarity with modern delivery practices such as continuous integration, behavior/test driven development, and specification by example. Required Experience & Education: 13-16 years of experience requiredBachelor’s degree or equivalent degree and work experience is requiredA minimum of 12 years of experience supporting, operating, and managing large Splunk environments. At least 2 years specifically is with Splunk Cloud.A minimum of 8 years of experience supporting and managing Cribl Stream deployments.Experience with Splunk Premium Applications, IT Service Intelligence and Enterprise Security.A minimum of 3-4 years with AWS Services and implementations with a working knowledge of core AWS products including S3, Terraform, ALB/NLB, EC2, PrivateLink and VPCsAWS, Cribl and Splunk certifications, such as Splunk Certified Architect or AWS Associate, are highly desirable.At least 8 years of experience with LAN/WAN technologies and clear understanding of basic network concepts and services.11 to 13 years of experience with Linux operating system management or administration.Demonstrated proficiency in scripting and programming languages (e.g., Python, PowerShell) for custom Splunk app development.Experience with Ansible and leveraging playbooks for task automation. Location & Hours of Work (Specify whether the position is remote, hybrid, in-office and where the role is located as well as the required hours of work) Equal Opportunity Statement Evernorth is an Equal Opportunity Employer actively encouraging and supporting organization-wide involvement of staff in diversity, equity, and inclusion efforts to educate, inform and advance both internal practices and external work with diverse client populations. About Evernorth Health Services Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.

Role & responsibilities Job Description: Senior Splunk Engineer About the Role: We are looking for a Splunk Level 3 Engineer with a strong Linux background to design, implement, and optimize Splunk solutions for enterprise-level security, observability, and operational intelligence. You will play a key role in developing and maintaining a high-performing Splunk environment, ensuring real-time monitoring, analytics, and automation across IT infrastructure and security domains. Key Responsibilities: Splunk Architecture & Administration Design, deploy, and manage large-scale Splunk environments (Enterprise Security, ITSI, Observability, Cloud, or Hybrid). Configure and optimize Splunk components such as indexers, search heads, forwarders, and clustering. Implement best practices for data ingestion, parsing, and indexing to ensure high availability and performance. Security & Observability Develop and manage Splunk dashboards, alerts, and reports for security monitoring (SIEM), IT operations, and business analytics. Integrate Splunk with various security tools ( SOAR, EDR, Firewalls, IDS/IPS ) to enhance threat detection and response. Implement anomaly detection, predictive analytics, and correlation searches. Implement logging best practices for Linux servers , applications and containers . Automation & Optimization Automate Splunk deployments using Infrastructure-as-Code (IaC) tools such as Ansible, Terraform, or Python scripts . Tune searches, optimize queries, and improve system efficiency to handle high-volume data ingestion. Develop Splunk apps and custom scripts for data enrichment and automation. Collaboration & Support Work closely with Security, DevOps, and Infrastructure teams to integrate Splunk into enterprise workflows. Provide technical leadership, mentorship, and training to junior Splunk engineers. Troubleshoot Splunk performance issues, logs, and data pipeline challenges. Qualifications & Skills: Must-Have: 5+ years of hands-on Splunk engineering experience (design, deployment, tuning, and troubleshooting). Expertise in Splunk architecture, SPL (Search Processing Language) , and dashboard development. Experience with Splunk Enterprise Security (ES), IT Service Intelligence (ITSI), or Splunk Observability Suite . Strong scripting skills ( Python, Bash, PowerShell ) for automation and data enrichment. Familiarity with Linux security hardening and system auditing . Preferred: Experience with cloud-based Splunk ( AWS, Azure, GCP ) and integrations with cloud-native logging solutions. Familiarity with Infrastructure-as-Code ( Terraform, Ansible ) and CI/CD pipelines. Certifications such as Splunk Certified Admin, Splunk Certified Architect, or Splunk Certified Security Analyst or RHCE (Red Hat Certified Engineer) . Preferred candidate profile

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)