Sr. Splunk Consultant

Key Responsibilities

• Lead complex Splunk ES implementations, upgrades, and optimization projects for enterprise clients
• Provide technical leadership and consultation on security use cases, architecture design, and best practices
• Develop custom content including dashboards, reports, and correlation searches to meet specific client security requirements
• Perform security data source onboarding and integration with Splunk ES
• Conduct knowledge transfer and training sessions for client security teams
• Create detailed project documentation including requirements, design specifications, and implementation guides
• Collaborate with cross-functional teams to ensure holistic security solutions
• Provide post-implementation support and recommendations for continuous improvement

Required Qualifications

• 10+ years of experience in a security consulting role
• Strong expertise with Splunk Enterprise Security deployments and administration
• Extensive experience with Splunk's SPL query language and advanced search techniques
• Deep understanding of SIEM concepts, security frameworks, and compliance standards
• Experience with security data sources including network security, endpoint security, identity management, and cloud security logs
• Proficiency in creating and customizing correlation rules, notable events, and risk-based frameworks
• Excellent problem-solving abilities and technical troubleshooting skills
• Strong project management and client relationship management experience
• Excellent written and verbal communication skills

Preferred Qualifications

• Splunk certifications including Splunk Enterprise Certified Admin, Splunk Enterprise Security Certified Admin, Splunk Core Certified Consultant, Splunk Certified Cybersecurity Defense Engineer
• Security certifications (CISSP, CISM, CEH, or similar)
• Experience with Splunk SOAR (formerly Phantom) or other SOAR platforms
• Scripting and automation experience (Python, Bash, PowerShell)
• Experience with cloud security (AWS, Azure, Google Cloud Platform)
• Knowledge of threat intelligence platforms and their integration with Splunk ES
• Experience with security monitoring and incident response processes

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

Key Responsibilities

• Lead complex Splunk ES implementations, upgrades, and optimization projects for enterprise clients
• Provide technical leadership and consultation on security use cases, architecture design, and best practices
• Develop custom content including dashboards, reports, and correlation searches to meet specific client security requirements
• Perform security data source onboarding and integration with Splunk ES
• Conduct knowledge transfer and training sessions for client security teams
• Create detailed project documentation including requirements, design specifications, and implementation guides
• Collaborate with cross-functional teams to ensure holistic security solutions
• Provide post-implementation support and recommendations for continuous improvement

Required Qualifications

• 10+ years of experience in a security consulting role
• Strong expertise with Splunk Enterprise Security deployments and administration
• Extensive experience with Splunk's SPL query language and advanced search techniques
• Deep understanding of SIEM concepts, security frameworks, and compliance standards
• Experience with security data sources including network security, endpoint security, identity management, and cloud security logs
• Proficiency in creating and customizing correlation rules, notable events, and risk-based frameworks
• Excellent problem-solving abilities and technical troubleshooting skills
• Strong project management and client relationship management experience
• Excellent written and verbal communication skills

Preferred Qualifications

• Splunk certifications including Splunk Enterprise Certified Admin, Splunk Enterprise Security Certified Admin, Splunk Core Certified Consultant, Splunk Certified Cybersecurity Defense Engineer
• Security certifications (CISSP, CISM, CEH, or similar)
• Experience with Splunk SOAR (formerly Phantom) or other SOAR platforms
• Scripting and automation experience (Python, Bash, PowerShell)
• Experience with cloud security (AWS, Azure, Google Cloud Platform)
• Knowledge of threat intelligence platforms and their integration with Splunk ES
• Experience with security monitoring and incident response processes

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.