Senior Splunk Engineer

Overview

We are seeking an experienced Senior Splunk Engineer to take over and operate the on-premise Splunk SIEM platform.

As part of the transition from Infosys, you will be responsible for stabilizing and continuously improving an existing enterprise-scale SIEM environment.

Responsibilities

Plan & Build

• Perform CIM-compliant log onboarding, parser creation, and documentation.
• Conduct onboarding due diligence and demand analysis.
• Create firewall, VPN, and routing change requests and validate changes.
• Manage ingestion pipelines via Cribl, Syslog-ng (TLS), Splunk UF/HF, and SCP.
• Deploy and scale Splunk components using Terraform and Ansible.
• Build trend and capacity analyses.

Operations (24/7 Enterprise-Grade Operations)

• Ensure full Splunk platform operation, monitoring, performance, EPS / log flow.
• Handle incidents, service requests, cha...