Senior Splunk Security Data Engineer (Splunk ES & Cloud)

About this role

Location:
Fully Remote (U.S.)


Compensation:
$140K - $170K Base + Bonus + Full Benefits


Core Focus:
Splunk ES & Cloud | SOC / MSP Security Environments | Security Telemetry | SIEM Engineering | SOAR Automation


We are an established national technology solutions integrator supporting mid-market and enterprise clients across infrastructure modernization, cloud, cybersecurity, and managed services. As our Security Operations practice continues to grow, we are hiring a Senior Security Data Engineer to support and evolve the Splunk platform used by our Security Network Operations Center.


This role focuses on security telemetry engineering, scalable data ingestion, detection development, and automation across multiple customer environments. Candidates coming from SOC, MSP, or managed security environments are strongly preferred, with experience supporting multi-tenant environments in a managed services setting.


Position Overview
In this role, you will lead engineering initiatives across Splunk Cloud and Splunk Enterprise Security, supporting multiple customer environments within our security operations platform. You will focus on building reliable telemetry pipelines, improving detection quality, advancing automation workflows, and serving as a senior escalation point for SOC engineers and analysts.


This is a senior-level engineering role with direct impact on threat detection, response capabilities, and the continued evolution of the security platform.


Key Responsibilities

• Administer and maintain Splunk Cloud and Splunk Enterprise Security across multiple environments
• Design and scale security telemetry ingestion pipelines using Universal Forwarders, HEC, parsing, and CIM normalization
• Ensure log data quality, visibility, and reliability across security telemetry sources
• Develop and tune correlation searches, detection logic, and risk-based alerting
• Engineer and maintain SOAR playbooks and automation...