Senior Mss Engineer_Splunk
Job Fit Check
Base Career helps you apply smarter for this job.
Key skills for this role
About the Role
**Deployment & Architecture** + Deploy Splunk Enterprise / Distributed Architecture + Configure Indexers, Search Heads, Forwarders + Implement clustering (Indexer / SH Cluster) **2️⃣ Log Source Onboarding** + Configure Universal Forwarders & Heavy Forwarders + Create data inputs (syslog, API, cloud integrations) + Index creation and retention policy configuration + Field extraction, sourcetype validation, and parsing **3️⃣ Detection & Use Case Engineering** + Develop SPL
Key Skills for This Role
Full Job Posting
+ Configure Indexers, Search Heads, Forwarders
+ Implement clustering (Indexer / SH Cluster)
+ Configure Universal Forwarders & Heavy Forwarders
+ Create data inputs (syslog, API, cloud integrations)
+ Index creation and retention policy configuration
+ Field extraction, sourcetype validation, and parsing
3️⃣ Detection & Use Case Engineering
+ Develop SPL-based detection queries
+ Create correlation searches in ES (Enterprise Security)
+ Implement Risk-Based Alerting (RBA)
+ Fine-tune alerts to reduce false positives
+ Conduct use case gap analysis
4️⃣ Log Validation & Troubleshooting
+ Validate ingestion pipeline (Forwarder → Indexer → Search Head)
+ Troubleshoot parsing, indexing, and timestamp issues
+ Monitor ingestion delays and indexing queues
+ Optimize search performance
5️⃣ Platform Maintenance
+ Monitor license utilization (Daily indexing volume)
+ Perform Splunk upgrades and app updates
+ Backup configurations and validate restore
+ Performance tuning and resource optimization
6️⃣ MSS & SOC Support
+ Dashboard creation and SOC visibility enhancements
+ Alert lifecycle improvements
+ Support threat hunting queries
Continuous detection improvement aligned with MITRE
Apply for this job in 1 click
Skip the repetitive application forms
Install the Base Career Chrome Extension and autofill job applications across major job boards with your profile.
Trusted by over 500,000 job seekers on Base Career
More from this employer
More jobs at CyberGate Defense
SOAR Engineer
Abu Dhabi, UAE
Design and implement advanced SOAR playbooks for use cases such as phishing, incident response, vulnerability management, and threat hunting. Integrate SOAR platforms with SIEM, EDR/NDR, TIPs, and ITSM tools. Develop cus
Senior Pre Sales -Cyber Security
Abu Dhabi, UAE
Job Description: Senior Cybersecurity Pre-Sales Position: Senior Cybersecurity Pre-Sales Location: Abu Dhabi / Dubai Department: Sales Reports to: Vice President Job Summary We are seeking a highly experienced and techni
SOC L3
Abu Dhabi, UAE
Lead and mentor a team of SOC analysts, providing guidance, training, and support to enhance their technical skills and professional development. Serve as the escalation point for complex security incidents, providing e
DFIR Analyst
Abu Dhabi, UAE
Lead and participate in all phases of the incident response lifecycle, including preparation, detection and analysis, containment, eradication, recovery, and post incident activity. Conduct in-depth digital forensic inv