Splunk SOC Engineer

The Work

Key responsibilities

• include:
• Design and implement **Security Operations Center (SOC) strategies** to enable effective detection, analysis, and response to cyber threats.
• Govern and optimize the use of **enterprise security tools and architecture frameworks**, with a strong focus on **Splunk SIEM**.
• Collaborate with cross‑functional teams to ensure alignment with **enterprise security policies, risk management frameworks, and compliance requirements**.
• Build, configure, and maintain **security monitoring and detection solutions** that protect digital identities, systems, and sensitive data.
• Develop and enhance **Splunk dashboards, alerts, correlation searches, and reporting** to support SOC operations and decision‑making.
• Contribute to **continuous improvement initiatives** to increase SOC maturity, operational efficiency, and response effectiveness.

Qualifications

• Here’s what you will need:
• Expert proficiency in **Security Operations Center (SOC) planning and operations**.
• Minimum **4 years of experience** in security operations, SOC, or SIEM‑focused roles.
• Hands‑on experience with **Splunk Security Information and Event Management (SIEM)**.
• Solid understanding of security monitoring, incident response, log management, and detection engineering concepts.
• Bachelor’s Degree in **Cyber Security, Computer Science, Information Technology**, or a related field.

Bonus Points If You Have

• Advanced proficiency in **Security Delivery Governance** within enterprise environments.
• Advanced expertise in **Splunk SIEM**, including SPL query development, use‑case design, correlation rule tuning, and dashboard optimization.
• Experience working in large‑scale enterprise or managed security services environments.
• Familiarity with industry security and risk frameworks (e.g., NIST, ISO 27001).
• Relevant certifications such as **Splunk Core / Power User / Enterprise Security**, CISSP, or GIAC.