Sr. Splunk Engineer

IT-Security C&T

Employer Active

Posted on 30 Mar

Experience

3 - 8 Years

Job Location

Saudi Arabia - Saudi Arabia

Education

Bachelor of Technology/Engineering

Nationality

Any Nationality

Gender

Not Mentioned

Vacancy

1 Vacancy

Job Description

Roles & Responsibilities

Key Responsibilities:

  • Design and implement end-to-end Splunk solutions including data ingestion, parsing, indexing, and search optimization.
  • Develop and maintain custom correlation rules, alerts, dashboards, and visualizations to support security monitoring and incident response.
  • Onboard new log sources from infrastructure, security, application, and cloud systems using best practices (e.g., via UF, HF, syslog, APIs).
  • Perform regular health checks, indexer and search head performance tuning, license usage monitoring, and configuration backups.
  • Support threat detection initiatives by translating security use cases into actionable Splunk queries and alerts.
  • Assist in troubleshooting ingestion failures, parsing errors, and inefficient searches.
  • Collaborate with SOC, threat intelligence, and infrastructure teams to ensure data relevance, completeness, and quality.
  • Maintain Splunk Enterprise Security (ES) configurations, including CIM compliance, notables, and risk-based alerting (RBA).
  • Implement and manage data retention policies and storage utilization in line with compliance requirements.
  • Automate tasks and processes using scripts (Python, Bash, PowerShell) and configuration management tools where needed.
  • Provide technical guidance and mentoring to junior Splunk engineers and analysts.

Desired Candidate Profile

Required Skills & Experience:

  • 5+ years of hands-on experience in SIEM engineering with at least 3 years focused on strong>Splunk Enterprise or Splunk Cloud/strong>.
  • Proficient in SPL (Search Processing Language), data onboarding, and CIM normalization.
  • Experience integrating diverse log sources including firewalls, endpoints, cloud (AWS, Azure), identity systems, and threat intel feeds.
  • Strong understanding of security operations, detection engineering, and incident response workflows.
  • Familiarity with Splunk ES, UBA, ITSI, and SOAR (preferred but not mandatory).
  • Experience with scripting and automation (Python, Bash, PowerShell).
  • Good knowledge of networking, security protocols, and system administration (Windows/Linux).
  • Exposure to regulatory and compliance requirements such as ISO 27001, NCA, SAMA, PCI-DSS, etc.

Preferred Certifications:

  • strong>Splunk Core Certified Power User/strong> Required
  • strong>Splunk Enterprise Security Certified Admin/strong> Preferred
  • strong>Splunk Certified Architect or Consultant/strong> Highly Desirable
  • CompTIA Security+, CISSP, or equivalent Advantageous

Company Industry

  • Consulting
  • Management Consulting
  • Advisory Services

Department / Functional Area

  • IT Software

Keywords

  • Sr. Splunk Engineer

Disclaimer: Naukrigulf.com is only a platform to bring jobseekers & employers together. Applicants are advised to research the bonafides of the prospective employer independently. We do NOT endorse any requests for money payments and strictly advice against sharing personal or bank related information. We also recommend you visit Security Advice for more information. If you suspect any fraud or malpractice, email us at abuse@naukrigulf.com

IT-Security C&T

IT Security C&T is an innovative, fast-growing security consulting and training company. Our management team combined with our consultants and engineers work together to deliver comprehensive security solutions to our customers around the MENA region.br> IT Security C&T is continuously expanding its team of qualified professionals for a wide range of opportunities. Interested candidates are required to apply via our Career webpage on our website (www.itsecurityct.com)

Read More

https://jobs.smartrecruiters.com/ITSecurityCT1/744000103462797-sr-splunk-engineer-ksa

  • Home
  • Jobs in Saudi Arabia