Splunk Engineer – Enterprise Security & Platform Ownership
Tasks
- Apply AI and ML for detection and anomaly identification
- Build detection use cases for threats and anomalies
- Design and manage Universal Forwarders and Heavy Forwarders
- Design implement and maintain Splunk Enterprise and Splunk Cloud
- Develop and maintain data models asset and identity frameworks
- Develop automation for alert enrichment response and operations
- Develop correlation searches alerts dashboards and reports
- Document monitoring detection and response procedures
- Ensure Splunk scalability high availability and performance
- Ensure data is CIM compliant for security analytics
- Improve detection and response workflows continuously
- Integrate Splunk with SOAR ticketing systems and security tools
- Investigate and respond to security alerts and incidents
- Manage data retention policies and storage optimization
- Manage indexer clusters search head clusters and deployment infrastructure
- Monitor and troubleshoot SIEM performance search latency and indexing delays
- Onboard logs into SIEM from infrastructure DevOps and applications
- Optimize ingestion pipelines for visibility and licensing cost
- Own Splunk platform architecture configuration and optimization
- Participate in audits risk assessments and compliance activities
- Perform root cause analysis and recommend corrective actions
- Perform system tuning and capacity planning licensing and growth
- Support incident response processes and on call rotations
- Support security frameworks ISO 27001 NIST CIS and PCI
- Use Python and APIs for automation and system integration
Perks/Benefits
- Employee assistance program
- Learning and development access
- Medical insurance
- Paid time off
- Provident fund and gratuity
- Work-life balance
Skills/Tech-stack
APIs | CIM | CIS | Capacity Planning | Correlation Search | Data Modeling | Enterprise Security | Heavy Forwarder | High Availability | ISO 27001 | Incident Response | Indexer Clustering | Indexing | Load Balancing | NIST | PCI | Performance Tuning | Python | SIEM | SOAR | Search Processing Language | Search heads | Security Compliance | Splunk Cloud | Splunk Enterprise | Splunk Enterprise Security | Splunk Search Processing Language | Threat detection | Universal Forwarder
Education
Related jobs
-
Active Directory | Asset | CIS Controls | CMDB | ComplyMid-level ContractShaikpet, India3h ago
-
Agari | By Design | Cloud Security | Content Filtering | DKIMSenior-level Full TimeSeri Lingampally, India3h ago
-
Cloud Security Specialist INR 600K-1500KAWS | Application Firewall | Application Security | Cloud Security | Compliance ManagementMid-level Full TimeChennai, India4h ago
-
Senior-level Full TimePune, India4h ago
-
Senior-level Full TimePune, India4h ago
-
Staff Engineer INR 2040K-3500KAWS | AWS Lambda | AWS Step Functions | Agile | Amazon ECREnhanced medical benefits | Family wellbeing benefits | Paid time off | Work-life balanceSenior-level Full TimeHyderabad, India5h ago
-
Firewalls And Load Balancer-Palo Alto INR 2400K-3500KAWS Security | Ansible | Automation | Azure Security | Blue CoatSenior-level Full TimePune, Maharashtra, India10h ago
-
Lead DevSecOps Engineer INR 199K-214KAWS | Access Management | Azure | CI/CD | Cloud SecurityEmployee resource groupsEntry-level Full TimeBengaluru, KA, India11h ago
-
Veteran Intern INR 330K-430KAccess Control | Automation | Budget Management | Coaching | Continuity of OperationsEntry-level Full Time InternshipBangalore, Karnataka, India12h ago
-
Senior Technical Support Engineer INR 2000K-4500KApplication Security | Bash | Docker | Kubernetes | LinuxHealth benefits | Paid Holidays | Paid time offSenior-level Full TimeBengaluru, Karnataka, India12h ago
-
Security Engineer III INR 2000K-3285KAWS | Agentic Systems | Application Security Testing | Authentication | Authorization3 days in office collaboration | Hybrid work model | Training for developersSenior-level Full TimeBangalore, Karnataka, India12h ago
-
Engineer II - TechOps CICD SRE (Services Focused) INR 1000K-1500KAnsible | Ansible Chef Puppet | Ansible Chef Puppet Salt | Argo CD | ArgoCDCompetitive vacation and holidays | Employee networks | On-site amenities | Paid adoption leave | Paid parental leaveMid-level Full TimeBangalore, India17h ago
-
Risk Consulting - Digital Risk - Senior - Application Security INR 1685K-3487KApplication Security Testing | Cloud Computing | Code review | Data Flow | Data Flow DiagramsSenior-level Full TimeCoimbatore, TN, IN, 64104917h ago
-
Senior-level Full TimeBengaluru, BDC7A, India17h ago
-
Security Architect INR 2000K-3500KAI Search | AI Services | Access Control | Asynchronous programming | Azure AISenior-level Full TimeBengaluru, BDC7A, India17h ago
-
Security Architect INR 2000K-3500KCSW | Cloud Security | Delivery governance | ISO 27001 | ISO 27002Senior-level Full TimeBengaluru, BDC7A, India17h ago
-
Security Architect INR 1800K-3300KAccess Management | Access management protocols | Cloud Security | Cloud security controls | Data PrivacySenior-level Full TimeGurugram, DDC5E, India17h ago
-
Senior-level Full TimePune, PDC2C, India17h ago
-
Security Architect INR 1971K-3300KAccess Management | Cloud Security | Identity and Access Management | Identity and access | SailPoint IdentityIQSenior-level Full TimePune, PDC2C, India17h ago
-
Staff Administrator (Database) INR 1971K-3100KAWS RDS | Amazon Aurora | Amazon Redshift | Anomaly Detection | Backup and RestoreCross-functional collaboration | Mentorship | On-call rotation | Technical leadershipSenior-level Full TimeOffice - Bangalore, India17h ago
-
Consultant, Cybersecurity INR 1500K-2340KAWS | Agile | Azure | Azure Monitor | BashHybrid work | In person days per week | Remote workEntry-level Full TimeChennai, India R17h ago
-
Mid-level Full TimeHyderabad India - Block B17h ago
-
Security Engineer INR 2000K-3487KAPI Security | Access Management | Application Firewall | CI/CD | Cloud Access Security BrokerSenior-level Full TimeBangalore, India17h ago
-
IN-Senior Associate_AI ML_Digital Integration_Advisory_Bangalore INR 2000K-3200KAdvanced Security | Application Security Testing | CI/CD | CodeQL | Composition analysisSenior-level Full TimeBengaluru Millenia, India17h ago
-
IN-Senior Associate_AI ML_Digital Integration_Advisory_Bangalore INR 2000K-3200KAdvanced Security | Application Security Testing | CI/CD | CodeQL | Composition analysisFlexibility programmes | Inclusive benefits | MentorshipSenior-level Full TimeBengaluru Millenia, India17h ago