Splunk Engineer

Envision Employment Solutions is currently looking for a Splunk Engineer for one of our partners, a global leader in consulting, digital transformation, technology and engineering services.
This position requires flexibility to work on US times and flexibility to travel abroad when needed.

**Responsibilities**:

- Splunk Administration
- Design, configure, and maintain the Splunk infrastructure, including indexers, forwarders, search heads, and clusters.
- Perform regular health checks, upgrades, and performance tuning of the Splunk environment.
- Ensure high availability, scalability, and data retention across the infrastructure.
- Data Integration & Parsing
- Onboard new data sources by developing custom log ingestion pipelines and configuring data inputs.
- Create and manage data parsers and knowledge objects, including field extractions, lookups, and data models.
- Ensure data quality, integrity, and compliance with retention policies.
- Dashboard & Report Development
- Design and develop Splunk dashboards, alerts, and reports for monitoring, operational insights, and security analytics.
- Work with stakeholders to identify reporting needs and provide actionable insights through visualizations.
- Incident and Problem Resolution
- Monitor system performance and proactively identify and resolve issues.
- Support incident investigations by extracting relevant log data and creating forensic reports.
- Security and Compliance
- Implement and manage Splunk as part of a security information and event management (SIEM) solution.
- Collaborate with the security team to detect and respond to potential threats.
- Ensure the Splunk environment complies with organizational and regulatory security standards.
- Collaboration & Documentation
- Work closely with IT, DevOps, and Security teams to align Splunk solutions with organizational goals.
- Maintain detailed documentation of Splunk configurations, procedures, and best practices.

**Requirements**:

- Bachelor’s degree in computer science, Information Technology, or related field (or equivalent experience).
- Proven experience as a Splunk Engineer or in a similar role.
- Strong knowledge of Splunk architecture, configuration, and administration.
- Experience with data ingestion, parsing, and indexing.
- Proficiency in developing Splunk dashboards, queries (SPL), and alerts.
- Familiarity with scripting languages like Python or PowerShell for automation.
- Solid understanding of Linux/Unix systems and command-line operations.
- Knowledge of networking concepts and protocols (TCP/IP, Syslog, etc.)
- Preferred Qualifications
- Splunk certifications (e.g., Splunk Core Certified Power User, Admin, Architect).
- Experience with Splunk Enterprise Security (ES) or IT Service Intelligence (ITSI).
- Familiarity with cloud-based logging and monitoring tools (e.g., AWS CloudWatch, Azure Monitor).
- Knowledge of other monitoring tools and platforms (e.g., Nagios, Grafana).
- TIL certification or familiarity with IT operations and service management frameworks.
- Key Competencies
- Strong analytical and problem-solving skills.
- Ability to manage multiple priorities in a fast-paced environment.
- Excellent written and verbal communication skills.
- A proactive, collaborative, and detail-oriented approach to work.

**Benefits**:

- Competitive Salary based on experience
- Social and medical insurance
- Learning, development and career progression