Cyber Security Engineer with Splunk

Position : Cyber Security Engineer (L3)

Location : Remote

Experience Level : 5+ Years

Job Type : Full-time

Job Summary :

This role will lead the development and implementation of intelligent security solutions using SIEM, SOAR, and machine learning to enhance detection, response, and operational efficiency across the enterprise.

Key Responsibilities

• Design, implement, and manage enterprise SIEM (Splunk) solutions for centralized log analysis and real-time event monitoring.
• Develop and fine-tune correlation rules, alerts, dashboards , and use cases to detect anomalous and malicious activity.
• Lead data ingestion and normalization from varied enterprise systems (e.g., cloud workloads, endpoints, network devices).
• Develop and maintain SOAR playbooks to automate incident detection, triage, response, and recovery.
• Optimize SOAR workflows and integrations with security infrastructure to reduce MTTD / MTTR.
• Build and apply machine learning models to identify security anomalies, enrich event context, and predict threats.
• Collaborate with Security Operations Center (SOC) , DevOps , IT , and business units to align security automation with business goals.
• Analyze incident data to uncover trends and provide recommendations for improving controls and detection.
• Maintain detailed documentation for playbooks, integrations, automation processes, and incident response protocols.
• Stay abreast of industry trends and emerging tools to continually advance detection and automation strategies.
• Mentor junior engineers and assist in promoting SOAR and SIEM best practices across the team.

Required Qualifications

Preferred Qualifications

Why Join This Engagement?