Senior Splunk Enterprise Security Engineer in Irving

We are looking for a Senior Splunk Enterprise Security (ES) Engineer to lead the design, administration, and optimization of our Splunk ES platform in a cloud-based environment. This role is highly hands-on and focuses on ensuring reliable security monitoring, efficient threat detection, and scalable SIEM operations across the enterprise. You will act as the subject matter expert (SME) for Splunk ES, working closely with SOC, security, compliance, and infrastructure teams to enhance visibility, reduce alert fatigue, and strengthen the overall security posture., * Lead end-to-end administration of Splunk Enterprise Security (ES) in cloud environments (AWS/Azure/GCP)

• Design and maintain correlation searches, dashboards, and alerting frameworks
• Implement Risk-Based Alerting (RBA) and optimize detection use cases
• Onboard and normalize data sources ensuring CIM (Common Information Model) compliance
• Monitor and improve Splunk performance, indexing, and search efficiency
• Manage Splunk infrastructure components (indexers, search heads, forwarders, clustering)
• Integrate threat intelligence feeds and enhance detection capabilities
• Support incident response and act as escalation point for complex issues
• Ensure Splunk ES aligns with compliance frameworks (PCI DSS, SOX, NIST CSF)
• Maintain documentation, runbooks, and operational procedures
• Recommend and implement new tools, apps, and integrations

• 5+ years of experience with Splunk administration, including Splunk ES
• Strong knowledge of SIEM, security monitoring, and log management
• Hands-on experience with cloud platforms (AWS, Azure, or GCP)
• Strong proficiency in SPL (Search Processing )
• Certifications: Splunk Enterprise Certified Admin/Splunk ES Certified Admin/CISSP / GIAC (GCIA, GCIH)
• Experience with: Correlation searches/Dashboards and alerts/Data models and lookups
• Knowledge of CIM and data onboarding
• Understanding of PCI DSS, SOX, NIST CSF compliance
• Experience managing: Indexers/Search Heads/Forwarders/Clusters
• Strong troubleshooting and performance tuning skills
• Excellent communication and stakeholder collaboration skills, * Experience in large-scale or retail environments
• Hands-on with Splunk SOAR (Phantom)
• Background in SOC operations, threat hunting, or detection engineering
• Experience with Terraform / Ansible (Infrastructure as Code)
• Scripting skills in Python, Bash, or PowerShell

Energy Jobline is the largest and fastest growing global Energy Job Board and Energy Hub. We have an audience reach of over 7 million energy professionals, 400,000+ monthly advertised global energy and engineering jobs, and work with the leading energy companies worldwide. We focus on the Oil & Gas, Renewables, Engineering, Power, and Nuclear markets as well as emerging technologies in EV, Battery, and Fusion. We are committed to ensuring that we offer the most exciting career opportunities from around the world for our jobseekers.