Enable job alerts via email!
Senior Splunk Engineer
Tamkeen Technologies
Riyad Al Khabra
On-site
SAR 200,000 - 300,000
Full time
Job summary
A technology company in Riyad Al Khabra is seeking a talented Senior Splunk Engineer to enhance their analytics capabilities. Candidates should possess strong expertise in Splunk, with responsibilities including administration, data onboarding, and performance tuning. The ideal candidate has 3–5 years of experience in a multi-client environment, with a strong focus on threat detection and compliance. Join their innovative team to drive data analytics forward.
Qualifications
- 3–5 years of experience as a Splunk Administrator, preferably in an MSSP environment.
- Deep hands-on experience with Splunk and its architecture components.
- Strong knowledge of data onboarding and performance tuning.
Responsibilities
- Administer and manage Splunk infrastructure in a multi-client environment.
- Design and implement data onboarding processes.
- Troubleshoot and resolve Splunk performance and data ingestion issues.
Skills
Education
Tools
Job description
Tamkeen Technologies is looking for a talented Senior Splunk Engineer to enhance our analytics and monitoring capabilities across the organization's IT infrastructure. In this role, you will be responsible for the design, development, and maintenance of Splunk-based solutions to collect, analyze, and visualize data for security and operational insights. You will work closely with various teams to implement best practices in data ingestion, dashboard creation, and alert configuration to support organizational goals. If you have a strong background in Splunk and a keen interest in data analytics, we encourage you to apply and join our innovative team.
Responsibilities
- Administer and manage Splunk infrastructure across multiple clients in a multi-tenant MSSP environment.
- Design and implement data onboarding processes including parsing, indexing, and field extractions.
- Manage indexers, search heads, forwarders, and heavy forwarders for optimal performance.
- Troubleshoot and resolve Splunk performance, search latency, and data ingestion issues.
- Develop and optimize SPL queries, dashboards, alerts, and reports.
- Ensure high availability, performance, and scalability of the Splunk platform.
- Maintain forwarders, heavy indexers, search heads, and deployment servers.
- Perform troubleshooting and root cause analysis for log ingestion and performance issues.
- Support client onboarding, use case development, and data source integration.
- Collaborate with SOC analysts, threat hunters, and client security teams to enhance visibility and detection.
- Maintain compliance with internal security policies and relevant regulatory frameworks.
- Implement role-based access control (RBAC), data retention policies, and compliance configurations.
- Work closely with MSSP clients to understand their security monitoring requirements.
- Provide Splunk expertise, troubleshooting, and best practices to internal and external stakeholders.
- Produce documentation for architecture, configurations, processes, and operational runbooks.
Requirements
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
