Senior Splunk Security Data Engineer (Splunk ES & Cloud)
Location: Fully Remote (U.S.)
Compensation: $140K - $170K Base + Bonus + Full Benefits
Core Focus: Splunk ES & Cloud | SOC / MSP Security Environments | Security Telemetry | SIEM Engineering | SOAR Automation
We are an established national technology solutions integrator supporting mid-market and enterprise clients across infrastructure modernization, cloud, cybersecurity, and managed services. As our Security Operations practice continues to grow, we are hiring a Senior Security Data Engineer to support and evolve the Splunk platform used by our Security Network Operations Center.
This role focuses on security telemetry engineering, scalable data ingestion, detection development, and automation across multiple customer environments. Candidates coming from SOC, MSP, or managed security environments are strongly preferred, with experience supporting multi-tenant environments in a managed services setting.
Position Overview
In this role, you will lead engineering initiatives across Splunk Cloud and Splunk Enterprise Security, supporting multiple customer environments within our security operations platform. You will focus on building reliable telemetry pipelines, improving detection quality, advancing automation workflows, and serving as a senior escalation point for SOC engineers and analysts.
This is a senior-level engineering role with direct impact on threat detection, response capabilities, and the continued evolution of the security platform.
Key Responsibilities
- Administer and maintain Splunk Cloud and Splunk Enterprise Security across multiple environments
- Design and scale security telemetry ingestion pipelines using Universal Forwarders, HEC, parsing, and CIM normalization
- Ensure log data quality, visibility, and reliability across security telemetry sources
- Develop and tune correlation searches, detection logic, and risk-based alerting
- Engineer and maintain SOAR playbooks and automation workflows
- Manage threat intelligence ingestion and enrichment processes
- Collaborate with SOC teams to improve detection coverage and operational visibility
- Serve as a senior escalation point for platform-related issues
- Support customer onboarding and platform expansion
- Evaluate new technologies that strengthen and modernize the security platform
Qualifications
- Strong hands-on experience in SIEM engineering, security data engineering, or security platform engineering
- Deep experience administering Splunk Cloud and Splunk Enterprise Security
- Proven experience onboarding and normalizing log data at scale (UF, HEC, parsing, CIM)
- Experience building and tuning correlation searches, detections, or alerting logic
- Hands-on experience developing or maintaining SOAR playbooks and automation workflows
- Experience integrating threat intelligence feeds or enrichment pipelines
- Familiarity with common security telemetry sources including Windows, Linux, firewall/network logs, EDR platforms, cloud/SaaS environments, and identity providers
- Scripting ability in Python, PowerShell, or similar languages
- Strong communication skills and ability to collaborate with SOC teams and internal stakeholders
Preferred
- Experience working within a SOC, MSP, or managed security environment
- Experience supporting multi-tenant security platforms
- Splunk or security-related certifications
- Exposure to detection engineering or purple team collaboration
Benefits & Compensation
- Fully Remote (U.S.)
- $140K – $170K Base + Bonus
- Comprehensive benefits package
- Unlimited PTO
- 401(k) with company match
- Established security engineering and SOC teams already in place
- Opportunity to influence and evolve a large-scale security operations platform
Security engineers with strong Splunk, SIEM, and security telemetry engineering experience are encouraged to apply. Interviews are moving quickly for qualified candidates.
For confidential consideration, apply directly or contact: alex.higgins@levelociti.com
To view additional roles we are hiring for, please visit: https://levelociti.com/job-search/