Sr. Splunk Engineer

Hi, I hope you are doing well. I am reaching out to you for a new opportunity. Role: Sr. Splunk Engineer Location: Bensalem, PA Duration: 2.5 Months Contract • This role focuses on engineering, deploying, configuring, and validating a highly available, multi-site Splunk Enterprise platform, along with implementing and optimizing Splunk Enterprise Security (ES). The engineer is responsible for end-to-end platform buildout, including setting up core components such as Cluster Manager, License Master, Deployer, Deployment Server, Monitoring Console, indexer clusters, and search head clusters. • Key responsibilities include deploying Universal and Heavy Forwarders, creating deployment apps, and automating rollout processes. The role involves onboarding diverse data sources such as Windows, firewall, and cloud logs, ensuring proper CIM alignment, and configuring custom indexes, authentication (LDAP/SAML), SMTP, and load balancing. • The engineer will install and operationalize Splunk ES, validate data model acceleration, correlation searches, dashboards, and notable events, while continuously tuning performance, thresholds, and detection logic. Ensuring seamless ES integration with Splunk Enterprise is critical. • Additionally, the role requires validating ingest pipelines, cluster stability, and search performance, while producing documentation, runbooks, and architecture diagrams. Strong experience in distributed Splunk environments, ES deployment, Linux, networking, and security operations is essential.