Splunk Engineer - GuidePoint Security

Key Responsibilities

• Design, implement, and optimize Splunk deployments for large-scale, high-availability environments.
• Develop and maintain custom Splunk dashboards, alerts, and correlation searches to support threat detection and incident response.
• Write Python scripts and use Linux shell tools to automate data ingestion, enrichment, and remediation workflows.
• Integrate Splunk with AWS services (e.g., CloudWatch, GuardDuty) and other security tools to provide unified visibility.
• Collaborate with security analysts and engineers to refine use cases, improve detection logic, and conduct post‑incident investigations.

Requirements

• 5+ years of experience in Splunk administration and development in a security context.
• Strong proficiency in Python, Linux shell scripting, and SQL-like query languages.
• Hands‑on experience with AWS security services and SIEM integration.
• Deep understanding of threat intelligence, incident response processes, and security best practices.
• Excellent problem‑solving skills and ability to work independently in a fast‑paced environment.