Splunk Architect

Job Title: Splunk Architect
Location: Onsite - New Jersey (NJ), Tampa (FL), Tempe (AZ)
Experience Required: 10+ years

Role Overview:
The Sr Splunk Engineer/Architect will lead development and implementation of Splunk and Cribl solutions while providing architectural guidance for SIEM and SOAR initiatives. The role demands hands-on technical expertise combined with leadership capabilities to manage complex, large-scale environments.

Key Responsibilities:

• Lead the design, development, and deployment of Splunk solutions for enterprise environments.

• Work with Cribl and other data routing solutions to optimize data ingestion and processing.

• Implement and maintain SIEM and SOAR platforms (Splunk, Elastic, Datadog, etc.).

• Manage Data Lake and Data Warehouse solutions using AWS S3, Snowflake, Databricks, etc.

• Automate processes using scripting languages (Python, Ansible, PowerShell).

• Create trending, metrics, and management reports for business and technical stakeholders.

• Ensure compliance with security regulations and frameworks (MITRE Attack Framework, CIS).

• Operate in hybrid-cloud environments with knowledge of AWS or Azure.

• Troubleshoot complex technical issues, leveraging networking fundamentals (TCP/IP) and security best practices.

• Provide technical leadership and mentoring to team members.

Required Skills & Qualifications:

• Technical Expertise:

  • 11+ years of technology experience with hands-on Splunk development.

  • 5+ years of experience with SIEM and SOAR products.

  • 3+ years of experience with Data Lake and Data Warehouse platforms.

  • Proficiency in scripting for automation (Python, Ansible, PowerShell).

  • Strong knowledge of RegEx and Splunk Search Processing Language (SPL).

  • Familiarity with hybrid-cloud environments and modern security principles.

  • Networking fundamentals and troubleshooting expertise.

• Soft Skills & Leadership:

  • Strong leadership and team management capabilities.

  • Ability to work in complex and large-scale enterprise environments.

  • Excellent problem-solving and analytical skills.

Preferred Qualifications:

• Experience with AWS or Azure cloud platforms.

• Knowledge of modern security principles and frameworks.

• Experience creating actionable dashboards, metrics, and reporting tools.

Summary:
This role is ideal for a highly experienced Splunk professional with hands-on development skills, cloud and SIEM expertise, and strong leadership qualities. The candidate must be comfortable working onsite across multiple U.S. locations and thrive in enterprise-scale, security-conscious environments.