×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Splunk Enterprise Security; ES Consultant - remote

Remote / Online - Candidates ideally in
Eau Claire, Eau Claire County, Wisconsin, 54701, USA
Listing for: System One
Remote/Work from Home position
Listed on 2026-06-29
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 100000 - 140000 USD Yearly USD 100000.00 140000.00 YEAR
Job Description & How to Apply Below
Position: Splunk Enterprise Security (ES) Consultant - remote

Splunk Enterprise Security (ES) Consultant - remote

Remote – offsite

Responsibilities
  • Develop custom detection content: correlation searches, notable events, alerts, reports, and visualizations to surface threat activity
  • Build and maintain Splunk Apps and Technology Add-ons (TAs)
  • Onboard new data sources and normalize them to the Common Information Model (CIM)
  • Optimize data flow and ingestion using aggregation, filtering, and pipeline tuning
  • Configure notable event actions, action menus, and Adaptive Responses
  • Tune detections to cut noise and surface what matters, including risk-based alerting where applicable
  • Build dashboards that highlight anomalies, trends, and security and operational metrics
  • Support and optimize large distributed clustered Splunk environments (search heads, indexers, forwarders, deployment servers)
  • Partner with the client’s security and SOC teams, debug complex integration and configuration issues
  • Document processes, procedures, and key engineering decisions
Requirements
  • Several years of hands‑on Splunk experience, with real ES implementation, content development, and tuning
  • Strong SPL and regular expressions
  • Scripting in Python, Perl, or Bash
  • Solid grasp of CIM and data onboarding and normalization at scale
  • Experience supporting clustered Splunk environments in SOC or NOC settings
  • SIEM data modeling experience on a platform at scale
  • Proficiency in Linux, including editing and maintaining Splunk config files and apps
  • Comfortable working consultatively with client teams and explaining the why behind the work
  • Splunk certifications (Core Certified Consultant, ES Certified Admin, Architect) are a plus but not required
  • Demonstrated ES delivery experience carries more weight than paper

System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic information, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search