×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity

Sr. Splunk Engineer

Job in Riyadh, Riyadh Region, Saudi Arabia
Listing for: DXC Technology
Full Time position
Listed on 2026-06-13
Job specializations:
  • IT/Tech
    Cybersecurity
Salary/Wage Range or Industry Benchmark: 150000 - 200000 SAR Yearly SAR 150000.00 200000.00 YEAR
Job Description & How to Apply Below

Key Responsibilities

  • Design and implement end-to-end Splunk solutions including data ingestion, parsing, indexing, and search optimization.
  • Develop and maintain custom correlation rules, alerts, dashboards, and visualizations to support security monitoring and incident response.
  • Onboard new log sources from infrastructure, security, application, and cloud systems using best practices (e.g., via UF, HF, syslog, APIs).
  • Perform regular health checks, indexer and search head performance tuning, license usage monitoring, and configuration backups.
  • Support threat detection initiatives by translating security use cases into actionable Splunk queries and alerts.
  • Assist in troubleshooting ingestion failures, parsing errors, and inefficient searches.
  • Collaborate with SOC, threat intelligence, and infrastructure teams to ensure data relevance, completeness, and quality.
  • Maintain Splunk Enterprise Security (ES) configurations, including CIM compliance, notables, and risk-based alerting (RBA).
  • Implement and manage data retention policies and storage utilization in line with compliance requirements.
  • Automate tasks and processes using scripts (Python, Bash, Power Shell) and configuration management tools where needed.
  • Provide technical guidance and mentoring to junior Splunk engineers and analysts.
Required Skills & Experience
  • 5+ years of hands‑on experience in SIEM engineering with at least 3 years focused on Splunk Enterprise or Splunk Cloud.
  • Proficient in SPL (Search Processing Language), data onboarding, and CIM normalization.
  • Experience integrating diverse log sources including firewalls, endpoints, cloud (AWS, Azure), identity systems, and threat intel feeds.
  • Strong understanding of security operations, detection engineering, and incident response workflows.
  • Familiarity with Splunk ES, UBA, ITSI, and SOAR (preferred but not mandatory).
  • Experience with scripting and automation (Python, Bash, Power Shell).
  • Good knowledge of networking, security protocols, and system administration (Windows/Linux).
  • Exposure to regulatory and compliance requirements such as ISO 27001, NCA, SAMA, PCI‑DSS, etc.
#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search