Splunk SIEM Specialist

3 weeks ago

Hyderabad, India Kiya Full time

Job Title: Splunk SIEM Specialist

Position Overview

We are seeking an experienced Splunk SIEM Specialist to design, implement, and manage enterprise-level SIEM solutions. The role involves end-to-end Splunk administration, log source onboarding, detection content development, and platform optimization to enhance our organizations security monitoring and incident detection capabilities. The ideal candidate will bring strong expertise in Splunk Enterprise Security along with a solid understanding of security operations and log management.

Key Responsibilities

  • Lead and execute SIEM migrations and implementations, including planning, deployment, and validation.
  • Onboard and normalize diverse log sources into Splunk, ensuring CIM (Common Information Model) compliance.
  • Develop and optimize detection content such as correlation rules, dashboards, alerts, and reports.
  • Troubleshoot and resolve issues related to log ingestion, parsing, and Splunk platform performance.
  • Perform regular platform administration and optimization including indexing, storage, and search tuning.
  • Manage Splunk components (indexers, search heads, forwarders) and oversee upgrades and patches.
  • Deploy and configure Splunk SIEM solutions across on-premises and cloud environments.
  • Conduct gap analysis of log sources and use cases; develop new use cases aligned with emerging threats.
  • Collaborate with stakeholders and security teams to deliver actionable monitoring and threat detection solutions.

Required Skills & Qualifications

  • Minimum 3 years of hands-on experience with Splunk SIEM (Enterprise Security preferred).
  • Strong understanding of SIEM concepts, log management, and SOC operations.
  • Proven experience in log source onboarding, parsing, and CIM compliance.
  • Expertise in detection content creation (correlation rules, dashboards, alerts) and tuning.
  • Solid troubleshooting skills for both Splunk platform and security content.
  • Experience in Splunk deployment, administration, and health monitoring.
  • Ability to conduct gap analysis and provide actionable recommendations.
  • Strong communication and documentation skills.
  • Relevant certifications (e.g., Splunk Certified Admin, Splunk Enterprise Admin, Splunk Certified Architect) are an advantage.

Preferred Experience

  • Strong knowledge of security fundamentals and threat detection.
  • Hands-on experience with cloud SIEM deployments (AWS, Azure, GCP).
  • Familiarity with scripting languages (Python, Bash) for automation.
  • Exposure to other SIEM platforms (QRadar, Sentinel, XSIAM, SecOps) is beneficial.

  • Splunk SIEM Specialist

    2 weeks ago

    Hyderabad, Telangana, India Kiya Full time ₹ 6,00,000 - ₹ 18,00,000 per year

    Job Title: Splunk SIEM SpecialistPosition OverviewWe are seeking an experienced Splunk SIEM Specialist to design, implement, and manage enterprise-level SIEM solutions. The role involves end-to-end Splunk administration, log source onboarding, detection content development, and platform optimization to enhance our organizations security monitoring and...

  • Splunk Security Monitoring Specialist

    6 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SMEExperience: 10+ yearsLocation: HyderabadMust-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning.Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus.Roles &...

  • Splunk SME

    5 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SME Experience: 10+ years Location: Hyderabad Must-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning. Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus. Roles &...

  • Splunk SME

    5 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SMEExperience: 10+ yearsLocation: HyderabadMust-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning.Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus.Roles &...

  • Splunk SME

    4 days ago

    hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SME Experience: 10+ years Location: Hyderabad Must-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning. Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus. Roles &...

  • Splunk SME

    4 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SME Experience: 10+ years Location: Hyderabad Must-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning. Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus. Roles &...

  • Splunk SME

    6 days ago

    hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SMEExperience: 10+ yearsLocation: HyderabadMust-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning.Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus.Roles &...

  • Splunk SME

    6 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SMEExperience: 10+ yearsLocation: HyderabadMust-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning.Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus.Roles &...

  • Splunk SME

    4 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SME Experience: 10+ years Location: Hyderabad Must-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning. Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus. Roles &...

  • Splunk SME

    6 days ago

    Hyderabad, India Tata Consultancy Services Full time

    Role: Splunk SMEExperience: 10+ yearsLocation: HyderabadMust-Have: log management and SIEM concepts. Experience with Splunk administration, deployment, and health monitoring. Experience in content development (correlation rules, dashboards, alerts) and tuning.Good-to-Have: Splunk Certified Admin, Splunk Certified Architect) are a plus.Roles &...