Splunk Engineer – Architect
DXC Technology
full-time
Posted on:
Location Type: Office
Location: Macquarie Park • 🇦🇺 Australia
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudGoogle Cloud PlatformSplunk
About the role
- Design and Architect Splunk Enterprise and Splunk Cloud environments, including data ingestion, parsing, indexing, and storage strategies
- Develop and maintain detection and monitoring use cases aligned with frameworks such as MITRE ATT&CK
- Integrate Splunk with diverse data sources including endpoint, network, cloud (AWS, Azure, GCP), and identity platforms
- Build and optimize dashboards, correlation searches, and alerts for SOC and threat detection teams
- Collaborate with SOAR teams to design automated response workflows
- Lead Splunk migration or upgrade projects
- Advise clients and internal teams on Splunk licensing, capacity planning, and performance optimisation
Requirements
- Proven hands-on experience with Splunk Enterprise Security (ES), Splunk Cloud, and Splunk SOAR
- Experience designing high-availability and distributed Splunk environments
- Familiarity with security frameworks (e.g., MITRE ATT&CK, NIST CSF, ISO 27001)
- Understanding of SIEM/SOAR integration and incident response workflows
- Australian Citizenship and eligibility for Australian Federal Government Baseline Security Clearance.
Benefits
- competitive remuneration
- benefits
- training
- career opportunities
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Splunk EnterpriseSplunk CloudSplunk SOARdata ingestiondata parsingdata indexingdashboard optimizationcorrelation searchesincident response workflowshigh-availability design
Soft skills
collaborationleadershipadvisory skillscommunication
Certifications
Australian Federal Government Baseline Security Clearance