Job description:
We are seeking a highly skilled Splunk Enterprise Security Administrator with strong expertise in architecture, deployment, and management of Splunk environments. The ideal candidate will have experience in designing scalable Splunk solutions, managing day-to-day operations, and creating advanced content such as notable events, correlation searches, dashboards, and reports. Experience with Splunk Phantom (SOAR) for security orchestration and automation is a significant plus.

Key Responsibilities:
Architecture & Deployment
Design and implement Splunk Enterprise Security architecture for large-scale environments.
Lead Splunk ES deployments, upgrades, and integrations with security tools and data sources.
Ensure high availability, scalability, and performance tuning of Splunk infrastructure.
Administration & Management
Maintain and optimize Splunk ES environments, including indexers, search heads, and forwarders.
Manage data onboarding, parsing, and normalization for security use cases.
Implement best practices for data retention, storage, and compliance.
Content Development
Create and manage correlation searches, notable events, dashboards, and reports aligned with security monitoring objectives.
Develop custom SPL queries and macros for advanced analytics.
Collaborate with SOC teams to enhance detection and response capabilities.
Security Automation (Bonus)
Utilize Splunk Phantom (SOAR) to design and implement automated playbooks for incident response.
Integrate SOAR workflows with Splunk ES alerts and third-party security tools.
Monitoring & Troubleshooting
Proactively monitor Splunk health and performance, addressing issues promptly.
Conduct root cause analysis and resolve Splunk-related incidents.

Required Skills:
3+ years of experience with Splunk Enterprise Security administration and architecture.
Strong knowledge of SPL (Search Processing Language) and advanced query development.
Experience with Splunk deployment best practices and distributed architecture.
Security Knowledge:
Familiarity with SIEM concepts, threat detection, and incident response workflows.
Understanding of common security frameworks (MITRE ATT&CK, NIST, etc.).
Bonus Skills:
Hands-on experience with Splunk Phantom (SOAR) for automation and orchestration.
Scripting skills (Python, Bash, PowerShell) for automation and integration.

Desired Skills:
Certifications (Preferred):
Splunk Certified Architect
Splunk Enterprise Security Certified Admin
Splunk SOAR Certified Automation Developer
Soft Skills
Strong problem-solving and analytical skills.
Ability to work independently and in cross-functional teams.
Excellent communication and documentation skills.

Life at Capgemini

Capgemini supports all aspects of your well-being throughout the changing stages of your life and career. For eligible employees, we offer:

Flexible work
Healthcare including dental, vision, mental health, and well-being programs
Financial well-being programs such as 401(k) and Employee Share Ownership Plan
Paid time off and paid holidays
Paid parental leave
Family building benefits like adoption assistance, surrogacy, and cryopreservation
Social well-being benefits like subsidized back-up child/elder care and tutoring
Mentoring, coaching and learning programs
Employee Resource Groups
Disaster Relief

About Capgemini

Capgemini is a global business and technology transformation partner, helping organizations to accelerate their dual transition to a digital and sustainable world, while creating tangible impact for enterprises and society. It is a responsible and diverse group of 340,000 team members in more than 50 countries. With its strong over 55-year heritage, Capgemini is trusted by its clients to unlock the value of technology to address the entire breadth of their business needs. It delivers end-to-end services and solutions leveraging strengths from strategy and design to
engineering, all fueled by its market leading capabilities in AI, generative AI, cloud and data, combined with its deep industry expertise and partner ecosystem. The Group reported 2024 global revenues of €22.1 billion.

Get the future you want | www.capgemini.com

Disclaimer

Capgemini is an Equal Opportunity Employer encouraging inclusion in the workplace. All qualified applicants will receive consideration for employment without regard to race, national origin, gender identity/expression, age, religion, disability, sexual orientation, genetics, veteran status, marital status or any other characteristic protected by law.

This is a general description of the Duties, Responsibilities and Qualifications required for this position. Physical, mental, sensory or environmental demands may be referenced in an attempt to communicate the manner in which this position traditionally is performed. Whenever necessary to provide individuals with disabilities an equal employment opportunity, Capgemini will consider reasonable accommodations that might involve varying job requirements and/or changing the way this job is performed, provided that such accommodations do not pose an undue hardship.

Capgemini is committed to providing reasonable accommodations during our recruitment process. If you need assistance or accommodation, please reach out to your recruiting contact.

Please be aware that Capgemini may capture your image (video or screenshot) during the interview process and that image may be used for verification, including during the hiring and onboarding process.

Click the following link for more information on your rights as an Applicant http://www.capgemini.com/resources/equal-employment-opportunity-is-the-law

Applicants for employment in the US must have valid work authorization that does not now and/or will not in the future require sponsorship of a visa for employment authorization in the US by Capgemini.

Capgemini discloses salary range information in compliance with state and local pay transparency obligations. The disclosed range represents the lowest to highest salary we, in good faith, believe we would pay for this role at the time of this posting, although we may ultimately pay more or less than the disclosed range, and the range may be modified in the future. The disclosed range takes into account the wide range of factors that are considered in making compensation decisions including, but not limited to, geographic location, relevant education, qualifications, certifications, experience, skills, seniority, performance, sales or revenue-based metrics, and business or organizational needs. At Capgemini, it is not typical for an individual to be hired at or near the top of the range for their role. The base salary range for the tagged location is $75,582 - $170,040. This role may be eligible for other compensation including variable compensation, bonus, or commission. Full time regular employees are eligible for paid time off, medical/dental/vision insurance, 401(k), and any other benefits to eligible employees. Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, or any other form of compensation that are allocable to a particular employee remains in the Company's sole discretion unless and until paid and may be modified at the Company’s sole discretion, consistent with the law.

See more open positions at Capgemini

Privacy policy Cookie policy

Getro.org is a community-driven initiative to ease the impact of COVID-19 by connecting tech professionals and hiring companies. It's free for job seekers and companies, and curated by a growing list of referral partners.