Splunk Engineer - On Site Long Term Position

Splunk Engineer (On-site – Portland, OR)

Location: Portland, Oregon
Job Type: Full-time, On-site
Start Date: Immediate

We are seeking a highly skilled Splunk Engineer to join our team supporting an enterprise client in Portland, OR. The successful candidate will be responsible for designing, implementing, and maintaining Splunk environments that support advanced monitoring, alerting, and analytics across IT and security systems.

This is a hands-on, on-site role that requires deep technical knowledge of Splunk Core, with experience in Enterprise Security (ES) and IT Service Intelligence (ITSI) considered a major advantage.

• Architect, deploy, and manage Splunk Enterprise and Splunk Cloud environments in alignment with business and security requirements.

• Develop and maintain custom dashboards, reports, alerts, and visualizations to provide actionable insights into system and security performance.

• Integrate Splunk with diverse data sources, including servers, network devices, security appliances, and cloud environments.

• Support and optimize Enterprise Security (ES) and ITSI configurations and use cases.

• Troubleshoot ingestion pipelines, indexer performance, and forwarder configurations to ensure data integrity and reliability.

• Collaborate with IT, Security, and DevOps teams to define monitoring strategies and enhance system observability.

• Optimize Splunk performance, storage, and scalability in complex enterprise environments.

• Ensure compliance with corporate and client data security standards and best practices.

• Splunk Core Certified Consultant (required).

• Splunk Core Certified Power User or Advanced Power User.

• Proven experience administering and managing Splunk Enterprise environments in production.

• Strong understanding of log management, data normalization, and correlation searches.

• Hands-on experience with Linux/Unix, scripting (Python, Bash), and regular expressions (regex).

• Solid understanding of system monitoring, alerting, and security event analysis.

• Excellent analytical, troubleshooting, and communication skills.

• Splunk Enterprise Security (ES) Certified Admin.

• Experience with Splunk IT Service Intelligence (ITSI).

• Familiarity with automation/orchestration tools, REST APIs, and integration scripting.

• Experience with hybrid or multi-environment Splunk deployments (on-prem and cloud).

• Work Environment: 100% on-site at the end client’s location in Portland, Oregon.

• Background Check: May be required based on client policy.

• Compensation: Competitive salary and benefits package based on experience.