Splunk Engineer — Enterprise & Cloud Platform (Tier II)

This role is part of a high-impact engagement with one of our most strategic global technology clients — a world leader in enterprise networking, cybersecurity, and observability platforms. You will be embedded in a centre of excellence that operates at the forefront of Splunk platform engineering and support.

About the Role

We are seeking a sharp, analytically driven Splunk Engineer to join our platform support team. This is a hands-on role that demands strong diagnostic ability, a structured approach to problem solving, and a commitment to keeping enterprise production environments stable and performant.

What You Will Do

• Conduct in-depth Root Cause Analysis (RCA) for critical production incidents and document findings with clear technical detail and remediation steps
• Analyse diagnostic logs, telemetry data, and performance metrics from enterprise platforms, cloud services, and distributed systems
• Troubleshoot and resolve issues across Splunk enterprise infrastructure including search execution limitations, data onboarding challenges, cloud integration failures, dashboard inconsistencies, field extraction issues, and lookup failures
• Replicate and reproduce customer-reported issues in lab or staging environments for detailed investigation
• Create and manage JIRA tickets for identified bugs, enhancements, and operational improvements
• Develop and maintain knowledge base articles, troubleshooting guides, SOPs, and operational documentation
• Automate repetitive operational tasks using scripting and infrastructure automation tools

What You Bring

• Proficiency in SPL queries and Linux system administration
• Solid understanding of Splunk architecture and core components
• Ability to analyse Splunk logs, metadata, and scheduler.log
• Basic knowledge of networking concepts
• Awareness of vulnerability and threat management
• Familiarity with JIRA, Confluence, and Git/GitHub

Technical Skills Splunk Enterprise · SPL · Linux · Splunk Administration · Search Optimisation · JIRA · Confluence · Git

Cloud (Good to Have) AWS · Azure · Google Cloud Platform

Certifications (Preferred) Splunk Certified Admin · AWS Certified Solutions Architect · Azure Administrator