Job Description
• Own day-to-day Splunk admin for SOC (backend): keep the platform healthy, stable, and performant.
 • Onboard and maintain 10–20+ security log sources (estimate), including ongoing ingestion maintenance and troubleshooting.
 • Manage/maintain configs related to ingestion pipelines, add-ons/apps, indexes/retention, and platform hygiene.
 • Build/maintain integrations to ensure security telemetry flows reliably from cloud sources, endpoints, infrastructure, and security tools.
 • Set up operational monitoring for Splunk itself (log source drops, ingestion failures, expensive searches).
 • Partner with SOC analysts + infra/IAM teams to resolve access and telemetry issues quickly.
Participate in on-call focused on Splunk/logging continuity

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that b...