This role is part of a high-impact engagement with one of our most strategic global technology clients — a world leader in enterprise networking, cybersecurity, and observability platforms. You will be embedded in a centre of excellence that operates at the forefront of Splunk platform engineering and support.
About the Role
We are seeking a sharp, analytically driven Splunk Engineer to join our platform support team. This is a hands-on role that demands strong diagnostic ability, a structured approach to problem solving, and a commitment to keeping enterprise production environments stable and performant.
What You Will Do
Conduct in-depth Root Cause Analysis (RCA) for critical production incidents and document findings with clear technical detail and remediation steps
Analyse diagnostic logs, telemetry data, and performance metrics from enterprise platforms, cloud services, and distributed systems
Troubleshoot and resolve issues across Splunk enterprise infrastructure including search execution limitations, data onboarding challenges, cloud integration failures, dashboard inconsistencies, field extraction issues, and lookup failures
Replicate and reproduce customer-reported issues in lab or staging environments for detailed investigation
Create and manage JIRA tickets for identified bugs, enhancements, and operational improvements
Develop and maintain knowledge base articles, troubleshooting guides, SOPs, and operational documentation
Automate repetitive operational tasks using scripting and infrastructure automation tools
What You Bring
Proficiency in SPL queries and Linux system administration
Solid understanding of Splunk architecture and core components
Ability to analyse Splunk logs, metadata, and scheduler.log
Basic knowledge of networking concepts
Awareness of vulnerability and threat management
Familiarity with JIRA, Confluence, and Git/GitHub
Technical Skills Splunk Enterprise · SPL · Linux · Splunk Administration · Search Optimisation · JIRA · Confluence · Git
Cloud (Good to Have) AWS · Azure · Google Cloud Platform
Certifications (Preferred) Splunk Certified Admin · AWS Certified Solutions Architect · Azure Administrator
