Senior Lead Security Engineer (Splunk & Cloud SIEM)

This role is a high-level engineering position that sits at the intersection of Big Data (Splunk) and Cloud Infrastructure, requiring a candidate who can build the "eyes" of a security operations center.

• Splunk Mastery: Deep engineering expertise in Splunk Enterprise, including administration, Search Processing Language (SPL), and Common Information Model (CIM) compliance.
  

• Advanced SIEM Architecting: Proven experience implementing and optimizing Splunk ITSI, UBA, CRIBL, and Microsoft Sentinel for enterprise-wide visibility.
  

• Cloud Security Ecosystem: Strong proficiency in Azure Security controls and logging, with additional experience across AWS and GCP environments.
  

• Data Ingestion & Automation: Ability to build complex ingestion pipelines using Python, APIs, and databases while automating data onboarding from Windows, Unix, and Network sources.
  

• Strategic Leadership: Experience developing technology roadmaps, leading technical teams, and aligning security architecture with financial-grade regulatory standards.
  

• Analytical Engineering: Expertise in building high-fidelity correlation rules, advanced dashboards, and service-level monitoring to detect sophisticated threats.