Senior Security Engineer

Senior Splunk Security Engineer – Enterprise Cybersecurity Projects

We are partnering with a leading technology and cybersecurity solutions provider in the Middle East that is expanding its specialist security engineering practice.

This is an opportunity for an experienced Splunk Security Engineer to work on large-scale enterprise and government cybersecurity transformation projects across the GCC, delivering advanced SIEM, analytics, and security operations solutions in complex environments.

The Role

You will take ownership of end-to-end Splunk architecture, implementation, integration, and operational optimisation across enterprise customer environments.

The position combines deep hands-on engineering with client-facing consulting responsibilities, working closely with security teams, architects, and executive stakeholders to design and deploy modern SOC and SIEM platforms.

Key Responsibilities

• Architect and deliver enterprise Splunk deployments including:
• Indexer Clusters
• Search Head Clusters
• Heavy Forwarders
• Deployment Servers
• Distributed multi-site environments
• Build and optimise data onboarding pipelines using:
• inputs.conf
• props.conf
• transforms.conf
• Develop advanced SPL queries, correlation searches, macros, and operational detection use cases
• Implement federated search and modern hybrid SIEM/data-fabric architectures
• Integrate Splunk with leading Cisco security technologies including:
• Cisco Secure Firewall (ASA/FTD)
• Cisco ISE
• Umbrella
• ThousandEyes
• Secure Endpoint
• Cisco XDR
• Meraki
• Support broader cybersecurity technologies including:
• Palo Alto Networks
• Fortinet
• EDR/XDR platforms
• PAM
• DAM solutions
• Perform platform health checks, lifecycle management, upgrades, patching, and capacity planning
• Lead technical workshops, architecture discussions, and knowledge transfer sessions with enterprise customers
• Produce technical documentation including HLDs, LLDs, runbooks, and architecture diagrams

Requirements

• 5+ years of hands-on Splunk implementation and engineering experience
• Strong experience with enterprise-scale distributed Splunk deployments
• Deep expertise in Splunk Enterprise Security (ES)
• Strong understanding of SIEM, SOC, and security operations workflows
• Experience integrating Cisco security technologies into Splunk
• Strong knowledge of network security fundamentals including firewalls, IDS/IPS, and VPN technologies
• Previous experience in cybersecurity professional services or consulting environments
• Strong communication and stakeholder management skills

Preferred Certifications

Mandatory:

• Splunk Certified Cybersecurity Defense Analyst
• Splunk Certified Cybersecurity Defense Engineer
• Splunk Enterprise Certified Admin
• CCNP Security

Highly Preferred:

• Splunk Certified Cybersecurity Defense Architect
• Splunk Enterprise Security Certified Admin
• Splunk Enterprise Certified Architect
• CCIE Security

Additional certifications such as CISSP, CEH, GSOC, or Splunk SOAR certifications are advantageous.