Penta Consulting are a technology service provider and leading outsourced partner helping to deliver professional and managed solutions across EMEA.
We're looking for a seasoned Senior Splunk Engineer who thrives on solving complex data challenges and building highimpact security and observability solutions. If you're passionate about turning machine data into meaningful insights and have deep expertise across both Splunk Core and Splunk Enterprise Security (ES), this role gives you the autonomy and scale to make a real difference.
What You'll Do
- Lead the design, deployment, and optimisation of Splunk Core and ES environments
- Develop advanced SPL queries, dashboards, correlation searches, and data models
- Own onboarding and normalisation of new data sources across security and operational domains
- Enhance ES use cases, riskbased alerting, notable events, and threat detection logic
- Drive best practices for data ingestion, CIM compliance, and platform performance
- Collaborate with Security Operations, Infrastructure, and Application teams to deliver endtoend solutions
- Act as a subjectmatter expert for Splunk architecture, scaling, and troubleshooting
- Support automation and integration efforts using APIs, SOAR, and scripting where appropriate
What You Bring
- Extensive handson experience with Splunk Core (search head clustering, indexer clustering, data onboarding, SPL optimisation)
- Strong expertise with Splunk Enterprise Security, including correlation searches, threat intelligence, RBAC, and ES content customisation
- Solid understanding of security operations, SIEM concepts, and detection engineering
- Experience with data pipelines, log formats, and CIM mapping
- Ability to work independently, lead technical initiatives, and mentor junior engineers
- Scripting experience (Python, Bash, PowerShell) is a plus
- Splunk certifications (Core Consultant, ES Analyst/Admin/Architect) are highly desirable
