Splunk Engineer for Secure Environment

SC Cleared Splunk Engineer - 3-Month Contract - Fully Remote

We are hiring an SC Cleared Splunk Engineer to take hands-on ownership of Splunk platform engineering, optimisation, and operational support within a secure environment. This role is delivery-focused, requiring practical experience building, maintaining, and improving Splunk deployments to support security monitoring and operational intelligence.

Key Responsibilities

• Design, build, and maintain Splunk infrastructure, including indexers, search heads, forwarders, and deployment servers.
• Onboard, normalise, and optimise data sources across security, infrastructure, and application logs.
• Develop and maintain Splunk dashboards, reports, and alerts to support SOC and operational teams.
• Tune searches and alerts to improve performance, reduce noise, and enhance detection capability.
• Support incident investigation and troubleshooting using Splunk search and analytics.
• Ensure Splunk platform performance, scalability, and reliability in line with secure environment requirements.
• Work closely with security, engineering, and operations teams to deliver measurable improvements.

What You Will Ideally Bring

• Active SC Clearance (mandatory).
• Strong hands-on experience as a Splunk Engineer,.
• Proven experience managing Splunk Enterprise or Splunk Cloud environments.
• Strong knowledge of SPL, data models, and performance optimisation.
• Experience onboarding diverse log sources (security tools, OS logs, network devices, cloud platforms).
• Familiarity with security monitoring use cases and SOC environments.
• Scripting or automation experience (Python, Bash, or similar) is highly desirable.

Contract Details

• Duration: 3 months (with potential extension)
• Day Rate: £500 per day (Inside IR35)
• Location: Fully Remote
• Start Date: ASAP