Senior Splunk Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Bank of America · 1 day ago

Senior Splunk Engineer

positionChicago, IL
timeFull-time
remoteOnsite
senioritySenior Level
date6+ years exp

Bank of America is committed to helping make financial lives better through the power of every connection. The Senior Splunk Engineer will work with the Splunk team to enhance the security data environment, providing optimal uptime and developing detection strategies to identify malicious behavior accurately.

Asset ManagementBankingFinanceFinancial ServicesFinTech
check
H1B Sponsor Likelynote

Responsibilities

Analyze, triage, and support data transformation initiatives
Enhance the security data environment to provide optimal uptime of the platform
Provide both tactical and strategic enhancements to the platform on behalf of cyber security technology and operations teams
Actively share knowledge and mentor more junior members of the Security Operations and Threat Response team
Work with all Cyber Defense operational and technical teams within Global Information Security (GIS) to gain insight into critical security controls and architectural specifics to develop valuable detection strategies and analytics that identify malicious behavior accurately
Advise on product assessments, policy adjustments, and architectural transformations that impact the global enterprise
Design cutting-edge detective, preventative, and proactive controls
Write efficient SPL within short timelines to support detection needs of the firm
Design and implement data ingestion strategies for various log sources into Splunk
Develop and maintain parsing configurations to normalize and enrich incoming data for effective analysis
Collaborate with application owners and IT teams to onboard new data sources into Splunk
Create and optimize search queries and reports to extract valuable insights from the indexed data
Customize and implement Splunk dashboards for different stakeholders to visualize key performance indicators and security metrics
Implement security best practices within Splunk to safeguard sensitive data
Collaborate with the security team to configure and monitor alerts for suspicious activities or security incidents
Ensure compliance with industry regulations and internal policies related to log management and data retention
Develop automation scripts using SPL (Search Processing Language) and other scripting languages to streamline administrative tasks
Continuously seek opportunities to improve efficiency through automation in Splunk processes
Maintain thorough documentation of Splunk configurations, processes, and troubleshooting procedures
Provide training and support to other IT team members on Splunk best practices and usage
Experience consuming, analyzing, and reporting Cyber Threat Intelligence for actionable takeaways
Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals

Qualification

SplunkSPLThreat HuntingData AnalysisSecurity OperationsIncident ResponsePythonSQLSolution DesignStakeholder ManagementTechnical Strategy DevelopmentCollaborationCritical Thinking

Required

Minimum of 6+ years of experience in a technical role in the areas of Security Operations, Incident Response, Content Development or Equivalent Experience in a large Enterprise Splunk Environment performing triage and administrative duties
Direct experience performing content detection engineering and threat hunting in an active corporate environment
Significant experience working with Splunk Procedure Language to create and tune detections
Experience mapping data fields to a common data model such as CEF, OCSF
Direct experience working with very large datasets and log analysis tools including but not limited to: Splunk, Python, Pandas, SQL, Hadoop, Hue
Ability to see the larger picture when dealing with competing requirements and needs from across the organization in order to build consensus and drive results
Ability to navigate and work effectively across a complex, geographically dispersed organization
Experience with enterprise scale EDR, SIEM, and SOAR tools
Experience in requirements gathering around the Splunk tool, documenting requirements, requirement analysis, product testing, etc
Splunk Infrastructure Management Experience/Knowledge
Collaborate with teams to Monitor and optimize the performance of the Splunk environment, to ensure efficient data processing and search capabilities on our search heads
Ability to troubleshoot, triage and resolve issues related to Splunk Infrastructure, ensuring high availability and reliability
Experience in Splunk enterprise and Splunk Cloud
Design and implement data ingestion strategies for various log sources into Splunk
Develop and maintain parsing configurations to normalize and enrich incoming data for effective analysis
Collaborate with application owners and IT teams to onboard new data sources into Splunk
Create and optimize search queries and reports to extract valuable insights from the indexed data
Customize and implement Splunk dashboards for different stakeholders to visualize key performance indicators and security metrics
Implement security best practices within Splunk to safeguard sensitive data
Collaborate with the security team to configure and monitor alerts for suspicious activities or security incidents
Ensure compliance with industry regulations and internal policies related to log management and data retention
Develop automation scripts using SPL (Search Processing Language) and other scripting languages to streamline administrative tasks
Continuously seek opportunities to improve efficiency through automation in Splunk processes
Maintain thorough documentation of Splunk configurations, processes, and troubleshooting procedures
Provide training and support to other IT team members on Splunk best practices and usage
Experience consuming, analyzing, and reporting Cyber Threat Intelligence for actionable takeaways
Demonstrated ability to self-direct, with minimal supervision to achieve assigned goals

Preferred

Experience with offensive security tools and integration of SIEM, SOAR, CSPM and other technical integrations within large enterprise networks
Knowledge of basic Data Science concepts and processes
Experience performing security analysis and threat hunting in Cloud environments such as Azure, M365, AWS
Experience Maintaining KV Stores
Experience Performing Regular Updates/Upgrades on Splunk Apps and Add-ons. As well as the Splunk environment as a whole

Company

Bank of America

twittertwittertwitter
Glassdoor3.9
company-logo
Bank of America is a financial institution that offers credit cards, home loans, and auto loan services.
dateFounded in 1998
location
Charlotte, North Carolina, USA
people-size10001+ employees
web-link
https://www.bankofamerica.com

H1B Sponsorship

Bank of America has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (780)
2024 (546)
2023 (590)
2022 (759)
2021 (715)
2020 (931)

Funding

Current Stage
Public Company
Total Funding
$3.59B
Key Investors
Berkshire Hathaway
2025-02-20Post Ipo Debt· $386.79M
2024-11-26Post Ipo Debt· $2B
2020-07-28Post Ipo Equity· $400M

Leadership Team

leader-logo
Charissa Messer
Senior Vice President, Creative Agency Executive (Enterprise Creative Solutions)
linkedin
leader-logo
Rami Salem
SVP Strategic Competitive Intelligence
linkedin

Recent News

BNN Bloomberg
Morgan Stanley boosts managing director ranks after dealmaking revival, memo shows
2026-01-09
Morningstar.com
Dow Jones Top Company Headlines at 5 AM ET: Shell Flags Weak Oil Trading Performance | 7-Eleven ...
2026-01-09
Business Standard India
BofA gets show-cause notice from Sebi for alleged insider trading
2026-01-09
Company data provided by crunchbase