Senior Security Platform Engineer

Location: Fully Remote (US-Based)

Compensation: $110K – $160K

Core Focus: Splunk Cloud & Enterprise Security | SIEM Architecture | Data Ingestion & CIM Normalization | Detection Engineering | SOAR Automation | Threat Intelligence Integration | Multi-Tenant SOC Environments

We are an established national IT solutions integrator supporting mid-market and enterprise clients across infrastructure modernization, cloud, cybersecurity, and managed services.

With dedicated architecture, engineering, and Security Operations teams in place, we design, deploy, and operate complex multi-tenant environments for customers nationwide. As our Security Operations practice continues to grow, we are hiring a Senior Security Platform Engineer to lead and evolve the data platform powering our Security Network Operations Center.

This is a senior-level engineering role centered on Splunk architecture, scalable data ingestion, detection engineering, and security automation across multi-tenant enterprise environments.

Position Overview

In this role, you will lead engineering initiatives across our Splunk Cloud and Enterprise Security stack while supporting multiple customer environments within our managed security platform.

You will focus on building reliable ingestion pipelines, improving detection quality, advancing automation workflows, and serving as a senior escalation point for SOC Engineers and Analysts. This is a highly visible role with direct impact on prevention, detection, and response capabilities across the practice.

Key Responsibilities

• Own and administer Splunk Cloud and Splunk Enterprise Security across multiple customer environments
• Design and scale secure data ingestion (Universal Forwarders, HEC, parsing, CIM mapping)
• Ensure log data quality and reliable telemetry coverage
• Build and tune correlation searches and detection logic
• Develop and maintain SOAR playbooks and automation workflows
• Manage threat intelligence feeds and enrichment processes
• Collaborate with SOC teams to identify detection gaps and improve visibility
• Serve as a senior escalation point for platform-related issues

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.

• Support customer onboarding and platform expansion
• Evaluate new tools to strengthen and modernize the security platform
  
  

Qualifications

• Strong hands-on SIEM or security platform engineering experience within production environments
• Strong experience administering Splunk Cloud and Splunk Enterprise Security
• Proven background onboarding and normalizing log data at scale (UF, HEC, parsing, CIM)
• Experience building and tuning correlation searches, risk rules, and detection logic
• Hands-on experience developing or maintaining SOAR playbooks and automation workflows
• Familiarity with threat intelligence ingestion and enrichment processes
• Experience working with common security telemetry sources (Windows, Linux, firewall, EDR, cloud, SaaS, identity)
• Scripting ability in Python, PowerShell, or similar for automation and data handling
• Experience operating in a managed services or multi-environment setting
• Strong communication skills and ability to support both internal teams and customers
  
  

Preferred

• Splunk or security-related certifications

Browse our curated collection of remote jobs across all categories and industries, featuring positions from top companies worldwide.

• Experience supporting multi-tenant environments
• Prior Managed Services or SOC experience
  
  

Benefits & Compensation

• Fully Remote (US-Based)
• Compensation: $110K – $160K
• Comprehensive benefits package with strong employer contribution
• Unlimited PTO
• 401(k) with company match
• Established security practice with experienced engineering and SOC teams
• High-impact role with visibility across enterprise client environments
  
  

Security engineers with strong Splunk and SIEM platform experience are encouraged to apply.

Interviews are moving quickly for qualified candidates.

For confidential consideration, apply directly or contact: alex.higgins@levelociti.com

To view additional roles we are hiring for, please visit: https://levelociti.com/job-search/