The application window is expected to close on: 04/30/2026Job posting may be removed earlier if the position is filled or if a sufficient number of applications are received.

A Splunk Security Solution Architect is responsible for assisting customers with implementing their Security Operations Management strategy, processes, and solutions using Splunk security products. Previous job titles and responsibilities may include Security Architect, Enterprise Architect, Splunk Enterprise Security Architect, or Security Operations Analyst.

The Splunk Security Solution Architect primarily works with the customer’s Security Operations (SecOps) team or, in organizations where security is a core competency, the Security Operations Director. Security Solution Architects in large organizations often act as a bridge between Enterprise Architects, Application Architects, Security Operations Management, and various business segments.

This role requires a highly seasoned IT security professional who has successfully led projects in security operations, security software development, or security service management, particularly where business owners significantly impact IT and security success—ideally in various roles. The Security Solution Architect must be able to clearly communicate ideas both orally and in writing to executive staff, business sponsors, and technical resources in concise language appropriate to each group.

This role can be performed anywhere in the United States.

Requirements:

· 7+ years in Information Technology, focusing on security operations, applications test and deployment, or IT service management (process design/management)

Key Responsibilities:

· Define and document Security Operations Management processes, best practices, standards, frameworks, and implementation strategy.

· Translate business security goals and objectives into IT security strategy and roadmap.

· Communicate the business case for Security Operations Management initiatives to executive and business sponsors.

· Analyze the current state of security processes and prioritize automation and monitoring projects based on business value.

· Formulate and communicate best practices for using Splunk’s security tools, including Splunk Enterprise Security (ES).

· Maintain, improve, and implement a Security Operations Management strategy with the customer’s security organization, including clear value metrics.

· Collaborate with project teams to strategize and align long-term solutions for Security Operations Management, including roadmap, tools, frameworks, and approaches that align with business goals and key initiatives.

· Create documentation and communicate security automation processes to project teams and testers.

· Provide leadership, guidance, training, and mentoring to project teams and Security Operations Management engineers for implementing security processes and best practices

Desired Experience:

· Security Operations Management knowledge, including familiarity with technologies such as security information and event management (SIEM), threat intelligence, incident response, compliance management, orchestration tools, and scripting toolkits.

· Experience collaborating with product development teams to ensure future versions of Splunk security products meet strategic security automation objectives.

· Research, test, and recommend new or complementary security technologies from various vendors that can contribute to Security Operations Management initiatives.

· Establishment of ‘best practice’ frameworks to automate security monitoring, threat detection, response, and compliance activities.

· Experience and comfort with complex, heterogeneous IT infrastructure, including existing security platforms, operating systems, middleware, and applications.

· Familiarity with how Security Operations Management supports application development, IT operations, and security service management.

· Strong understanding of compliance/regulatory issues, data privacy, and broad application security principles.

• Consultant Transition to Security Solution Architect:
• The role and strengths required for a Security Solution Architect may differ. The key is to identify a Security Solution Architect who is strategic-minded, business-aware, and technically proficient. Other considerations include:

· Experience working with customer senior management in planning Security Operations Management processes to define, monitor, measure, and improve business and technical services.

· Experience working with customer technical teams in deploying security infrastructure monitoring, including expertise in SPL search, scripting, security application development, testing, and de