SIEM Specialist (Splunk)

Role Overview

Owns end-to-end delivery of the Splunk Enterprise (SIEM) platform, covering architecture, design, onboarding, configuration, tuning, use case implementation, and structured handover into operations.

Key Responsibilities

· Lead solution architecture and detailed design (HLD / LLD) for Splunk SIEM

· Build, configure, and manage Splunk platform components including indexers, search heads, forwarders, and apps

· Onboard log sources and data feeds in line with security logging standards

· Develop, tune, and optimize correlation searches, alerts, and detections

· Implement threat-based and use-case-driven monitoring aligned to MITRE ATT&CK

· Validate data quality, parsing, normalization, and field extractions

· Integrate Splunk with upstream and downstream tools including EDR, SOAR, ticketing, and threat intelligence

· Produce operational documentation and conduct knowledge transfer to run teams

· Support stabilization and transition into BAU operations

Skills and Experience

· Strong hands-on experience with Splunk Enterprise SIEM

· Proven experience in SIEM architecture, engineering, log onboarding, and use-case development

· Strong understanding of security logging, detection engineering, and incident response

· Experience integrating SIEM with EDR, SOAR, and enterprise security tooling

· Experience producing technical design and operational handover documentation

Key Deliverables

· SIEM solution architecture and design documentation

· Configured and optimized Splunk SIEM platform

· Implemented and tuned detection and monitoring use cases

Runbooks, SOPs, and formal handover to operations

Pay: QAR12,000.00 - QAR14,000.00 per month

Education:

• Bachelor's (Required)

Experience:

• Splunk Enterprise (SIEM) platform: 3 years (Required)
• EDR, SOAR, and enterprise security tooling: 3 years (Required)

Language:

• Arabic (Required)
• English (Required)

License/Certification:

• degree in computer science (Required)

Location:

• Doha (Required)

Work Location: In person