Splunk Platform Engineer

*Securian Financial Groups internal position title is Info Security Consultant.

Position Summary:

Securian Financial is seekingaSplunkPlatform Engineer to join our Enterprise Cybersecurity group. This role designs, builds, and operates platforms that enable enterprise-scale data visibility, data protection, and AI security across Securian's digital environment.

You will engineer and maintain the systemsand platformsthat collect, enrich, and analyze security telemetry - including our SIEM/Splunk, Data Security Posture Management (DSPM), and emerging AI Security platforms. You will focus on secure data movement, automation, and observability at scale, ensuring our securitylog and data infrastructuressupport both current operations and emerging AI-driven use cases.

This position is hands-on, combining deep technical implementation with an architectural mindset. It is ideal for an engineer who thrives on data integration, platform reliability, and applying automation to strengthen security capabilities.

This is an opportunity to work at the intersection oftelemetry engineering,data security engineering, automation, and emerging AI defenses, helping Securian shape the next generation of cybersecurity capabilities.

Responsibilities include but not limited to:

• Engineer and automate secure telemetry pipelines (Splunk) using tools such as GitHub Actions, AWS CloudFormation, and Amazon Kinesis to deliver reliable, scalable data ingestion.
• Design, deploy, and maintain the Security Data Platforms, including Splunk (SIEM), DSPM, and AI Security technologies hosted in cloud and other environments utilizing tools such as AWS EKS, AWS EC2 and SaaS.
• Operate and monitor log, data collection, and data observability systems, ensuring end-to-end visibility, continuity, and data integrity across multi-cloud environments.
• Implement DSPM integrations across cloud, SaaS, and third-party connections to identify and classify sensitive data, enforce data protection policies, and deliver risk insights.
• Support AI Security enablement, integrating model telemetry, access controls, and policy enforcement into existing observability frameworks.
• Collaborate with data owners, application teams, security architects, and enterprise governance to onboard new data sources, define data classification and tagging standards, and ensure compliance with policy.
• Develop and maintain metrics and dashboards that measure platform performance, data coverage, and alignment with enterprise security KPIs.
• Automate routine operational tasks, leveraging scripting and APIs to improve efficiency and repeatability.
• Contribute to incident investigations by ensuring availability, quality, and timeliness of log and data sources.
  

Qualifications:

• Hands-on experience engineering and operating Splunk or similar SIEM platforms in cloud or multi-cloud environments.
• Strong understanding of log management, data pipelines, and security observability principles.
• Practical experience with cloud automation and DevOps tools, such as GitHub Actions.
• Demonstrated IaC proficiency deploying application hosts and dependencies with AWS CloudFormation; experience creating immutable AMIs.
• Familiarity with data protection, classification, and privacy concepts relevant to DSPM technologies.
• Experience with Linux administration and scripting.
• Strong communication and collaboration skills across security, infrastructure, and data teams.
  

Preferred Qualifications:

• Splunk Power User or Administrator certification, or equivalent experience.
• Experience implementing or operating Data Security Posture Management (DSPM) platforms.
• Experience with data engineering concepts such as ETL, data lakes, or real-time streaming (e.g., Kafka, Kinesis).
• Familiarity with AI Security domains, such as model telemetry, prompt injection detection, or AI risk management frameworks.
• Experience integrating security data platforms with cloud-native services (e.g., Amazon CloudWatch, AWS Systems Manager, Lambda).
• Working knowledge of data engineering concepts (ETL, data lakes, or streaming architectures).

#LI-Remote **This position will have a remote working arrangement.**

For more information regarding Securian's benefits, please review our Benefits page.

This information is not intended to explain all the provisions of coverage available under these plans. In all cases, the plan document dictates coverage and provisions.

Securian Financial Group, Inc. does not discriminate based on race, color, religion, national origin, sex, gender, gender identity, sexual orientation, age, marital or familial status, pregnancy, disability, genetic information, political affiliation, veteran status, status in regard to public assistance or any other protected status. If you are a job seeker with a disability and require an accommodation to apply for one of our jobs, please contact us by email at Employment@Securian.com, by telephone 651-655-5522 (voice), or 711 (Relay/TTY).

To view our privacy statement click here

To view our legal statement click here