Join Our Community
Job Summary
AppFolio is seeking a seasoned Splunk Engineer with a working knowledge of Terraform to enhance our observability and security capabilities. The role will focus primarily on managing and optimizing the Splunk platform with additional responsibilities around automating Splunk infrastructure and configurations using Terraform and CI/CD pipelines. This hybrid role supports both Security Operations and Infrastructure Automation initiatives and would suit candidates who are hands\-on in Splunk
Responsibilities
Splunk Primary Responsibility
Design deploy and manage Splunk Enterprise/Splunk Cloud infrastructure.
Develop and maintain dashboards alerts correlation searches and data models to support security and operational monitoring.
Integrate and onboard custom data sources into Splunk from cloud platforms network devices and applications.
Monitor license usage index performance and data retention to optimize the Splunk environment.
Support SOC or other monitoring teams with incident detection analysis and response using Splunk.
Create and maintain knowledge objects (macros lookups tags event types etc.
Implement Splunk best practices and ensure data hygiene.
Terraform Secondary Responsibility
Use Terraform to automate and manage Splunk infrastructure components (e.g. deployment of apps role management configuration automation).
Integrate Terraform with CI and CD tools e.g. GitHub Actions Jenkins GitLab) to enable automated deployments and updates to the Splunk environment.
Maintain Terraform modules and state for infrastructure that supports Splunk operations e.g. AWS resources storage IAM policies monitoring).
Collaborate with DevOps and Cloud teams to enforce automation and infrastructure consistency.
Technical Skills Required
Splunk Core Certified Power User or higher preferred.
Strong experience in SPL Search Processing Language
Hands\-on experience with Splunk Enterprise Security ITSI or SOAR
Experience with Terraform and writing HCL scripts.
Working knowledge of CI and CD tools and integrating infrastructure code into deployment pipelines.
Familiarity with cloud platforms (AWS Azure GCP) and basic infrastructure management.
Understanding of DevSecOps concepts and security telemetry.
Certifications Required
Splunk Core Certified Power User or higher preferred.
Solutions Architect, AWS India Public Sector
Amazon Web Services (AWS) · Gurugram, Haryana, India
Data Engineer-Data Platforms-AWS
IBM · Hyderabad, Telangana, India
Cloud Platform Engineer
Accenture in India · Bengaluru, Karnataka, India