Splunk Enterprise Security Architect

Date: Feb 5, 2019

Location: Broomfield, CO, US, 80021

CenturyLink (NYSE: CTL) is a global communications and IT services company focused on connecting its customers to the power of the digital world. CenturyLink offers network and data systems management, big data analytics, managed security services, hosting, cloud, and IT consulting services. The company provides broadband, voice, video, advanced data and managed network services over a robust 265,000-route-mile U.S. fiber network and a 360,000-route-mile international transport network. Visit CenturyLink for more information.


Job Summary

CenturyLink has an immediate need for a Senior Lead Information Security Engineer who can be part of engineering and overseeing our shared international Splunk Enterprise Security environment.  This role is for a team leader responsible for the architecture, engineering, deployment, configuration, and support of our Splunk Enterprise Security environment.


The person selected must be able to work independently and with others to complete tasks assigned by her/his leadership and have excellent communications skills and experience in presenting technical issues to a wide variety of audiences


Job Description

  • Architect, engineer, implement, administer, and maintain a complex Splunk Enterprise Security environment designed to meet security and compliance requirements and minimize system/ data needs.
  • Design, manage, administer and support Splunk Enterprise Security to optimize searches & correlation of events for threat identification and alert generation in a shared environment.
  • Mentor and guide teammates to gain knowledge and meet deliverables.
  • Monitor and support event feeds to ensure accurate event parsing, event filtering, event aggregation, and event transmission from various sources (workstations, servers, network equipment, …) using network communication protocols such as SYSLOG-NG, Rsyslog, CEF, SSH/TLS, Kafka etc.
  • Create and Maintain API and DBConnect based integrations to asset and inventory systems for contextual feeds as well as for upstream ticketing integration.
  • Create and analyze utilization statistics to identify causes for system and application degradations as well as recommend required system enhancements for business case and budget approval.
  • Guide routine compliance and audit functions to ensure monitoring requirements of CenturyLink assets are satisfied.
  • Develop, modify and follow associated corporate and workgroup processes applicable to the role (e.g. change and outage management).



  • Undergraduate degree in Computer Science, Engineering, or equivalent experience in a related field.
  • 4+ years of relevant Splunk Enterprise and Enterprise Security administration, configuration, and support experience.
  • Certifications for Splunk Enterprise Certified Architect and Splunk Enterprise Security Certified Admin.
  • 3+ years development experience with scripting languages (RegEx, PowerShell) or application development (e.g. Java, Python, .NET) for support needs.
  • Strong networking experience to aid event collection and troubleshooting.
  • Excellent understanding of common computing platforms, including:  Windows, RedHat & Ubuntu Linux Servers; comfortable with command line interface.
  • Experience in analyzing general system processing throughput, utilization, and capacity.
  • Strong work ethic, demonstrated self starter, ability to work in a fast paced, team oriented environment with excellent verbal and written communication skills.


Nice to have Qualifications:

  • User behavior implementation experience.
  • Broad technical knowledge of current and emerging network and security technologies.

Alternate Location: US-Colorado-Broomfield; US-Colorado-Denver; US-Kansas-Gardner

Requisition #: 208672

This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/ 

EEO Statement

We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”).  We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.


The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job.  Job duties and responsibilities are subject to change based on changing business needs and conditions.

Nearest Major Market: Denver

Job Segment: Architecture, Corporate Security, Engineer, Consulting, Engineering, Security, Technology

Share this Job