Director, Splunk Security Center of Excellence

Description

About the Role

Key Responsibilities

• Direct the Splunk Security Center of Excellence (SSCOE) across three core teams:
• Splunk Product Operations – responsible for the daily health and stability of our Splunk platforms, including upgrades, support, and service delivery.
• Search Engineering – focused on scaling the environment through capacity planning, SPL optimization, data modeling, and architectural improvements.
• SOAR Automation – delivering orchestration capabilities that enable faster, more consistent security operations across environments.
• Ensure alignment between the SSCOE and broader security strategy, infrastructure reliability, and product adoption goals.
• Partner with detection engineering, incident response, and threat hunting teams to improve outcomes through smarter data, better content, and more effective automation.
• Establish and maintain key metrics that measure platform reliability, engineering impact, and service quality.
• Provide operational feedback that helps shape product roadmaps, drawing on direct experience with complex Splunk deployments.
• Represent our Splunk environment externally — through SOC tours, technical deep dives, and discussions with customers and partners.
• Evolve internal processes, standards, and tooling using a combination of ITIL, SRE, and automation practices.
• Hire, support, and grow technical managers and individual contributors across geographies and specialties.

What We’re Looking For

• 10+ years in Security Operations, Engineering, or Platform roles, with 5+ years managing cross-functional or multi-disciplinary teams.
• Deep experience with Splunk — including Splunk Cloud, Enterprise, ES, and SOAR — and a track record of maintaining and evolving complex deployments.
• Confidence managing both operational reliability and engineering scale, with awareness of how they intersect.
• A strategic thinker who balances near-term needs with long-term systems design.
• Experience working across boundaries — partnering with security, product, and engineering teams to drive shared outcomes.
• Familiarity with frameworks like ITIL and SRE, and how they apply in practical, real-world settings.
• Strong communicator, capable of moving between detailed technical discussions and high-level briefings.
• A thoughtful leader who invests in team growth, inclusion, and continuous learning.
• Bonus: Hands-on experience with COE programs or acting as a “Customer Zero” for security tooling and platforms.

Why This Role Matters

Note:

Base Pay Range

SF Bay Area, Seattle Metro, and New York City Metro Area

Base Pay Range: $212,400.00 - 292,050.00 per year

California (excludes SF Bay Area), Washington (excludes Seattle Metro), Washington DC Metro, and Massachusetts

Base Pay Range: $191,160.00 - 262,845.00 per year

All other cities and states excluding California, Washington, Massachusetts, New York City Metro Area and Washington DC Metro Area.

Base Pay Range: $172,000.00 - 236,500.00 per year

Splunk provides flexibility and choice in the working arrangement for most roles, including remote and/or in-office roles. We have a market-based pay structure which varies by location. Please note that the base pay range is a guideline and for candidates who receive an offer, the base pay will vary based on factors such as work location as set out above, as well as the knowledge, skills and experience of the candidate. In addition to base pay, this role is eligible for incentive compensation and may be eligible for equity or long-term cash awards.

Benefits are an important part of Splunk's Total Rewards package. This role is eligible for a competitive benefits package which includes medical, dental, vision, a 401(k) plan and match, paid time off and much more! Learn more about our next-level benefits at https://splunkbenefits.com.

Thank you for your interest in Splunk!