Splunk Logging Services Technical Product Lead

Description

The Digital Modernization Sector is seeking an experienced Splunk Logging Services Technical Product Lead to oversee and grow our enterprise Splunk services platform that spans multiple tenants and supports a wide array of applications, security operations, cloud/on-prem infrastructure, and IT services. In this role, you will architect, optimize, and manage large-scale Splunk deployments in AWS, ensuring the platform's reliability, scalability, and performance. You will manage a cross-functional team of 10-15 Splunk specialists and cloud engineers, develop a product roadmap, and coordinate with multiple stakeholders to ensure a seamless, secure, and continuously improving logging environment.

Key Responsibilities

• Design, implement, and maintain complex Splunk architectures in AWS, including multi-indexer clusters, workload distribution, search head configurations, and data ingestion frameworks.
• Define and document best practices for Splunk implementation, performance tuning, data modeling, and monitoring in a multi-tenant environment.

• Direct a team of Splunk administrators, cloud engineers, and support staff, providing mentorship, guidance, and professional development.
• Coordinate resource allocation, delegate tasks, and ensure that project milestones and service-level objectives are consistently met.

• Develop and maintain a Splunk product roadmap aligned with organizational priorities, focusing on feature enhancements, platform improvements, and new use cases.
• Translate business requirements into technical deliverables, balancing innovative roadmap items with ongoing operational needs.

• Act as the primary interface with customers, leadership teams, and Splunk Professional Services to align on architecture decisions, best practices, and service improvements.
• Communicate product vision, roadmap updates, and platform enhancements effectively across diverse technical and non-technical audiences.

• Oversee and refine operational procedures (e.g., data onboarding, index management, security configurations) to ensure high availability, resilience, and adherence to compliance/regulatory requirements.
• Implement and monitor key performance indicators (KPIs) to maintain optimal system health and proactively identify areas for improvement.

• Collaborate with various engineering and operations teams to integrate Splunk with other observability, monitoring, and analytics tools.
• Champion consistent logging standards and practices across the organization, driving adoption of next-generation logging solutions.

• Stay current with emerging Splunk capabilities, AWS services, and logging/monitoring trends to introduce new features and capabilities.
• Lead proof-of-concept initiatives that explore innovative ways of leveraging Splunk for business insights and system observability.

• Education & Experience:
  
  
  • Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent professional experience). Additional years of experience may be substituted in lieu of degree.
  • Minimum of 12 years working with Splunk in enterprise-scale environments, including architecture, deployment, and administration.
  • Proven track record implementing and managing Splunk on AWS.
• Technical Expertise:
  
  
  • Deep understanding of Splunk Enterprise Security, IT Service Intelligence (ITSI), or similar modules.
  • Solid experience with AWS services (EC2, S3, CloudFormation, Lambda, etc.) and how they integrate with Splunk.
  • Expertise in performance tuning (indexers, search heads, forwarders) and data lifecycle management in Splunk.
  • Strong knowledge of security best practices and secure data handling in regulated environments.
• Leadership & Communication Skills:
  
  
  • Demonstrated ability to lead technical teams, manage workloads, and deliver on roadmap commitments.
  • Excellent verbal and written communication skills for interfacing with stakeholders of varying technical backgrounds.
  • Experience working with external consulting and professional services teams.
• Product Management & Strategy:
  
  
  • Proven experience developing and executing multi-phase product roadmaps.
  • Ability to balance competing priorities and manage stakeholder expectations effectively.

• Splunk certifications (e.g., Splunk Certified Architect, Splunk Enterprise Security Certified Admin).
• AWS certifications (e.g., AWS Certified Solutions Architect - Associate/Professional).
• Familiarity with DevOps/DevSecOps practices and CI/CD pipelines.
• Experience with scripting/programming languages (Python, Bash, etc.) for automation and integration.
• Understanding of ITIL practices and ServiceNow integration.