Splunk, a Cisco company, is building a safer and more resilient digital world with an end-to-end full stack platform made for a hybrid, multi-cloud world. Leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. Our customers love our technology, but it's our caring employees that make Splunk stand out as an amazing career destination. No matter where in the world or what level of the organization, we approach our work with kindness. So bring your work experience, problem-solving skills and talent, of course, but also bring your joy, your passion and all the things that make you, you. Come help organizations be their best, while you reach new heights with a team that has your back. **Role Summary** As a member of Splunk's Workforce Identity and Access Management (IAM) team, the Senior Security Engineer will lead the design and implementation of identity services and platforms, mainly Privileged Access Management (PAM) solutions. You must have a proven track record in delivering identity solutions that are functional, secure, scalable, and reliable. Your work will not only improve Splunk’s security posture but also improve workforce productivity. **What you'll get to do** + Work with IAM Leads to develop and drive PAM strategy, roadmap, and plan + Lead the design, engineering, and deployment of Privileged Access Management (PAM) solutions + Manage PAM tools/platforms and their integrations with relevant systems/platforms + Drive mitigation of privileged access-related risks + Participate in or lead incident resolution of sophisticated high-severity incidents + Analyze the current environment to identify technical and operational opportunities and develop continuous improvement action plans + Participate in disaster recovery, capacity planning, performance monitoring, and maintenance to ensure high availability + Understand and adhere to standard operational processes to ensure audibility and compliance with industry standards + Build trust with the other teams in the Splunk Product & Technology organization, but also across the company + Mentor and train others in the use and functionality of the IAM services **Must-have Qualifications** + Bachelor's degree in Computer Science, Information Technology, or related field required or equivalent work experience + Demonstrated ability in IAM with 8+ years of experience in implementing, integrating, and supporting end-to-end Privileged Access Management (PAM) solutions + Hands-on production experiences with PAM products such as CyberArk, Delinea, BeyondTrust + Experience in various authentication standards such as SAML, OAuth, SCIM, OpenID Connect, and FIDO2 + Experience in security and implementation standards such as the least privilege, just-in-time provisioning, and passwordless authentication + Hands-on experience with Cloud Service Providers such as AWS, GCP & Azure + Familiarity with PKI, Public Certificate Authorities, OpenSSL, Hashicorp Stack (e.g. Vault) + Development experience with Terraform and at least one program language (e.g. GO, Java, Python) + Familiarity with DevOps and CI/CD Pipelines **Nice-to-have Qualifications** We’ve taken special care to separate the must-have qualifications from the nice-to-haves. “Nice-to-have” means just that: Nice. To. Have. So, don’t worry if you can’t check off every box. We’re not hiring a list of bullet points–we’re interested in the whole you. + CISSP, CISM, or equivalent certification preferred **Splunk is an Equal Opportunity Employer** Splunk, a Cisco company, is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis. Note: