13,140 Splunk Engineer jobs in the United States

Why WWT?

At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions for our clients.

Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution and integration capabilities.

With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all.

Want to work with highly motivated individuals on high-performance teams? Join WWT today!

What will you be doing?

As a Senior Splunk Engineer, you will support the implementation and maintenance of our customer's Splunk infrastructure. You will play a key role in developing dashboards, actionable alerts, and reports, and ensuring system availability and performance.

Location : Oakton, VA - fully on-site

RESPONSIBILITIES:

• Collaborate with other teams to create a very effective and resilient network performance and data flow monitoring capability.

• Work with technical teams and business stakeholders to align the tools to business needs.

• Assist in configuring data sources for ingestion into existing Splunk environment

• Deploy, configure, and maintain Splunk components (indexers, forwarders, search heads, etc.)

• Develop custom dashboards, reports, and alerts to support operational and security monitoring.

• Integrate data sources with the Splunk environment.

• Optimize Splunk queries and system performance.

• Implement and maintain Splunk best practices in security, scalability, and resilience.

• Collaborate with IT teams to onboard data and support investigations.

• Maintain documentation for processes, configurations, and procedures.

• Troubleshoot and resolve issues related to data ingestion, search performance, and Splunk app compatibility.

• Support compliance and audit requirements by producing reports and access controls.

QUALIFICATIONS:

• Bachelor's degree and minimum 5 years of experience with Splunk administration and engineering. Knowledge of Splunk Enterprise Security (ES), ITSI, or other premium apps preferred.

• 2+ years of experience in networking to include device configuration and maintenance.

• Understanding of network logging and alerts across network devices.

• Active DoD TS/SCI clearance or higher

• 8140 and Security+ Certification

• Proficiency in SPL (Search Processing Language).

• Familiarity with syslog, REST APIs, and scripting languages (Python, Bash, PowerShell).

Want to learn more about Government Services? Check us out on our platform:

Preferred locations: Oakton, VA

Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $125,000.00 to $155,000 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program

• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement

• Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement

• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!

If you have any questions or concerns about this posting, please email .

#LI-AH1

WWT will consider for employment, without regard to disability, a disabled applicant who satisfies the requisite skill, experience, education, and other job-related requirements of the job and is capable of performing the essential requirements of the job with or without reasonable accommodation. World Wide Technology is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, age, disability, veteran status, genetic information, or other characteristics protected by law. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you have a disability and you believe you need a reasonable accommodation in order to search for a job opening or to submit an online application, please call 1- and ask for Human Resources.

Why WWT?

At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions for our clients.

Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution and integration capabilities.

With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all.

Want to work with highly motivated individuals on high-performance teams? Join WWT today!

What will you be doing?

As a Senior Splunk Engineer, you will support the implementation and maintenance of our customer's Splunk infrastructure. You will play a key role in developing dashboards, actionable alerts, and reports, and ensuring system availability and performance.

Location : Oakton, VA - fully on-site

RESPONSIBILITIES:

• Collaborate with other teams to create a very effective and resilient network performance and data flow monitoring capability.

• Work with technical teams and business stakeholders to align the tools to business needs.

• Assist in configuring data sources for ingestion into existing Splunk environment

• Deploy, configure, and maintain Splunk components (indexers, forwarders, search heads, etc.)

• Develop custom dashboards, reports, and alerts to support operational and security monitoring.

• Integrate data sources with the Splunk environment.

• Optimize Splunk queries and system performance.

• Implement and maintain Splunk best practices in security, scalability, and resilience.

• Collaborate with IT teams to onboard data and support investigations.

• Maintain documentation for processes, configurations, and procedures.

• Troubleshoot and resolve issues related to data ingestion, search performance, and Splunk app compatibility.

• Support compliance and audit requirements by producing reports and access controls.

QUALIFICATIONS:

• Bachelor's degree and minimum 5 years of experience with Splunk administration and engineering. Knowledge of Splunk Enterprise Security (ES), ITSI, or other premium apps preferred.

• 2+ years of experience in networking to include device configuration and maintenance.

• Understanding of network logging and alerts across network devices.

• Active DoD TS/SCI clearance or higher

• 8140 and Security+ Certification

• Proficiency in SPL (Search Processing Language).

• Familiarity with syslog, REST APIs, and scripting languages (Python, Bash, PowerShell).

Want to learn more about Government Services? Check us out on our platform:

Preferred locations: Oakton, VA

Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $125,000.00 to $155,000 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program

• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement

• Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement

• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!

If you have any questions or concerns about this posting, please email .

#LI-AH1

WWT will consider for employment, without regard to disability, a disabled applicant who satisfies the requisite skill, experience, education, and other job-related requirements of the job and is capable of performing the essential requirements of the job with or without reasonable accommodation. World Wide Technology is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, age, disability, veteran status, genetic information, or other characteristics protected by law. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you have a disability and you believe you need a reasonable accommodation in order to search for a job opening or to submit an online application, please call 1- and ask for Human Resources.

Why WWT?

At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions for our clients.

Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution and integration capabilities.

With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all.

Want to work with highly motivated individuals on high-performance teams? Join WWT today!

What will you be doing?

As a Senior Splunk Engineer, you will support the implementation and maintenance of our customer's Splunk infrastructure. You will play a key role in developing dashboards, actionable alerts, and reports, and ensuring system availability and performance.

Location : Oakton, VA - fully on-site

RESPONSIBILITIES:

• Collaborate with other teams to create a very effective and resilient network performance and data flow monitoring capability.

• Work with technical teams and business stakeholders to align the tools to business needs.

• Assist in configuring data sources for ingestion into existing Splunk environment

• Deploy, configure, and maintain Splunk components (indexers, forwarders, search heads, etc.)

• Develop custom dashboards, reports, and alerts to support operational and security monitoring.

• Integrate data sources with the Splunk environment.

• Optimize Splunk queries and system performance.

• Implement and maintain Splunk best practices in security, scalability, and resilience.

• Collaborate with IT teams to onboard data and support investigations.

• Maintain documentation for processes, configurations, and procedures.

• Troubleshoot and resolve issues related to data ingestion, search performance, and Splunk app compatibility.

• Support compliance and audit requirements by producing reports and access controls.

QUALIFICATIONS:

• Bachelor's degree and minimum 5 years of experience with Splunk administration and engineering. Knowledge of Splunk Enterprise Security (ES), ITSI, or other premium apps preferred.

• 2+ years of experience in networking to include device configuration and maintenance.

• Understanding of network logging and alerts across network devices.

• Active DoD TS/SCI clearance or higher

• 8140 and Security+ Certification

• Proficiency in SPL (Search Processing Language).

• Familiarity with syslog, REST APIs, and scripting languages (Python, Bash, PowerShell).

Want to learn more about Government Services? Check us out on our platform:

Preferred locations: Oakton, VA

Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $125,000.00 to $155,000 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay.

The well-being of WWT employees is essential. So, when it comes to our benefits package, WWT has one of the best. We offer the following benefits to all full-time employees:

• Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program

• Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement

• Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement

• Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program

We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All!

If you have any questions or concerns about this posting, please email .

#LI-AH1

WWT will consider for employment, without regard to disability, a disabled applicant who satisfies the requisite skill, experience, education, and other job-related requirements of the job and is capable of performing the essential requirements of the job with or without reasonable accommodation. World Wide Technology is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, age, disability, veteran status, genetic information, or other characteristics protected by law. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you have a disability and you believe you need a reasonable accommodation in order to search for a job opening or to submit an online application, please call 1- and ask for Human Resources.

Advise on cost efficiency for future usage and cost optimization for current infrastructure.
Automate the management and enforcement of policies.
Create and maintain documentation related to architecture and operational processes for Splunk.
Develop a set of best practices and architecture patterns.
Help maintain regulatory compliance of the Splunk infrastructure.
Help monitor and maintain Splunk performance, availability, and capacity.
Maintain cloud network configurations.
Maintain gold images.
Offer solutions for Splunk technical questions, issues, and escalations. This will include working with Splunk Support as needed.
Provide best practices in adoption, expansion, and operations of Splunk Enterprise and Splunk Cloud.
Provide operations monitoring of Splunk platform to enable proactive issue identification, response, and resolution.
Recommend and execute improvements to the existing Splunk architecture and design with growth and scalability in mind to optimize performance, stability, reliability, and agility.
Responsible for reporting on current infrastructure status, and planning for future usage.
Responsible for Splunk agent (i. e., Universal Forwarder) deployment and server infrastructure analysis, optimization, and capacity planning.
Support and guide client resources that include Splunk Administrators, Architects, Knowledge Managers, Developers, and Users for increasing Splunk adoption and overall customer success.
Support large-scale deployments with data feeds from multiple on premise and cloud data centers.
Upgrade, install, configure monitoring solution for AWS for Windows and Linux servers.
Utilize automation tool such as Terraform, Ansible, AWS Cloud Formation, Azure Resource Manager, or similar.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to com.

To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: .

Bachelors degree in computer science, electronics engineering or other engineering or technical discipline OR AWS/Azure Certification (AWS Professional / Specialty Cert. OR Azure Expert / Advanced Cert.) OR 4 years of relevant experience in one of the VAECOT suite of tools (Science Logic, Dynatrace, Turbot, AppDynamics)
Minimum of three (3) years of experience in leading technical teams to achieve objectives and outcomes.
Minimum of six (6) years setting up, configuring, and using AWS cloud operational tools to ensure service level agreements and performance targets are met, and continued compliance with policies, standards and guidelines
Minimum of three (3) years specific to monitoring Centralized Logging Solution (CLS)/Splunk
Subject matter expertise with ALL VAEC Cloud Service Providers which currently includes Microsoft Azure and Amazon Web Services (AWS)
Experience with programming with Splunk language (SPL) or equivalent (e. g., Python, Powershell, AWS or Azure CLI)
One or more of these Splunk certifications: Splunk Core Certified Power User, Splunk Core Certified Advanced Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, Splunk Enterprise Security Certified Admin, Splunk IT Service Intelligence Certified Admin
Knowledge of enterprise logging, with a focus on security event logging
A solid understanding of cloud concepts, either using Azure or AWS semantics
Experience in one or more of the VAECOT suite of tools, shown below.

• U.S. Citizenship and ability to obtain a Public Trust clearance.
• Primarily remote role with occasional travel to select East Coast and Midwest locations.

• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related IT field.
• 6+ years of hands-on experience with Splunk dashboards, reports, and saved searches.
• Strong skills with SPL, Dashboard Studio, data models, and asset frameworks.
• Experience with asset-centric reporting, CVE tracking, and executive-level situational awareness dashboards.
• Ability to optimize search performance and design intuitive UI layouts.
• Strong documentation and knowledge transfer abilities.

• Familiarity with federal security frameworks and programs (CDM, Zero Trust, NIST RMF, FedRAMP, DISA STIG).
• Understanding of vulnerability management, configuration management, identity/access controls, and incident response.

• Architect and implement Splunk dashboards for asset inventory and vulnerability reporting.
• Build executive dashboards highlighting critical assets for decision-making.
• Standardize dashboard layouts, styles, and naming conventions.
• Optimize searches for scalability and performance.
• Integrate new data sources and onboard security tools.
• Maintain dashboard documentation and mentor junior engineers.

• U.S. Citizenship and ability to obtain a Public Trust clearance.
• Primarily remote role with occasional travel to select East Coast and Midwest locations.

• Bachelor's degree in Computer Science, Cybersecurity, Engineering, or related IT field.
• 6+ years of hands-on experience with Splunk dashboards, reports, and saved searches.
• Strong skills with SPL, Dashboard Studio, data models, and asset frameworks.
• Experience with asset-centric reporting, CVE tracking, and executive-level situational awareness dashboards.
• Ability to optimize search performance and design intuitive UI layouts.
• Strong documentation and knowledge transfer abilities.

• Familiarity with federal security frameworks and programs (CDM, Zero Trust, NIST RMF, FedRAMP, DISA STIG).
• Understanding of vulnerability management, configuration management, identity/access controls, and incident response.

• Architect and implement Splunk dashboards for asset inventory and vulnerability reporting.
• Build executive dashboards highlighting critical assets for decision-making.
• Standardize dashboard layouts, styles, and naming conventions.
• Optimize searches for scalability and performance.
• Integrate new data sources and onboard security tools.
• Maintain dashboard documentation and mentor junior engineers.

Credence is one of the largest privately held technologies services company in the country, repeatedly recognized as a top place to work, and have been on the Inc. 5000 Fastest Growing Private Companies list for the last 12 years. We practice servant leadership and believe that by focusing on the success of our clients, team members, and partners, we all achieve greater success.

At Credence, we support our clients' mission-critical needs, powered by technology. We provide cutting-edge solutions, including AI/ML, enterprise modernization, and advanced intelligence capabilities, to the largest defense and health federal organizations. Through partnership and trust, we increase mission success for warfighters and secure our nation for a better future.

Position Summary

We have an upcoming need for a Splunk Engineer to design, implement, deploy, and manage complex Splunk environments for a highly complex Department of State organization. This role will be on-boarding this fall.

You will customize Splunk to meet specific use cases and requirements. You will develop and maintain Splunk dashboards and create reports tailored to the needs of different teams and stakeholders. You will be in charge of monitoring indexing performance, search performance, and data ingest. You will have to be proactive in identifying and resolving Splunk system and performance issues. You will analyze and conduct research to determine a cyber criminal's capabilities, intentions, and attack approaches, including those with multiple phases. In addition, you will be responsible for supporting the remediation of any discovered threats, and providing incident response capabilities when necessary.

This role will require you to stay up-to-date with the latest Splunk features, enhancements, and industry trends and manage relationships with Splunk vendors to stay informed about new products and offerings.

Create, manage, and support automation solutions for Splunk orchestration
• Use the SIEM, EDR, IDS, and other tools to conduct cyber threat hunts
• Rapidly respond to incidents to minimize risk exposure and ensure system availability; proactively monitor internal and external-facing environments
• Identify attacker tools, tactics, and procedures to develop indicators of compromise. Form and articulate expert opinions based on findings and analysis
• Seek opportunities to automate detection and remediation and reduce response times for incidents
• Provide incident response support and coordination, including investigating security incidents and coordinating with other teams to contain and remediate the incident.
• Leverage Splunk to create advanced search queries and reports to monitor system performance, security threats, and operational metrics.
• Collaborate and support inquiries from cross-functional internal and external stakeholders such as system administrators, compliance, and data engineering teams, to ensure documentation is complete and in compliance with information security policies
• Manage and support the development of security operations playbooks to ensure threat detection, monitoring, response, and forensics activities align with best practices, minimize gaps in detection and response, and provide comprehensive mitigation of threats
• Evaluate third-party products and services to verify they meet security and compliance requirements
• Familiarity with log management, event correlation, and data analysis concepts.
• Drive improvements in technical architecture, standards, and processes to meet company objectives and best security practices
• Develops technical solutions to verify compliance with required technical controls autonomously
• Present findings/reports to stakeholders on a weekly basis
• Perform log analysis, parsing, indexing, and analyzing machine data logs to extract actionable insights.
• Perform upgrades and patch management to keep Splunk environments up-to-date and secure.
• Design intuitive and customizable dashboards to visualize data trends.

• Must be a US Citizen with the ability to obtain and maintain a Secret clearance. Active Secret Clearance preferred
• Masters Degree from an accredited university or equivalent combination of education in Computer Science, Information Technology, or a related field with 5 to 7 years of experience

• Equivalent combination of education, technical training and certification (CISSP, C|EH, GIAC GREM, GCTI, GCFR, GCFA, Splunk Certified Cybersecurity Defense Analyst, Splunk Enterprise Security Certified Admin) and/or work experience; knowledgeable about configuring Splunk for security and compliance requirements, including FISMA, SOC 2, HIPAA, and GDPR.

• Experience in building Splunk Technology Add-ons and configuring field extractions for various data sources
• Strong experience working with Splunk, including architecting and implementing Splunk solutions in large-scale environments.
• Proficiency in SPL (Search Processing Language) for creating complex queries, reports, and dashboards in Splunk.
• Experience in designing, developing, testing, troubleshooting, deploying, and maintaining Splunk solutions, reporting, alerting, and dashboards
• Extensive knowledge of a tier Splunk installation: indexers, forwarders, search heads, clusters
• Experience analyzing system, network, and application logs for attack techniques at all stages of the cyber kill chain
• Experience with more than one or more enterprise-scale EDR and SIEM tool
• Experience consuming and analyzing Cyber Threat Intelligence for actionable takeaways.
• Strong analytical and critical thinking skills to identify and address complex data and system issues.
• Strong problem-solving skills to investigate and resolve Splunk platform and data ingestion issues.
• Strong communicator and collaborator, able to work closely with cross-functional teams.
• Knowledgeable in using scripting languages (e.g., Python) and Splunk's built-in scripting to automate routine tasks.
• Detail-oriented with a strong commitment to documenting configurations, processes, and best practices.
• Familiarity with ServiceNow cloud offering and log ingestion to Splunk.

Please join us, as together we build a better world one mission at a time powered by Technology and its People!

This position is onsite in Rosslyn VA.

#LI-Onsite

#Credence #veteranemployment #militaryspouse #milspouse #hireavet #militaryveteran #militaryfriendly #transitioningmilitary #veterans #militarytransition #militaryfamilies #msep #militarytocivilian #military #federalcontractingjobs #defensecontracting #defenseindustryjobs

• Drive complex deployments of Splunk while working side by side with the customer to solve their unique problems across a variety of use cases.
• Collaborate across the customer's organization to get the right solution delivered and drive feature innovation gathered from the customer's input.
• Leverage previous experiences, share best practices and create innovative solutions to push user adoption and maximize the value of Splunk for the customer.

• 2-5 years of current experience in technical consulting, with working knowledge or recent hands-on experience with scripting languages (powershell), and application development (Preferred: java, python, .NET), databases and analytical tools.
• 2 years of SPLUNK Development experience developing dashboard with SPL.
• 2 years of SPLUNK administration experience.
• Ability to quickly explore, examine and understand complex problems and how it relates to the customer's business.
• Experience with both the Unix and Windows operating systems; comfortable with the command line interface.
• Ability to stop, collaborate and listen with technical and non-technical consumers, from IT administrators to executive level stakeholders.
• Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and fellow Splunk engineers.
• Good understanding/experience with RMF (Risk Mgt Framework- NIST 800-53).
• Well organized with a healthy sense of urgency; able to set, communicate, and meet aggressive deadlines with competing priorities.
• Demonstrable understanding of common enterprise applications (especially in the areas of security and finance).
• Statistical and analytical modeling not required but a plus.

• iQuasar offers a comprehensive benefits program including various options in these plans:
• Medical, Dental, Vision Insurance
• Paid Holiday/Annual/Sick/Personal Leave
• Short-Term/ Long-Term Disability Insurance
• Disability Insurance
• Life Insurance
• Employee Stock Ownership Program (ESOP)
• Generous 401(k) Company Plan
• Education Assistance
• Professional Development Programs Reimbursement

• Availability to start a new job.
• Best Rates
• Contact #

• Active Secret or Top Secret Clearance.
• Minimum of five (5) years of hands-on experience working directly with Splunk, including data onboarding, parsing, and normalization.
• Bachelor of Science in Computer Science, Information Systems, Mathematics, Engineering, related degree or an additional three (3) years of experience.
• Proven experience onboarding data sources into Splunk using various methods such as Universal Forwarders, Heavy Forwarders, HTTP Event Collectors (HEC), syslog, and REST APIs.
• Demonstrated experience developing and configuring Splunk fields, data schemas, and extraction rules to ensure accurate and efficient data indexing and querying.
• Hands-on experience creating advanced Splunk dashboards, reports, alerts, and correlation searches to meet operational cybersecurity requirements.
• Practical experience implementing Splunk automation workflows using built-in tools and scripting.
• Strong technical documentation skills, including the ability to clearly document data flows, onboarding processes, and operational procedures.
• Excellent collaboration and communication skills to effectively interact with team members, stakeholders, and leadership.

• Perform onboarding of new data sources into Splunk using multiple ingestion methods, ensuring proper data parsing, normalization, and indexing.
• Develop, configure, and optimize Splunk data schemas, fields, tags, event types, and extraction rules.
• Create, maintain, and enhance Splunk dashboards, alerts, and reports tailored to cybersecurity monitoring and incident response requirements.
• Implement Splunk automation solutions to streamline workflows, reduce manual processes, and improve efficiency.
• Collaborate closely with team members and stakeholders to gather requirements, validate data source integrations, and support operational needs.
• Regularly review and optimize Splunk configurations and queries to enhance system performance and reliability.
• Document onboarding processes, data flows, system configurations, and operational procedures thoroughly and accurately.
• Assist with troubleshooting and resolving technical issues related to Splunk operations, configurations, and integrations.

• Splunk Enterprise Certified Admin
• Splunk Certified Power User
• Splunk Enterprise Security Certified Admin
• CompTIA Security+
• Certified Information Systems Security Professional (CISSP)