Sr. Splunk / SIEM Engineer (TS Required)
Hybrid · Alexandria, Virginia, United States
Job Summary
Senior Splunk / SIEM Engineer to deploy, configure, and maintain complex Splunk clusters across varied hardware platforms; develop and optimize advanced Splunk dashboards and queries to support mission-critical operations; troubleshoot and resolve issues within large-scale, complex Splunk environments; implement best practices for indexing, data transformation, and system architecture; collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions; support vulnerability and STIG scanning operations and interpret outputs for system compliance; manage virtual environments including VRFs and VLAN; perform system updates and patching to meet DoD cybersecurity requirements; document configurations and operational procedures for audit and continuity purposes
Required Qualifications
- Bachelor’s degree in computer science, Information Systems, Information Assurance or other relevant field
- At least five (5) years of experience in Splunk administration or engineering
- Knowledge of Splunk architecture, deployment models, and indexing best practices
- At least ten (10) years of overall Cybersecurity experience
- At least five (5) years of SIEM experience
- Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
- Proficiency in creating custom dashboards and advanced queries
- Must hold a current Splunk Administrator Certification
- Must possess a valid DoD 8570 IAT-II certification (ex. Security+)
- Active Top Secret clearance is required; must be able to maintain a Top Secret clearance
- Strong problem-solving skills and ability to work independently or within a team
- Excellent written and verbal communication skills
- Familiarity with DevOps and automation tools such as Ansible or Terraform
- Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
- Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
- Experience with Elastic
- Familiarity with Linux and Windows server environments
Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.
Hiring someone like this?
Get your role in front of qualified candidates on Sorce.