1 to 25 of 104 Remote Splunk Jobs

Splunk Engineer Location: Mclean, VA Work Type: Onsite Remote Work: NO Job Description Gridiron IT is seeking a Splunk Engineer to support a mission-critical program within the federal government. The ideal candidate will have hands-on experience designing, deploying, and optimizing Splunk environments in a secure, high-visibility setting. Responsibilities Deploy, configure, and maintain Splunk Enterprise and/or … Splunk Enterprise Security (ES) in a secure, multi-tiered environment. Onboard log sources from various systems (Windows, Linux, network appliances, cloud services) to ensure full visibility and compliance. Develop advanced dashboards, reports, alerts, and custom visualizations to support SOC operations and cyber threat detection. Optimize Splunk indexing, search performance, and storage utilization. Collaborate with cybersecurity analysts, engineers, and program stakeholders … to drive continuous improvement of monitoring capabilities. Ensure Splunk implementation aligns with federal cybersecurity standards (e.g., NIST, RMF, FISMA). Document configurations, workflows, and standard operating procedures. Required Qualifications Active TS/SCI CI Polygraph required 7+ years of experience with Splunk engineering in a federal or DoD environment. Experience integrating and parsing logs from a variety of enterprise and More ❯

NoSQL databases. Integration services such as messaging and streams. Building RESTful API Services. Containerisation, Kubernetes, serverless functions. Microservices, and distributed tracing. Enterprise logging, monitoring, and alerting frameworks (e.g., ELK, Splunk, Prometheus, Grafana). Automation scripting (using scripting languages such as Terraform, Ansible etc.). Experience of working with Continuous Integration (CI), Continuous Delivery (CD) and continuous testing tools. Experience working More ❯

NoSQL databases. Integration services such as messaging and streams. Building RESTful API Services. Containerisation, Kubernetes, serverless functions. Microservices, and distributed tracing. Enterprise logging, monitoring, and alerting frameworks (e.g., ELK, Splunk, Prometheus, Grafana). Automation scripting (using scripting languages such as Terraform, Ansible etc.). Experience of working with Continuous Integration (CI), Continuous Delivery (CD) and continuous testing tools. Experience working More ❯

as AWS GovCloud or Azure Government. Preferred Qualifications: • Elastic Certified Engineer or Elastic Certified Analyst. • Experience with Elasticsearch Service (Elastic Cloud). • Familiarity with other observability tools (e.g., Grafana, Splunk, Prometheus). • Experience with NIST RMF, DoD 8570 compliance, or CDM initiatives. • Prior experience supporting DoD, IC, or civilian agencies. More ❯

process. • Coordinate and monitor log analysis for managed services to ensure compliance with customer policies and security requirements. Basic Qualifications: • Expertise with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7. • Proficiency in implementing and managing SIEM, end-point security (IDS/IPS, HBSS). • Strong knowledge of networking protocols (TCP/IP, LAN/WAN concepts More ❯

such as C#, Python, Perl, Java, C++ CICD tools such as Azure DevOps, GitHub Actions, Gitlab, Jenkins, TeamCity Scripting languages such as PowerShell, bash Observability/Monitoring: Prometheus, Grafana, Splunk Containerisation tools such as Docker, K8S, OpenShift, EC, containers Hosting technologies such as IIS, nginx, Apache, App Service, LightSail Analytical and creative approach to problem solving We encourage you to More ❯

the past 3 years) with Azure Cloud Computing. - Experience supporting any or all these products or technologies: Red Hat Satellite, Nagios, ForeScout, CyberArk, Layer7 PAM, SailPoint, Ansible, Puppet, Chef, Splunk, AMQP (RabbitMQ), Nessus suit, Swimlane, Qualys, SCCM/MECM, BigFix, MDM solutions, JIRA Where required by law, NTT DATA provides a reasonable range of compensation for specific roles. The starting More ❯

incident response. Key Responsibilities - Manage and monitor AWS infrastructure for performance and security - Respond to production incidents, perform root cause analysis, and implement fixes - Maintain observability tools (Prometheus, Grafana, Splunk) and write PromQL queries - Improve and operate CI/CD pipelines using GitHub Actions and Kubernetes - Automate infrastructure tasks with Python, Bash, Go or SQL - Work with Git-based workflows … call rotation to ensure system reliability Your Profile Essential: - Solid hands-on AWS experience in a DevOps setting - Background in incident, change, and problem management - Strong with Prometheus, Grafana, Splunk, and PromQL - Proficient in scripting (Python, Go, Bash, SQL) - Skilled in GitHub, CI/CD, and Kubernetes operations Desirable: - Experience with Terraform or CloudFormation - Advanced log analysis with Splunk - Strong More ❯

COTS software to meet defined system requirements. e.g. Sophos, LogRhythm, Lumension Device Control, What's Up, MS Office, ESRI ArcGIS, ERDAS Imagine, BAE SOCET SET, Photoshop, Oracle, SQL Server, Splunk Expertise and experience developing software (Python, C#, Go etc) Knowledge and experience of wireframing UI/UX designs (e.g. through Balsamic) Experience of software release audits (as auditor or developer More ❯

such as AWS Cloud Practitioner. - Understanding of software and infrastructure testing. - Understanding of test management tools, e.g. TestRail and or X-Ray. - Creation and configuration of reporting dashboards with Splunk and or ELK stack. #LI-JS2 Together, as owners, let's turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you'll More ❯

We are seeking DevSecOps Engineers as part of our DevSecOps team, to design, deliver and support new systems within the Defence ecosystem. The multi-disciplined Engineer will form part of the DevSecOps team, developing and delivering a range of capabilities More ❯

to strengthen the Security Operations Center. As a Tier 3 CERT Analyst you will lead the investigation and remediation of advanced cyber threats, leveraging cutting-edge tools such as Splunk, Microsoft Sentinel, CrowdStrike, and Defender and other security stacks. You will handle complex incidents like APTs, malware, and data breaches, ensuring swift, effective responses to minimize risk to the organization … automate tasks or create custom detection methods. o Strong experience in handling complex cyber incidents (e.g., APTs, ransomware, data breaches). o Hands-on experience with SIEM platforms (e.g., Splunk, ArcSight, LogRhythm) and endpoint detection/response (EDR) tools. *Certifications (Preferred ): o Certified Information Systems Security Professional (CISSP) o Certified Incident Handler (GCIH, EC-Council) o Certified Forensic Computer Examiner More ❯

customers. Fluency in English is required along with strong technical writing skills. Your Background: 5+ years of experience working with log management/SIEM solutions (e g, Falcon LogScale, Splunk, Trellix, Chronicle, Exabeam, Sumo Logic, etc) and SOAR (e.g., Crowdstrike Fusion, Palo Alto XSOAR, Splunk Demisto, etc.) in a professional services consulting role or similar capacity Experience working with pre More ❯

levels. Work under direct supervision. Qualifications 8+ years of experience in cybersecurity Experience with Windows, Apple OSX, and Linux operating systems operations and artifacts Experience with SIEM technologies, including Splunk, Microsoft Sentinel, or Elastic Experience with forensics tools, including Magnet Axiom and FTK Experience performing forensic imaging, remote collection, and forensic analysis Experience with malware analysis, including static, dynamic, and More ❯

as code, preferably Terraform. A good working knowledge of configuration management, provisioning and orchestration tools with an understanding of use and value of centralised Monitoring/Logging systems like Splunk and New Relic. Good understanding of networking fundamentals, firewalls, load balancers, and across AWS account communication with experience of working in an Agile development environment. What we offer: Our roles More ❯

Oracle SQL, Mongo, Postgres o Know your way around Linux and Windows command lines, e.g. Bash and PowerShell o Monitoring large systems using technologies such as Grafana, Prometheus, ELK, Splunk o Experience of working in Agile teams, and the tooling that supports it, e.g. Atlassian o Diagnosing and troubleshooting application issues resulting in service outages o Troubleshooting skills across different More ❯

improvement programs, providing operational management and delivering fully or co-managed SOCs off and on-prem, they continue to offer cutting edge provision within this space. As a Senior SPLUNK Consultant, you will guide enterprise organisations through consultative reviews, ensuring their SIEM and wider technologies are operating as effectively as possible whilst ensuring People and Process are similarly proficient. Main … documentation Assess existing threat monitoring rules with a focus on changing threat landscape and technologies Document appropriate detection, containment and response strategies to meet business needs Pre-requisites: Experienced Splunk Engineer/Splunk Consultant with significant knowledge of Splunk technology Consistent experience from within the cyber security industry Ability to write Splunk Searches Ability to write Splunk TAs for applications … and middleware Experience of Splunk Enterprise Security Strong scripting experience - Python (preferred), Bash, Perl, Shell, VBA Relevant knowledge of other cyber technologies such as firewalls, IDS/IPS or proxies Strong communication and documentation skills Developing SIEM use cases is a strong advantage Further info: Competitive Basic, Bonus and Flex bens Remote working UK. Various office locations To apply: Please More ❯

Splunk Developer (Threat Detection Consultant) - Brussels/London/Paris/Amsterdam - Banking Client Duration: 1 year Rate: 500 - 800 per day Hybrid: 2 days onsite per week (London, Paris, Brussels or Amsterdam) Role: Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities Cooperate with log source onboarding team … to assure correct log source onboarding and log mapping to data models according to Splunk standard processes The development and tuning and continuous improvement of correlation rules Develop and maintain dashboards, reports, and alerts Create Splunk Knowledge Objects to address customers needs in context of using Splunk as security tool Prepare correlation search tests, conduct tests, and document evidence from … making sure we have a healthy balance between defect resolution and new features Qualifications: Technical Skills: In depth experience in development and maintenance of SIEM use cases Fluent in Splunk's search processing language (SPL) Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security Sound knowledge about Splunk Common Information Model and log normalization using Data Models Solid understanding of More ❯

including as it relates to Corelight Suricata alerts Design and implement technical solutions with ecosystem partners (packet brokers, asset managers, SOAR systems, etc.) Implement queries and dashboards in SIEMs - Splunk, Elastic, Humio, etc. Influence customers and Corelight teams and be seen as a technical expert Conduct network-related testing to ensure Corelight products operate correctly Perform validation testing of Corelight … s) Demonstrated expertise in Windows/MacOS/Linux/Unix operating systems, IDS/IPS, Network administration, firewall configuration, and strong knowledge of TCP/IP SIEM experience (Splunk required, others a bonus) Scripting in (some of) Zeek, Bash, Python, Perl, Powershell, etc. Strong briefing skills; experience interacting with SES/general officer-level management Fueled by investments from More ❯

Cloud Access Security Broker (CASB) and Cloud Secure Gateway (CSG) technologies. • Coordinate with related technology acquisition programs and communities of interest to leverage ongoing investments in tools such as Splunk, Swimlane, Crowdstrike, Grafana, Axonius, Tenable, GitLab, etc. • Must be resourceful in multitasking tasks and projects and communicating in a dynamic network. • Prior consulting, contracting experience is ideal, DHS experience a … Hat Certified System Administrator) • RHCE (Red Hat Certified Engineer) • MCSA (Microsoft Certified Solutions Associate) • MCSE (Microsoft Certified System Expert) • PMI Project Management Professional (PMP) Software/Hardware Experience Desired Splunk Enterprise, Crowdstrike, Ansible, Red Hat, Linux, Tenable, AWS and Azure Cloud More ❯

Gov, etc.). • Experience working in government-regulated environments with an understanding of cybersecurity frameworks. Preferred Qualifications: • LiveAction product certifications (e.g., LiveAction Certified Professional). • Experience integrating LiveAction with Splunk, Elastic, or other SIEMs. • Familiarity with packet-level analysis tools like Wireshark or Riverbed. • Experience with scripting and automation (Python, Ansible, PowerShell). • Prior experience supporting agencies such as DoD More ❯

Ability to analyze and recommend security improvements. Desired Qualifications Certifications like CISSP, NIST CSF, CCSP, CEH. Knowledge of cloud security (AWS, GCP, Azure). Experience managing Cisco ELA products, Splunk, SolarWinds, Varonis, Darktrace. Experience in HIPAA/FDA regulated environments. Competencies Motivation, initiative, administrative skills, interpersonal skills, self-management, thinking skills, customer orientation, adaptability, problem-solving, and effective communication are More ❯

as needed About You 5+ years' experience in Site Reliability Engineer roles Expert+ level Linux administration, scripting, and troubleshooting Demonstrable knowledge of Observability tools (Prometheus/Grafana, New Relic, Splunk, DataDog) Comprehensive experience with AWS (Amazon Web Services) and its core capabilities (VPC, EC2, ECS, Route53, Fargate, ALB/NLB distributions, etc) Extensive experience with cloud automation and infrastructure-as More ❯

Engineer roles 3+ years' experience with an object-oriented language (preferably Java, .NET or C++) Expert+ level Linux administration, scripting, and troubleshooting Demonstrable knowledge of Observability tools (New Relic, Splunk, DataDog) Comprehensive experience with AWS (Amazon Web Services) and its core capabilities (VPC, EC2, ECS, Route53, Fargate, ALB/NLB distributions, etc) Extensive experience with cloud automation and infrastructure-as More ❯

Engineer roles 3+ years' experience with an object-oriented language (preferably Java, .NET or C++) Expert+ level Linux administration, scripting, and troubleshooting Demonstratable knowledge of Observability tools (New Relic, Splunk, DataDog) Comprehensive experience with AWS (Amazon Web Services) and its core capabilities (VPC, EC2, ECS, Route53, Fargate, ALB/NLB distributions, etc) Extensive experience with cloud automation and infrastructure-as More ❯