experience developing and integrating systems and applications using the following listed technologies: XML SOAP/REST, JSON, Niagra Files (NiFi) o Elastic Search/Log Stash/Kibana (ELK), Splunk, Java, Java Script, Python, Perl, IBM Sterling Connect Direct, Microsoft Power Shell scripting, KShell, BASH, etc. Requirements: - Seven (7) years of increasing knowledge, skills, and abilities in the development, deployment More ❯
Burke, Virginia, United States Hybrid / WFH Options
ALTA IT Services
Gov, etc.). • Experience working in government-regulated environments with an understanding of cybersecurity frameworks. Preferred Qualifications: • LiveAction product certifications (e.g., LiveAction Certified Professional). • Experience integrating LiveAction with Splunk, Elastic, or other SIEMs. • Familiarity with packet-level analysis tools like Wireshark or Riverbed. • Experience with scripting and automation (Python, Ansible, PowerShell). • Prior experience supporting agencies such as DoD More ❯
as AWS, Microsoft Azure, or other cloud platforms. Basic understanding of DevOps tools and platforms such as GitLab, Jenkins, Terraform, and Ansible. Familiarity with monitoring and logging tools like Splunk to identify and escalate system or application-level anomalies. Ability to understand and communicate technical issues to both technical and non-technical users. Strong written and verbal communication skills, with More ❯
/KLM for mobile Device Management is a plus. A working knowledge or experience with systems and security tools such as: ACAS (Nessus), Veeam, IQ-Core, Stratodesk, Trellix ePO, Splunk, and IIS Web Servers is a plus. Knowledge of Automating of server deployments, processes, provisioning is a plus. PHYSICAL DEMANDS: The physical demands described here are representative of those that More ❯
complex systems to diverse stakeholders. IAT Level II certification (Security+ or equivalent) AWS Certified Security Specialty SCS-C02 Preferred Qualifications Experience in the Intelligence Community (IC) or classified environments. Splunk Enterprise Certified Admin Familiarity with infrastructure as code tools (e.g., Terraform, Ansible). Experience implementing zero trust architectures or secure enclave strategies. Additional Skills & Qualifications Would need to be able More ❯
or other CI tools; Maven, Gradle or other build tools; Ansible or other IT Automation/software provisioning tools; JIRA, Confluence; * Experience in monitoring/reporting tools such as Splunk, Grafana/Prometheus etc * Experience in Agile practices * Working knowledge of environment monitoring tools such as GCO, NewRelic, Prometheus, Grafana. * Collaboration Skills: Proactive can-do attitude; A creative approach towards More ❯
or other CI tools; Maven, Gradle or other build tools; Ansible or other IT Automation/software provisioning tools; JIRA, Confluence; * Experience in monitoring/reporting tools such as Splunk, Grafana/Prometheus etc * Experience in Agile practices * Working knowledge of environment monitoring tools such as GCO, NewRelic, Prometheus, Grafana. * Collaboration Skills: Proactive can-do attitude; A creative approach towards More ❯
Huntsville, Alabama, United States Hybrid / WFH Options
Gridiron IT Solutions
levels. Work under direct supervision. Qualifications 8+ years of experience in cybersecurity Experience with Windows, Apple OSX, and Linux operating systems operations and artifacts Experience with SIEM technologies, including Splunk, Microsoft Sentinel, or Elastic Experience with forensics tools, including Magnet Axiom and FTK Experience performing forensic imaging, remote collection, and forensic analysis Experience with malware analysis, including static, dynamic, and More ❯
installs. Stand out with - Bachelor's degree in a technical discipline from an accredited college or university. - Experience documenting and providing information for security accreditation and certification. - Experience using Splunk tools in infrastructure planning, data collection and comprehension, development, integration, configuring data inputs and forwarders, data management, and/or monitoring. - Experience with Network Security Technologies such as Multiple Domain More ❯
/Unix systems administration combined with strong SQL skills and proficiency in scripting languages such as Python or Java.* Demonstrated experience with monitoring and observability tools including Prometheus, Grafana, Splunk, Geneos, OpenTelemetry or Corvil is highly desirable.* Familiarity with cloud platforms as well as containerisation technologies like Kubernetes or Docker alongside CI/CD pipeline management is important for this More ❯
Working knowledge of containerisation and orchestration tools such as Docker and Kubernetes, ideally running on Azure (AKS). Experience integrating and configuring various logging, monitoring, and alerting tools (e.g. Splunk, New Relic) that provide operational insight into the health of live applications and systems. Experience in applying a range of cloud security tools and techniques (e.g. threat modelling, vulnerability scanning More ❯
Oracle SQL, Mongo, Postgres o Know your way around Linux and Windows command lines, e.g. Bash and PowerShell o Monitoring large systems using technologies such as Grafana, Prometheus, ELK, Splunk o Experience of working in Agile teams, and the tooling that supports it, e.g. Atlassian o Diagnosing and troubleshooting application issues resulting in service outages o Troubleshooting skills across different More ❯
in two or more of the following domains: • Network monitoring protocols/methods such as SNMP, NetFlow, and Syslog. • Implementation/Administration of one or more Network Management Systems (Splunk, CA/Broadcom Product Suite, BMC Remedy, IPAM, Infoblox, ownCloud). • Networking principles and systems functionality, with the ability to troubleshoot OSI layers 1-7 throughout a COTS environment. • Linux More ❯
Shell or other Shell scripting languages. Demonstrated experience facilitating and coordinating between program stakeholders. Demonstrated experience managing infrastructure engineering and operations and maintenance projects. Demonstrated experience monitoring applications using Splunk and Check_MK and SolarWinds. Demonstrated experience performing complex systems development such as design, implementation, and administration for VMWare based virtualization systems including Hypervisor deployments and Configuration and management of More ❯
Boston, Massachusetts, United States Hybrid / WFH Options
Digital Prospectors
Position: Cyber Protection Specialist Location: Greater Boston, MA (Mostly Remote, must reside within 2 hours driving distance) Length: 3+ years W2 Candidates Only, No C2C, USC Job Description: Our client is seeking a highly skilled Cyber Protection Specialist to join More ❯
improvement programs, providing operational management and delivering fully or co-managed SOCs off and on-prem, they continue to offer cutting edge provision within this space. As a Senior SPLUNK Consultant, you will guide enterprise organisations through consultative reviews, ensuring their SIEM and wider technologies are operating as effectively as possible whilst ensuring People and Process are similarly proficient. Main … documentation Assess existing threat monitoring rules with a focus on changing threat landscape and technologies Document appropriate detection, containment and response strategies to meet business needs Pre-requisites: Experienced Splunk Engineer/Splunk Consultant with significant knowledge of Splunk technology Consistent experience from within the cyber security industry Ability to write Splunk Searches Ability to write Splunk TAs for applications … and middleware Experience of Splunk Enterprise Security Strong scripting experience - Python (preferred), Bash, Perl, Shell, VBA Relevant knowledge of other cyber technologies such as firewalls, IDS/IPS or proxies Strong communication and documentation skills Developing SIEM use cases is a strong advantage Further info: Competitive Basic, Bonus and Flex bens Remote working UK. Various office locations To apply: Please More ❯
SCDIT is seeking a skilled SPLUNK Engineer to join our dynamic team. The Splunk engineer is expected to use Splunk software in his/her everyday job for searching, monitoring, and analyzing machine-generated data. Splunk is being used for metrics, diagnosing problems, and pulling data from repositories on our servers from tools such as CASPORT, LATTEART, JIRA, and CONFLUENCE. … This data is being assembled into dashboards. Role Responsibilities: Administer Splunk clusters Upgrade the tool when required API data calls IAVA support CentOS7 to RHEL8 upgrade Moving to AWS Pulling logs for servers Creating dashboards and briefing material using Splunk data Role Requirements: Scripting Experience (python etc.); pulling data from tools via RestAPI 7-10 years of experience. Candidates will … be considered for DevOps and Splunk multi-role if they possess the skills. Required Clearance: Candidate must have a TS/SCI polygraph clearance Pay Range: $202,000-$215,000 SCD Benefits: An established, family-owned and operated company that cares about your continued career growth and happiness. Opportunities for advancement. Work/life balance. 100% company-paid Health, Dental More ❯
Are you an experienced Splunk Engineer ready to make a real impact in cybersecurity? Join a leading European technology company specializing in consulting, digital services, and software development, with a presence in nearly 30 countries and a team of over 51,000 professionals. This is your opportunity to take ownership of critical security tooling that protects national infrastructure. You'll … tools. Develop and maintain security strategies in line with business objectives. Innovate and apply technical solutions to meet client requirements and security challenges. Skills/Must have: Expertise in Splunk; ideally Splunk Cloud Certified Admin or Splunk Enterprise Certified Admin (strong experience considered if certification is not held). Demonstrated success leading Security Engineering teams and managing large client bases. More ❯
MUST HAVE SECRET CLEARANCE on location in Doral, FL Job Title: Splunk UBA Engineer We are seeking an experienced and analytical Splunk UBA Engineer to implement, optimize, and maintain our User Behavior Analytics (UBA) platform. In this role, you will use behavioral modeling and machine learning capabilities in Splunk UBA to identify insider threats, compromised accounts, data exfiltration, and other … work closely with SOC analysts, engineers, and data owners to turn user activity data into actionable intelligence and risk-based threat detections. Key Responsibilities • Deploy, configure, and maintain the Splunk UBA platform, including data ingestion, normalization, and threat model tuning. • Deploy UBA cluster designing the build • Ingest and map logs from various sources (e.g., Active Directory, VPN, firewalls, proxy, endpoint … risk scoring, notable events, and incident response workflows. • Build and maintain dashboards, entity timelines, and investigative tools within UBA to support threat hunting and investigations. • Integrate UBA output with Splunk Enterprise Security (ES) or SOAR platforms for automated response and triage. • Continuously evaluate new data sources, use cases, and detection strategies to enhance UBA capabilities. • Document procedures, configurations, and threat More ❯
JOB DESCRIPTION: Insight Global is seeking a Top Secret Cleared Splunk Developer to join a federal client of ours in the Charleston, SC area. This individual will join a team of about 5 others, supporting a local Navy Program with compute and defense by improving cyber posture and security of operations centers and naval vessels. This individual will work to … architect a new Splunk dashboard solution. They will mostly work with Log and System Data specifically. They will overall be building and analyzing the security posture of systems. Mostly working in a Windows environment. There will also be some need for scripting using Pythong/Bash. REQUIRED SKILLS AND EXPERIENCE: - Active Top Secret Clearance - Experience with Qlik, PowerBi, Tableau or More ❯
Splunk Developer (Threat Detection Consultant) - Brussels/London/Paris/Amsterdam - Banking Client Duration: 1 year Rate: 500 - 800 per day Hybrid: 2 days onsite per week (London, Paris, Brussels or Amsterdam) Role: Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities Cooperate with log source onboarding team … to assure correct log source onboarding and log mapping to data models according to Splunk standard processes The development and tuning and continuous improvement of correlation rules Develop and maintain dashboards, reports, and alerts Create Splunk Knowledge Objects to address customers needs in context of using Splunk as security tool Prepare correlation search tests, conduct tests, and document evidence from … making sure we have a healthy balance between defect resolution and new features Qualifications: Technical Skills: In depth experience in development and maintenance of SIEM use cases Fluent in Splunk's search processing language (SPL) Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security Sound knowledge about Splunk Common Information Model and log normalization using Data Models Solid understanding of More ❯
transforming industries through cutting-edge digital solutions and next-generation AI. We empower businesses-and their customers-to achieve more through innovation, automation, and intelligent insights. The Role Presidio Splunk Engineers serve as a technical expert supporting military and federal customers in the nearby Fayetteville, NC area. You will be responsible for architecting, deploying, and configuring Splunk products within classified … environments, ensuring compliance with DoD security requirements and RMF guidelines. Your background in System Administration, Security, and Consulting, combined with hands-on Splunk experience and required security clearance, will be essential for supporting mission-critical operations. Responsibilities include: • Splunk Technical Capability o Deliver Splunk engineering solutions in on-prem and Cloud instances o Understand and execute on the promise of … Splunk within the customer's environment o Technical expert in at least one premium application within Splunk such as ITSI or ES (Enterprise Security) • Delivery Engineering o Serve as the Splunk expert on projects exceeding quality delivery standards o Become a Trusted Advisor to internal teams and external customers o Perform timely documentation for all work completed • Mission Support o More ❯
Job Title: Splunk Engineer Location: Herndon, VA (CI Poly or FS Poly), Ft. Meade, MD (FS Poly), McLean, VA (FS Poly) End Customer: Intel community Program Name & Supporting Details: Could not disclose Budget Approved/Fully Funded: Yes # of Positions: 4 Reason for opening: New position Note: Prefers FS Poly, but if they are hands-on with ITSI (and …/SCI with a full-scope poly required. Experience operating in classified environments. Bachelor's degree in a related area or at least 4 years of related work experience. Splunk industry certifications. Strong background with Splunk Enterprise and Splunk Enterprise Security. Understanding of identity, SIEM, cybersecurity, and infrastructure concepts. Understanding of governance and compliance, specifically with FAR, DFARs, CUI and More ❯
Cybersecurity, or related discipline, or equivalent hands-on experience. 2-5 years of experience in security operations or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python , PowerShell , or Bash . Experience with REST … critical thinking, and communication skills. Desirable Qualifications Experience with CI/CD for playbook development and version control (e.g., Git). Familiarity with other SOC tools (e.g., ServiceNow, Jira, Splunk, Elastic, SentinelOne). Security certifications such as: SOAR-specific certifications (e.g., Cortex XSOAR Certified Engineer) CrowdStrike Certified Falcon Responder Google Cybersecurity Certificate General security certs (e.g., CySA+, GCIH, CISSP More ❯
