include: Essential Functions, Responsibilities & Duties may include, but are not limited to: Monitor health and performance across on-premises and cloud environments Analyze monitoring data from tools like SolarWinds, Splunk, etc. to detect anomalies Triage alerts based on severity and impact, isolating areas of disruption Initiate incident response procedures and troubleshoot issues across multiple domains Identify root causes through techniques More ❯
management and threat assessments to evaluate and mitigate risks to an IT infrastructure Experience in configuring and maintaining DoD Assured Compliance Assessment Solution (ACAS)/Tenable Nessus Security Center, Splunk, LDAP, and TLS Desired Qualifications: Understanding of OpenStack cloud computing, Kubernetes orchestration, Ansible Automation, and networking concepts and protocols You can express yourself confidently, concisely, and accurately through written and More ❯
in two or more of the following domains: • Network monitoring protocols/methods such as SNMP, NetFlow, and Syslog. • Implementation/Administration of one or more Network Management Systems (Splunk, CA/Broadcom Product Suite, BMC Remedy, IPAM, Infoblox, ownCloud). • Networking principles and systems functionality, with the ability to troubleshoot OSI layers 1-7 throughout a COTS environment. • Linux More ❯
seek out vendor offered (paid) training opportunities like conferences, certification courses and seminars. Conferences (recently attended by Praxis employees): AWS Summit, IoT World, Black Hat and DefCon. Training & Certifications: Splunk, AWS, Big Data/Cloudera, VMWare, Scrum Master the list of certifications goes on and on! Praxis University: Cyber Research, Data Analytics, IoT, AWS and RedHat course offerings and hands More ❯
seek out vendor offered (paid) training opportunities like conferences, certification courses and seminars. Conferences (recently attended by Praxis employees): AWS Summit, IoT World, Black Hat and DefCon. Training & Certifications: Splunk, AWS, Big Data/Cloudera, VMWare, Scrum Master the list of certifications goes on and on! Praxis University: Cyber Research, Data Analytics, IoT, AWS and RedHat course offerings and hands More ❯
seek out vendor offered (paid) training opportunities like conferences, certification courses and seminars. Conferences (recently attended by Praxis employees): AWS Summit, IoT World, Black Hat and DefCon. Training & Certifications: Splunk, AWS, Big Data/Cloudera, VMWare, Scrum Master the list of certifications goes on and on! Praxis University: Cyber Research, Data Analytics, IoT, AWS and RedHat course offerings and hands More ❯
San Diego, California, United States Hybrid / WFH Options
Northrop Grumman
e.g. NSX). Understanding of advanced features like GRE, IPSEC, DMVPN, MPLS, QoS, Multicast. Experience with Cisco Unified Communications/VoIP. Familiar with network management applications, like SolarWinds, SuzieQ, Splunk, and/or Cisco ISE. Familiar with Windows, Linux, VMWare configuration and troubleshooting. Experience with HAIPE/TACLANE encryptors and other military COMSEC/CRYPTO equipment and procedures. Familiar with More ❯
strong technical background in security engineering and federal compliance. Strong understanding of security principles, best practices, frameworks, and techniques. Proficient with security tools and technologies, including SIEM platforms (e.g., Splunk, ArcSight), vulnerability scanners (e.g., Nessus, Qualys), endpoint protection (e.g. ESS, Tellix), and cloud security in AWS, Azure, and hybrid environments. Proficiency in scripting languages (Python, PowerShell, Ansible) for security automation More ❯
initiatives. Knowledge of NIST guidance (SP 800-37, 800-53, 800-161) and JSIG guidance. Hands-on risk assessment experience that incorporates system/mission requirements and operation constraints. Splunk Experience to enhance your threats detection capabilities. Other Requirements: Must have an active Secret clearance with the ability to obtain a Top Secret with SCI eligibility or have an active More ❯
strong technical background in security engineering and federal compliance. Strong understanding of security principles, best practices, frameworks, and techniques. Proficient with security tools and technologies, including SIEM platforms (e.g., Splunk, ArcSight), vulnerability scanners (e.g., Nessus, Qualys), endpoint protection (e.g. ESS, Tellix), and cloud security in AWS, Azure, and hybrid environments. Proficiency in scripting languages (Python, PowerShell, Ansible) for security automation More ❯
initiatives. Knowledge of NIST guidance (SP 800-37, 800-53, 800-161) and JSIG guidance. Hands-on risk assessment experience that incorporates system/mission requirements and operation constraints. Splunk Experience to enhance your threats detection capabilities. Other Requirements: Must have an active Secret clearance with the ability to obtain a Top Secret with SCI eligibility or have an active More ❯
Description SAIC's Horizon 2 contract is seeking an energized and professional Principal Systems Administrator to support the contract's secure operating facilities in Colorado Springs, CO. Your background in configuring, maintaining, and troubleshooting systems in both Windows and Linux More ❯
Evolver Federal is seeking a ServiceNow Cybersecurity Risk Management Analyst experience to support its Federal client in Springfield, VA in building and maintaining workflows and supporting its business processes using ServiceNow and lead the automation of workflows supporting cybersecurity governance More ❯
improvement programs, providing operational management and delivering fully or co-managed SOCs off and on-prem, they continue to offer cutting edge provision within this space. As a Senior SPLUNK Consultant, you will guide enterprise organisations through consultative reviews, ensuring their SIEM and wider technologies are operating as effectively as possible whilst ensuring People and Process are similarly proficient. Main … documentation Assess existing threat monitoring rules with a focus on changing threat landscape and technologies Document appropriate detection, containment and response strategies to meet business needs Pre-requisites: Experienced Splunk Engineer/Splunk Consultant with significant knowledge of Splunk technology Consistent experience from within the cyber security industry Ability to write Splunk Searches Ability to write Splunk TAs for applications … and middleware Experience of Splunk Enterprise Security Strong scripting experience - Python (preferred), Bash, Perl, Shell, VBA Relevant knowledge of other cyber technologies such as firewalls, IDS/IPS or proxies Strong communication and documentation skills Developing SIEM use cases is a strong advantage Further info: Competitive Basic, Bonus and Flex bens Remote working UK. Various office locations To apply: Please More ❯
SCDIT is seeking a skilled SPLUNK Engineer to join our dynamic team. The Splunk engineer is expected to use Splunk software in his/her everyday job for searching, monitoring, and analyzing machine-generated data. Splunk is being used for metrics, diagnosing problems, and pulling data from repositories on our servers from tools such as CASPORT, LATTEART, JIRA, and CONFLUENCE. … This data is being assembled into dashboards. Role Responsibilities: Administer Splunk clusters Upgrade the tool when required API data calls IAVA support CentOS7 to RHEL8 upgrade Moving to AWS Pulling logs for servers Creating dashboards and briefing material using Splunk data Role Requirements: Scripting Experience (python etc.); pulling data from tools via RestAPI 7-10 years of experience. Candidates will … be considered for DevOps and Splunk multi-role if they possess the skills. Required Clearance: Candidate must have a TS/SCI polygraph clearance Pay Range: $202,000-$215,000 SCD Benefits: An established, family-owned and operated company that cares about your continued career growth and happiness. Opportunities for advancement. Work/life balance. 100% company-paid Health, Dental More ❯
Own your career as a Splunk Engineer at GDIT. Here, you'll have the opportunity to build strong lines of cyber defense using cutting-edge technologies. Your work in cyber security at GDIT will have an impact on securing our clients' missions and ensuring we anticipate the threats of tomorrow. At GDIT, people are our differentiator. As a Splunk Engineer … you will help ensure today is safe and tomorrow is smarter. Our work depends on a Splunk Engineer joining our team to provide critical support to the architecture, deployment, and maintenance of Splunk environments that support essential federal clients. The Splunk Engineer will work as part of a diverse, high-octane security team to deploy, test, manage, and maintain Splunk … opportunity to safeguard vital infrastructure and grow your career with a company that values its people as our greatest asset, then this is the role for you! HOW A SPLUNK ENGINEER WILL MAKE AN IMPACT Supports systems integration efforts involving hardware, software, operating system and communications interoperability, and maintenance of the Splunk Environment. Manages distributed deployment architecture, index clusters, and More ❯
Job Title: Splunk Consultant Salary: £55,000 - £70,000 Location: Remote (with travel to client sites at least once per quarter) Security Clearance: Minimum SC required About the Role Networkology is seeking a highly skilled Splunk Consultant to join our growing team. This is an exciting opportunity to work on innovative, mission-critical projects with leading government and private sector … clients. You’ll leverage your expertise in Splunk and cloud technologies to design, implement, and optimise data and security solutions that drive real-world impact. What You'll Do Act as a trusted technical advisor, guiding clients through the delivery of robust data and logging solutions. Engineer and support data pipelines for both operational and security-focused use cases. Engage … structured technical documentation to support delivery and knowledge transfer. Collaborate with cross-functional teams, troubleshooting complex issues and delivering innovative solutions. What We’re Looking For Technical Expertise: Certified Splunk Architect (minimum Splunk Admin certification with strong real-world experience considered) Demonstrated experience delivering data use-case solutions Exposure to engineering security use-cases (desirable) Proficient in AWS services with More ❯
MUST HAVE SECRET CLEARANCE on location in Doral, FL Job Title: Splunk UBA Engineer We are seeking an experienced and analytical Splunk UBA Engineer to implement, optimize, and maintain our User Behavior Analytics (UBA) platform. In this role, you will use behavioral modeling and machine learning capabilities in Splunk UBA to identify insider threats, compromised accounts, data exfiltration, and other … work closely with SOC analysts, engineers, and data owners to turn user activity data into actionable intelligence and risk-based threat detections. Key Responsibilities • Deploy, configure, and maintain the Splunk UBA platform, including data ingestion, normalization, and threat model tuning. • Deploy UBA cluster designing the build • Ingest and map logs from various sources (e.g., Active Directory, VPN, firewalls, proxy, endpoint … risk scoring, notable events, and incident response workflows. • Build and maintain dashboards, entity timelines, and investigative tools within UBA to support threat hunting and investigations. • Integrate UBA output with Splunk Enterprise Security (ES) or SOAR platforms for automated response and triage. • Continuously evaluate new data sources, use cases, and detection strategies to enhance UBA capabilities. • Document procedures, configurations, and threat More ❯
Splunk Developer (Threat Detection Consultant) - Brussels/London/Paris/Amsterdam - Banking Client Duration: 1 year Rate: 500 - 800 per day Hybrid: 2 days onsite per week (London, Paris, Brussels or Amsterdam) Role: Interact with the different customers to capture and define requirements for the development and testing of the threat detection capabilities Cooperate with log source onboarding team … to assure correct log source onboarding and log mapping to data models according to Splunk standard processes The development and tuning and continuous improvement of correlation rules Develop and maintain dashboards, reports, and alerts Create Splunk Knowledge Objects to address customers needs in context of using Splunk as security tool Prepare correlation search tests, conduct tests, and document evidence from … making sure we have a healthy balance between defect resolution and new features Qualifications: Technical Skills: In depth experience in development and maintenance of SIEM use cases Fluent in Splunk's search processing language (SPL) Excellent knowledge of Splunk Enterprise and Splunk Enterprise Security Sound knowledge about Splunk Common Information Model and log normalization using Data Models Solid understanding of More ❯
IT architecture. Offers a wide range of roles, from cybersecurity experts to engineers specializing in systems, networks, software, and data center services. About The Role Peraton is seeking a Splunk Architect to provide design, deployment, and configuration of Splunk in both on-premises and cloud environments. The Splunk Architect/Engineer subject matter expert (SME) will have the following responsibilities … Provide Splunk support for design, architecture, development, unit test, deployment, installation, configuration, integration, operation, and maintenance Experience in the design and upgrade of Splunk in the cloud and on-premise environments to include architecting search head, indexer, universal forwarder, and heavy forwarder instances needed to service the expanding enterprise demand expected on the Splunk System as cross organizational use cases … emerge Drive complex security focused Splunk deployments, including architecting, implementing, and integrating with a current or planned customer security and monitoring strategy to include advanced products like Enterprise Security Build Splunk dashboards that take inputs from various data sources such as application logs, operating system logs, middleware logs, network feeds, etc. Utilize Splunk to develop data requirements, data catalog(s More ❯
Senior Splunk Engineer needed for an opportunity with SOC's client to work in Herndon, Virginia. Active Top Secret/SCI Clearance with CI Polygraph is Required! Responsibilities Have an initial understanding of the most effective and efficient process to get things done with a focus on continuous improvement. Begin to develop the ability to make sense of complex information …/SCI with a full-scope poly required. Experience operating in classified environments. Bachelor's degree in a related area or at least 4 years of related work experience. Splunk industry certifications. Strong background with Splunk Enterprise and Splunk Enterprise Security. Understanding of identity, SIEM, cybersecurity, and infrastructure concepts. Understanding of governance and compliance, specifically with FAR, DFARs, CUI and More ❯
secure. Program Overview Provides IC data management support to modernize mega data repositories, dataflow management, data provenance and compliance validation, and streaming solutions. About The Role Position: SRE/Splunk Administrator Location: Annapolis Junction, MD Business Unit: Cyber Mission, Peraton Peraton is seeking a talented Site Reliability Engineer (SRE)/Splunk Administrator to support a high-impact, mission-critical program … our Cyber Mission Business Unit. This role is based in Annapolis Junction, MD, and plays a key part in maintaining, modernizing, and scaling enterprise-grade cybersecurity infrastructure. As a Splunk Administrator, you will take ownership of the stability, performance, and evolution of a large-scale Splunk environment that directly supports national security operations. What You'll Do: Administer and maintain … the existing Splunk infrastructure, ensuring availability, performance, and reliability across the enterprise. Support and optimize Splunk Enterprise Security (ES) capabilities to meet mission-critical cybersecurity needs. Apply patches, perform upgrades, and maintain system integrity and security compliance. Troubleshoot complex system and log issues and collaborate effectively across government and contractor teams in a high-visibility environment. Oversee full-stack SplunkMore ❯
transforming industries through cutting-edge digital solutions and next-generation AI. We empower businesses-and their customers-to achieve more through innovation, automation, and intelligent insights. The Role Presidio Splunk Engineers serve as a technical expert supporting military and federal customers in the nearby Fayetteville, NC area. You will be responsible for architecting, deploying, and configuring Splunk products within classified … environments, ensuring compliance with DoD security requirements and RMF guidelines. Your background in System Administration, Security, and Consulting, combined with hands-on Splunk experience and required security clearance, will be essential for supporting mission-critical operations. Responsibilities include: • Splunk Technical Capability o Deliver Splunk engineering solutions in on-prem and Cloud instances o Understand and execute on the promise of … Splunk within the customer's environment o Technical expert in at least one premium application within Splunk such as ITSI or ES (Enterprise Security) • Delivery Engineering o Serve as the Splunk expert on projects exceeding quality delivery standards o Become a Trusted Advisor to internal teams and external customers o Perform timely documentation for all work completed • Mission Support o More ❯