Splunk SME

Job Requirements Seal Beach, CA Reston, VA Cape Canaveral, FL Top Secret/SCI Polygraph not specified Senior Level Career (10+ yrs experience) Salary not specified Join Premium to unlock estimated salaries Job Description As a Cybersecurity Engineer / Splunk SME, this candidate is stepping into a mission‑critical, high‑impact role supporting a major federal customer. 1. Extreme Mission Impact The engineer directly safeguards national‑level infrastructure by designing and maintaining the Splunk SIEM ecosystem that protects sensitive federal systems and high‑value assets. This role is a cornerstone in ensuring cyber readiness, resilience, and uninterrupted mission operations. 2. Work on Complex, Large‑Scale, High‑Visibility Systems The environment includes advanced Splunk clusters, indexers, search heads, and enterprise ingestion pipelines — the kind of system complexity that appeals to senior engineers seeking impactful technical challenges. This is not "keeping the lights on." It's architecting the backbone of the customer's security intelligence. 3. Senior Leadership Influence As a highly‑senior SME (10-20+ years), the candidate becomes the technical authority for all Splunk‑related decisions, designs, and escalations. They directly influence strategy, architecture, and cybersecurity posture at the enterprise level. 4. Elite Clearance & Certification Environment The role requires IAT‑III, placing the engineer among the highest‑certified cyber professionals in the DoD/IC ecosystem — a career‑defining differentiator. The environment and responsibilities align with top‑tier federal cyber career paths. Description Core Responsibilities 1. Architect, Implement & Maintain Splunk Environments Design, implement, and maintain enterprise Splunk infrastructures.

Manage Splunk:

• Clusters
• Indexers
• Search heads
• Forwarders
• Data ingestion pipelines
• Ensure Splunk architecture meets performance, scalability, and high‑availability requirements. 2. Security Engineering & Compliance. Ensure Splunk configuration and handling of log data comply with:
• Organizational standards
• Industry regulation
• DoD security requirements
• Role‑based access control (RBAC)
• Implement advanced Splunk security controls and hardening best practices. 3. Monitoring & Troubleshooting
• Continuously monitor the health of the Splunk environment.

Identify and resolve:

Performance issues Indexing backlogs Search performance bottlenecks System availability risk 4. SME‑Level Leadership Serve as the senior cybersecurity/Splunk authority for the program. Mentor teams, guide Splunk best practices, and support engineering escalations. Interact with senior leadership and cross‑functional teams to align Splunk strategy with organizational cyber goals. Top Skills Details

MUST HAVE TS/SCI 1.

Minimum 10 years cybersecurity/SIEM engineering experience. Extensive background with

Splunk Enterprise:

• ES, ITSI, UBA, searches, dashboarding, tuning 2.

Deep knowledge of:

• Security operations
• Incident response
• Log parsing and normalization
• Role‑based access control
• High‑availability Splunk design 3.

Must have IAT‑III certification. Additional Skills & Qualifications Experience supporting DoD or other cleared federal environments.

Background integrating Splunk with:

• Cloud platforms
• Security automation
• External intelligence feeds This is a highly senior role requiring: 10+ years minimum, ideally 15-20+ years of cybersecurity/Splunk engineering experience.

Experience Level Expert Level group id: 10105424 N Name Hidden Technical Recruiter Apply now