Dragonfli Group
CyberSecurity as a Solution: Enabling Secure Business.
Senior Splunk Engineer
Location
District of Columbia
Posted
41 days ago
Salary
Not specified
Bachelor Degree5 yrs expEnglishAWSAzureCloudCyber SecurityGoogle Cloud PlatformJava ScriptLinuxPythonSplunkSQLUnix
Job Description
• Design, deploy, and maintain large-scale on-premises and cloud-based Splunk environments to support enterprise monitoring and security alerting.
• Manage knowledge objects (fields, extractions, tags, event types, lookups, macros) and oversee configuration files (.conf and .cfg) across recent Splunk Enterprise versions.
• Analyze and resolve complex data ingestion and parsing issues to ensure accurate data flow and integrity.
• Create and optimize complex Splunk queries (SPL), dashboards, and alerts to support security and operational objectives.
• Develop automation workflows and dashboard interfaces to streamline operations and reduce manual overhead.
• Utilize REST APIs to integrate Splunk with external systems and cloud platforms.
• Collaborate with cross-functional teams (DevOps, Security) and provide mentorship and technical guidance to junior team members.
• Perform upgrades, patching, and performance tuning; participate in off-hours and weekend maintenance efforts as required.
Job Requirements
- 5+ years of hands-on experience with Splunk Enterprise in a large-scale environment.
- Proficiency in Splunk system architecture, deployment, and configuration management.
- Advanced ability to write complex queries for dashboards, alerts, and reporting.
- Strong capability in troubleshooting data ingestion, parsing, and onboarding logs.
- Experience using REST APIs for Splunk and third-party system integrations.
- Strong problem-solving abilities, service-oriented mindset, and the ability to articulate technical concepts to non-technical audiences.
- Advanced administration and troubleshooting skills in Unix/Linux and Windows environments.
- Strong scripting skills in Bash, Python, JavaScript, SQL, or PowerShell for automation tasks.
- Experience integrating Splunk with AWS, GCP, or Azure.
- Understanding of NIST, FISMA, and FedRAMP controls, as well as role-based access control (RBAC) implementation.
- Experience with the Splunk App for Data Science/Deep Learning, Splunk SOAR, or Splunk AI Assistant.
- Previous experience in Cybersecurity, Network Administration, or Observability industries.
Benefits
- Insurance - health, dental, and vision
- Paid Time Off (PTO) and 11 Federal Holidays
- 401(k) employer match
Related Guides
Related Categories
Related Job Pages
More Engineer Jobs
Engineer41 days ago
Full TimeRemoteTeam 201-500
Principal Distribution Engineer providing technical leadership for electric utility projects.
Arizona
Senior Identity & Access Management Engineer
LimeBuilding a future where transportation is shared, affordable and carbon-free. Join us! www.li.me/careers
Engineer42 days ago
Full TimeRemoteTeam 501-1,000Since 2017H1B Sponsor
Senior Identity & Access Management Engineer at Lime enhancing IAM systems
Python
Success Engineer
Future U PodcastJeff Selingo and Michael Horn discuss what’s next for higher ed and talk with the newsmakers you want to hear from most.
Engineer42 days ago
Full TimeRemoteTeam 1-10H1B No Sponsor
Success Engineer bridging higher education customers with engineering teams
JavaScriptPythonSQL
United States
Forward Deployed Engineer
PreludeKnow with certainty that your defenses will protect you against the latest threats.
Engineer42 days ago
Full TimeRemoteTeam 11-50H1B Sponsor
Forward Deployed Engineer acting as a bridge between technology and customers
MacOSPythonReactRustTypeScript
