Splunk Engineer
Chantilly, Virginia
Job Id:
160328
Job Category:
Job Location:
Chantilly, Virginia
Security Clearance:
Counterintelligence Scope (CI / CI Poly)
Business Unit:
Zachary Piper
Division:
Zachary Piper Solutions
Position Owner:
Cameron Bagwell
*Candidates must possess an active TS/SCI clearance for consideration - will obtain CI Poly*
Zachary Piper Solutions is currently seeking a Splunk Cybersecurity Engineer (Senior) to support a mission‑critical program based in Chantilly, VA. This position is a full‑time, onsite role supporting a high‑visibility customer environment. This role is essential in safeguarding enterprise systems, ensuring robust data ingestion, monitoring, detection, and defense capabilities across a large‑scale Splunk deployment. As a Senior Cyber Security Engineer specializing in Splunk, you will play a pivotal role in engineering, administering, and optimizing the enterprise SIEM while directly contributing to cyber defense operations.
Responsibilities:
- Manage day‑to‑day operations of large enterprise Splunk deployments.
- Troubleshoot data collection issues and resolve system conditions impacting stability or data integrity.
- Deploy and maintain both supported and unsupported Splunk add‑ons.
- Execute Splunk Enterprise upgrades, patches, and maintenance actions.
- Configure and deploy Splunk forwarders using centralized deployment tools.
- Maintain and tune Splunk Enterprise Security (ES) content, performance, and correlation logic.
- Manage knowledge objects, data models, dashboards, alerts, saved searches, and operational content.
- Support API integrations, external ingest feeds, and cross‑platform system connectivity.
- Develop and maintain system architecture diagrams and detailed engineering documentation.
- Enforce role‑based access controls and operational security policies across the environment.
- Collaborate with cyber analysts, engineers, and mission partners to enhance detection and response capabilities.
- Apply relevant security policies, standards, and technical guidelines to ensure enterprise compliance.
Requirements:
- Bachelor’s degree (or 4+ additional years of cybersecurity experience in lieu of degree).
- 5+ years of experience in enterprise or cybersecurity‑focused environments.
- Demonstrated Splunk administration/engineering experience.
- Hands‑on Splunk ES configuration, tuning, and content management experience.
- Proficiency with Unix and Windows operating environments.
- DoD 8570 IAT Level II certification (Security+, CCNA‑Security, GSEC, etc.).
- Active TS/SCI with CI Polygraph required.
Preferred Qualifications:
- Splunk certifications: Architect, Consultant I/II, Admin, Power User, or equivalent.
- Experience with scripting languages (Python, Bash, Java, Perl, .NET).
- Familiarity developing/maintaining operational and security use cases in Splunk.
Compensation and Benefits:
- $140,000 - $155,000 depending on years of experience -
- Health, dental, and vision insurance. 401K, PTO, Paid Holidays, Sick Leave as required by Law
#LI-CB1
#LI-ONSITE
Keywords: Splunk, Splunk Enterprise Security, Cybersecurity, Incident Response, SIEM, Data Models, Log Analysis, Threat Hunting, Network Forensics, Security Engineering, Scripting, Unix, Windows, API Integration, PCAP, IDS/IPS, Network Security, Threat Intelligence, Compliance, RBAC, Enterprise Security Operations, Security Architecture