Dragonfli Group

Senior Splunk Engineer

Dragonfli Group

full-time

Posted on:

Location Type: Remote

Location: District of ColumbiaUnited States

Visit company website

Explore more

AI Apply
Apply

Job Level

Senior

Tech Stack

AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptLinuxPythonSplunkSQLUnix

About the role

  • Design, deploy, and maintain large-scale on-premises and cloud-based Splunk environments to support enterprise monitoring and security alerting.
  • Manage knowledge objects (fields, extractions, tags, event types, lookups, macros) and oversee configuration files (.conf and .cfg) across recent Splunk Enterprise versions.
  • Analyze and resolve complex data ingestion and parsing issues to ensure accurate data flow and integrity.
  • Create and optimize complex Splunk queries (SPL), dashboards, and alerts to support security and operational objectives.
  • Develop automation workflows and dashboard interfaces to streamline operations and reduce manual overhead.
  • Utilize REST APIs to integrate Splunk with external systems and cloud platforms.
  • Collaborate with cross-functional teams (DevOps, Security) and provide mentorship and technical guidance to junior team members.
  • Perform upgrades, patching, and performance tuning; participate in off-hours and weekend maintenance efforts as required.

Requirements

  • 5+ years of hands-on experience with Splunk Enterprise in a large-scale environment.
  • Proficiency in Splunk system architecture, deployment, and configuration management.
  • Advanced ability to write complex queries for dashboards, alerts, and reporting.
  • Strong capability in troubleshooting data ingestion, parsing, and onboarding logs.
  • Experience using REST APIs for Splunk and third-party system integrations.
  • Strong problem-solving abilities, service-oriented mindset, and the ability to articulate technical concepts to non-technical audiences.
  • Advanced administration and troubleshooting skills in Unix/Linux and Windows environments.
  • Strong scripting skills in Bash, Python, JavaScript, SQL, or PowerShell for automation tasks.
  • Experience integrating Splunk with AWS, GCP, or Azure.
  • Understanding of NIST, FISMA, and FedRAMP controls, as well as role-based access control (RBAC) implementation.
  • Experience with the Splunk App for Data Science/Deep Learning, Splunk SOAR, or Splunk AI Assistant.
  • Previous experience in Cybersecurity, Network Administration, or Observability industries.
Benefits
  • Insurance - health, dental, and vision
  • Paid Time Off (PTO) and 11 Federal Holidays
  • 401(k) employer match
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
Splunk EnterpriseSPLREST APIsUnixLinuxWindowsBashPythonJavaScriptSQL
Soft Skills
problem-solvingservice-oriented mindsettechnical communicationmentorshipcollaboration