Senior Splunk Cybersecurity Engineer – Architect/SME
Dragonfli Group
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptLinuxPythonSplunkSQLUnix
Cybersecurity Engineer – Splunk SME
Dragonfli Group
full-time
Posted on:
Origin: • 🇺🇸 United States
Visit company websiteJob Level
Mid-LevelSenior
Tech Stack
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptLinuxPythonSplunkSQLUnix
About the role
- Drive visibility, automation, and security intelligence across one of the largest federal data environments
- Design and engineer national-scale Splunk infrastructure for mission-critical operations
- Architect and maintain enterprise-grade Splunk environments across on-prem and cloud platforms
- Create and manage knowledge objects, complex SPL queries, alerts, and dynamic dashboards
- Design and implement scalable data ingestion pipelines and parsing logic
- Collaborate with DevOps, Security, and Infrastructure teams to ensure optimal system performance
- Develop automation workflows and UI interfaces to enhance operational efficiency
- Troubleshoot data latency, availability, and integration challenges
- Support system maintenance, version upgrades, and environment hardening
- Contribute to technical mentorship and process documentation
Requirements
- 5+ Years of Splunk Experience Required
- Manages knowledge objects (fields, extractions, tags, event types, lookups, workflow actions, aliases, macros, etc.) including .conf and .cfg files across recent Splunk Enterprise versions
- Experience with Splunk deployment and configuration management in large-scale environments
- Proficiency in complex SPL queries, dashboards, and alerts
- Experience with REST APIs for Splunk and external system integration
- Ability to analyze and troubleshoot complex data ingestion and parsing issues
- Designing and developing automations workflows and dashboard interfaces
- Self-starter with a service-oriented, consulting mindset
- Strong problem-solving and communication skills; ability to convey complex technical concepts to non-technical audiences
- Experience mentoring junior team members
- Preferred: leverage Splunk AI Assistant and other AI tools
- Preferred: Advanced Unix/Linux and/or Windows administration
- Preferred: Strong scripting (Bash, Python, JavaScript, SQL, PowerShell)
- Preferred: Experience with Splunk upgrades, patching, and performance tuning
- Preferred: Cloud integration experience (AWS, GCP, Azure)
- Preferred: Understanding security/compliance (RBAC, logging standards, NIST, FISMA, FedRAMP)
- Preferred: Experience with Splunk App for Data Science & Deep Learning and Splunk SOAR
- Preferred: Background in Cybersecurity, Systems/Network Administration, or Observability
Similar jobs on JobTailor
Splunk Cyber Security Architect/Engineer
General Dynamics Information Technology
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptLinuxPythonSplunkSQLUnix
PAM Engineer, Identity and Access Management
Fisher Investments
AWSAzureCloudCyber SecurityGoogle Cloud PlatformJavaScriptPython
Senior Security Operations Manager
Pure Storage
AssemblyAWSAzureCloudCyber SecurityGoogle Cloud PlatformLinuxMacOSPythonSplunk
Staff Cyber Security Engineer - GRC Automation (REMOTE)
GEICO
AWSAzureCloudCyber SecurityDistributed SystemsDockerGoogle Cloud PlatformJavaJavaScriptKubernetesNoSQLPython+2 more