Splunk Systems Engineer, Senior
Annapolis Junction, MD
Full Time
Systems Engineering
Experienced
What you will be doing!
As a Splunk Engineer, you will lead the administration, maintenance, and optimization of Splunk Enterprise and ITSI platforms in a global enterprise environment. You’ll manage data ingestion, system health monitoring, and dashboard/report development while supporting cybersecurity and operational teams. Your role will involve deploying and configuring Splunk infrastructure components, onboarding new data sources, and collaborating directly with stakeholders to solve complex problems through tailored Splunk solutions.
Key Responsibilities:
Clearance Requirement:
Independent Software is an Equal Opportunity Employer EOE, M/F/D/V.
As a Splunk Engineer, you will lead the administration, maintenance, and optimization of Splunk Enterprise and ITSI platforms in a global enterprise environment. You’ll manage data ingestion, system health monitoring, and dashboard/report development while supporting cybersecurity and operational teams. Your role will involve deploying and configuring Splunk infrastructure components, onboarding new data sources, and collaborating directly with stakeholders to solve complex problems through tailored Splunk solutions.
Key Responsibilities:
- Administer and maintain the full Splunk stack including Indexers, Forwarders, Deployment Servers, and Search Heads.
- Ensure Splunk infrastructure integrates properly with PKI-based authentication, SSL/TLS, corporate identity services, and firewalls.
- Monitor and maintain Splunk system health and performance; troubleshoot and resolve ingestion issues and infrastructure problems.
- Onboard and normalize new data sources for operational and security monitoring.
- Design, implement, and optimize dashboards, alerts, and visualizations to support cybersecurity, operations, and compliance teams.
- Support vulnerability management efforts by integrating data from tools such as Trellix ePO, NESSUS, and SCAP.
- Collaborate with security teams to analyze network, host, and firewall logs using Splunk queries and visualizations.
- Assist with the installation, testing, and deployment of hotfixes and patches to maintain system security and stability.
- Document technical processes, develop SOPs, and create knowledge articles for Tier 2/3 support teams and system administrators.
- Manage Splunk authentication and access control including Role-Based and Attribute-Based Access Controls (RBAC/ABAC), LDAP/AD integration, and HEC token management.
- Participate in an on-call rotation and provide after-hours support as needed.
- Strong experience managing and supporting enterprise-level Splunk deployments, including Splunk ITSI.
- Proven ability to implement and manage Splunk Apps and technical add-ons in complex environments.
- Familiarity with scripting (Python, Shell, JavaScript, HTML/CSS) for automation and dashboard enhancement.
- Experience working within RMF frameworks and utilizing vulnerability scanning tools.
- Experience with ServiceNow or other enterprise ticketing systems.
- Demonstrated ability to support authentication integration and access control within Splunk
- High school diploma or equivalent with 25 years of relevant experience
- OR a Bachelor’s degree with 20 years of relevant experience
- Must meet IAT Level II certification requirements (e.g., Security+ CE)
Clearance Requirement:
- Must possess an active TS/SCI with Polygraph security clearance to be considered for this role.
Independent Software is an Equal Opportunity Employer EOE, M/F/D/V.
Apply for this position
Required*