Today
Public Trust
Senior Level Career (10+ yrs experience)
$190,000
No Traveling
Security
Oxon Hill, MD (Off-Site/Hybrid)
The Opportunity:
CACI is seeking a Splunk Engineer - SME to lead the management, optimization, and execution of DHS’s Splunk implementation and oversee a small team of Splunk engineers. The ideal candidate will also lead and mentor the team of mid-career and senior Splunk engineers while driving security initiatives using Splunk’s powerful data analytics capabilities.
Responsibilities:
The Splunk Engineer - SME should feel comfortable not only setting expectations for the team but assisting with escalations and onsite tasks as they arise. We are looking for and experienced and dynamic Splunk Engineer who shows initiative and demonstrates excellent customer service and communication skills. The candidate will be self-directed, organized, and results driven. In this role, the candidate will work as a mentor and teacher, working to identify skills gaps and working to fill them through training and performance improvement.
The Splunk Engineer - SME will:
• Lead and manage a team of mid-career and senior Splunk engineers, providing technical guidance, mentorship, and career development
• Serve as the subject matter expert (SME) on Splunk within the organization, advising on best practices and advanced use cases
• Design, implement, and maintain complex Splunk deployments for security monitoring and threat detection
• Document and map the architecture of current Splunk infrastructure and provide inputs into the development of the security engineering roadmap for future improvements.
• Develop and optimize Splunk searches, dashboards, and alerts to enhance security operations
• Conduct performance tuning and capacity planning for Splunk environments
• Collaborate with cross-functional teams to integrate Splunk with other security tools and data sources
• Stay current with emerging threats and security trends, incorporating new detection methods into Splunk
• Stay current with emerging security technologies and industry trends to recommend improvements or additions.
• Serve as the team’s point of contact for security tool operation and management.
Qualifications:
Required:
• Ability to attain DHS EOD, US Citizenship required
• ITIL V4 Foundations certification (or obtain in first 6 months)
• MS or equivalent +10 years of experience
• Splunk Certified Architect or equivalent advanced Splunk certification
• Experience leading a team of technical experts
• 8 or more years of hands-on experience in enterprise IT support
• Experience managing technicians with varying skill levels and supporting end users remotely
• Experience with security tools and technologies, like SIEM, IDS/IPS, and firewalls)
• Professional, customer-oriented, and even-keeled under pressure
• Effective communicator at all levels, both written and verbal
Desired:
• Experience with cloud security and Splunk Cloud deployments
• Knowledge of scripting languages (Python, Bash) and regular expressions
• Knowledge of machine learning and advanced analytics in security contexts
• Security +, CEH, GPEN, OSEP, etc.
• CISSP certification
• Information Systems Security Engineering Professional (ISSEP)
CACI is seeking a Splunk Engineer - SME to lead the management, optimization, and execution of DHS’s Splunk implementation and oversee a small team of Splunk engineers. The ideal candidate will also lead and mentor the team of mid-career and senior Splunk engineers while driving security initiatives using Splunk’s powerful data analytics capabilities.
Responsibilities:
The Splunk Engineer - SME should feel comfortable not only setting expectations for the team but assisting with escalations and onsite tasks as they arise. We are looking for and experienced and dynamic Splunk Engineer who shows initiative and demonstrates excellent customer service and communication skills. The candidate will be self-directed, organized, and results driven. In this role, the candidate will work as a mentor and teacher, working to identify skills gaps and working to fill them through training and performance improvement.
The Splunk Engineer - SME will:
• Lead and manage a team of mid-career and senior Splunk engineers, providing technical guidance, mentorship, and career development
• Serve as the subject matter expert (SME) on Splunk within the organization, advising on best practices and advanced use cases
• Design, implement, and maintain complex Splunk deployments for security monitoring and threat detection
• Document and map the architecture of current Splunk infrastructure and provide inputs into the development of the security engineering roadmap for future improvements.
• Develop and optimize Splunk searches, dashboards, and alerts to enhance security operations
• Conduct performance tuning and capacity planning for Splunk environments
• Collaborate with cross-functional teams to integrate Splunk with other security tools and data sources
• Stay current with emerging threats and security trends, incorporating new detection methods into Splunk
• Stay current with emerging security technologies and industry trends to recommend improvements or additions.
• Serve as the team’s point of contact for security tool operation and management.
Qualifications:
Required:
• Ability to attain DHS EOD, US Citizenship required
• ITIL V4 Foundations certification (or obtain in first 6 months)
• MS or equivalent +10 years of experience
• Splunk Certified Architect or equivalent advanced Splunk certification
• Experience leading a team of technical experts
• 8 or more years of hands-on experience in enterprise IT support
• Experience managing technicians with varying skill levels and supporting end users remotely
• Experience with security tools and technologies, like SIEM, IDS/IPS, and firewalls)
• Professional, customer-oriented, and even-keeled under pressure
• Effective communicator at all levels, both written and verbal
Desired:
• Experience with cloud security and Splunk Cloud deployments
• Knowledge of scripting languages (Python, Bash) and regular expressions
• Knowledge of machine learning and advanced analytics in security contexts
• Security +, CEH, GPEN, OSEP, etc.
• CISSP certification
• Information Systems Security Engineering Professional (ISSEP)
group id: apexsan
