Yesterday
Public Trust
Mid Level Career (5+ yrs experience)
Unspecified
No Traveling
IT - Security
Washington, DC (Off-Site/Hybrid)
Summit Technologies Inc. is seeking a Senior Splunk Engineer/Architect to lead and support enterprise cybersecurity operations. This senior-level role is responsible for architecting, engineering, and advancing Splunk platforms within a mission-critical federal environment. This is an excellent opportunity for a Splunk expert who thrives in federal environments and is eager to provide both hands-on engineering and architectural leadership to a modernized SIEM platform. This Hybrid position requires working 3 days per week onsite in Washington, DC. Candidates must be eligible to obtain a Public Trust clearance.
Duties and Responsibilities
Serve as the architectural lead for Splunk Enterprise and Splunk ES in a high-availability, distributed, and cloud-based environment.
Define and maintain the long-term Splunk architecture, ensuring scalability, resilience, and security to meet mission and compliance requirements.
Oversee architectural decisions related to storage, disaster recovery, and performance, including the use of features such as SmartStore and ASR/MSR.
Conduct architectural reviews, capacity planning, and performance optimization for enterprise Splunk environments.
Shape platform strategy, ensure architectural integrity, and maintain Splunk optimization for performance, resilience, and scalability as the agency matures its Cloud-based deployments.
Drive the onboarding and normalization of diverse data sources (OS, network, applications, cloud services) into Splunk, aligning with enterprise logging standards.
Architect and guide the design of dashboards, data models, and advanced analytics to support threat detection, forensics, and reporting.
Establish and enforce configuration management, security hardening, and change control processes for Splunk platforms.
Produce and maintain architecture documentation, including conceptual designs, reference architectures, and operational standards.
Provide technical leadership and mentorship to engineers, analysts, and administrators in Splunk best practices.
Evaluate emerging Splunk capabilities, cloud services, and SIEM technologies to inform future platform evolution.
Collaborate with cybersecurity leadership and stakeholders to align Splunk architecture with mission objectives and federal requirements.
Required Skills and Experience
7+ years of IT experience, with at least 3 years focused on Splunk engineering and architecture.
Current Splunk Enterprise Certified Architect certification (required).
Demonstrated expertise in Splunk Enterprise and Splunk ES, including SPL and the Common Information Model.
Proven experience in architecting and maintaining Splunk in cloud environments, including familiarity with SmartStore and ASR/MSR.
Strong background in distributed systems design, performance tuning, and capacity planning.
Proficiency with scripting languages such as PowerShell, Bash, or Python.
Experience operating Splunk across Windows and Linux environments.
Excellent communication skills with the ability to explain technical architectures to both Executives and Engineers.
Required Certifications
CompTIA Security+ or higher certification (e.g., CISSP, CISM).
Highly Desired Skills
Splunk Enterprise Security Certified Admin or Splunk Certified Core Consultant certification.
Experience developing enterprise logging architectures for hybrid or federal environments.
Familiarity with other SIEM platforms (e.g., ELK, Azure Sentinel).
Experience with DevOps tools such as GitLab/GitHub for version control.
Education
Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related technical discipline; OR 10+ years of equivalent IT experience.
Security Clearance
Must be eligible for a Public Trust
If you feel you are qualified and want to be considered for this position, please supply the following to: a6fu86au78658rj3s15jfqjqdr@crelate.net
and please put the job number ‘6862’ in the subject line:
Updated resume including MM/YYYY for each employer.
Best times/dates to interview (plus phone # you can best be contacted at).
Availability to start once given formal offers.
Summit Technologies Inc. appreciates your interest. We will contact the best matching prospects and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability or veteran status.
Duties and Responsibilities
Serve as the architectural lead for Splunk Enterprise and Splunk ES in a high-availability, distributed, and cloud-based environment.
Define and maintain the long-term Splunk architecture, ensuring scalability, resilience, and security to meet mission and compliance requirements.
Oversee architectural decisions related to storage, disaster recovery, and performance, including the use of features such as SmartStore and ASR/MSR.
Conduct architectural reviews, capacity planning, and performance optimization for enterprise Splunk environments.
Shape platform strategy, ensure architectural integrity, and maintain Splunk optimization for performance, resilience, and scalability as the agency matures its Cloud-based deployments.
Drive the onboarding and normalization of diverse data sources (OS, network, applications, cloud services) into Splunk, aligning with enterprise logging standards.
Architect and guide the design of dashboards, data models, and advanced analytics to support threat detection, forensics, and reporting.
Establish and enforce configuration management, security hardening, and change control processes for Splunk platforms.
Produce and maintain architecture documentation, including conceptual designs, reference architectures, and operational standards.
Provide technical leadership and mentorship to engineers, analysts, and administrators in Splunk best practices.
Evaluate emerging Splunk capabilities, cloud services, and SIEM technologies to inform future platform evolution.
Collaborate with cybersecurity leadership and stakeholders to align Splunk architecture with mission objectives and federal requirements.
Required Skills and Experience
7+ years of IT experience, with at least 3 years focused on Splunk engineering and architecture.
Current Splunk Enterprise Certified Architect certification (required).
Demonstrated expertise in Splunk Enterprise and Splunk ES, including SPL and the Common Information Model.
Proven experience in architecting and maintaining Splunk in cloud environments, including familiarity with SmartStore and ASR/MSR.
Strong background in distributed systems design, performance tuning, and capacity planning.
Proficiency with scripting languages such as PowerShell, Bash, or Python.
Experience operating Splunk across Windows and Linux environments.
Excellent communication skills with the ability to explain technical architectures to both Executives and Engineers.
Required Certifications
CompTIA Security+ or higher certification (e.g., CISSP, CISM).
Highly Desired Skills
Splunk Enterprise Security Certified Admin or Splunk Certified Core Consultant certification.
Experience developing enterprise logging architectures for hybrid or federal environments.
Familiarity with other SIEM platforms (e.g., ELK, Azure Sentinel).
Experience with DevOps tools such as GitLab/GitHub for version control.
Education
Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related technical discipline; OR 10+ years of equivalent IT experience.
Security Clearance
Must be eligible for a Public Trust
If you feel you are qualified and want to be considered for this position, please supply the following to: a6fu86au78658rj3s15jfqjqdr@crelate.net
and please put the job number ‘6862’ in the subject line:
Updated resume including MM/YYYY for each employer.
Best times/dates to interview (plus phone # you can best be contacted at).
Availability to start once given formal offers.
Summit Technologies Inc. appreciates your interest. We will contact the best matching prospects and will consider you for future opportunities. We will not submit your resume without your prior knowledge and consent. We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability or veteran status.
group id: summitct
