Senior Splunk Cyber Security Engineer

MANTECH seeks a motivated, career, and customer-oriented Senior Splunk Cyber Security Engineer to join our team in Chantilly, VA.

In this role, you will support a mission-critical initiative and contribute directly to cybersecurity operations through the administration and engineering of a large enterprise Splunk environment. This position is ideal for professionals with strong hands-on experience in system integration, data management, and cyber defense initiatives. You will play a key role in maintaining and tuning Splunk systems, while collaborating with technical teams and cyber analysts across a dynamic enterprise environment.

Responsibilities include, but are not limited to:

• Managing the day-to-day operation of large enterprise Splunk deployments
• Troubleshooting data collection issues and resolving system conditions affecting stability or integrity
• Deploying and maintaining both supported and unsupported Splunk add-ons
• Executing Splunk Enterprise upgrades and patches
• Configuring and deploying Splunk forwarders using centralized management tools
• Maintaining and tuning Splunk Enterprise Security (ES) content and performance
• Managing knowledge objects, data models, dashboards, alerts, and operational content
• Supporting API integrations and external system connectivity
• Developing and maintaining detailed engineering and compliance documentation
• Contributing to Splunk deployment and architecture diagrams and system documentation
• Enforcing role-based access controls and operational security policies
• Collaborating with cyber analysts and engineering teams to improve detection and response capabilities
• Applying relevant security policies, standards, and technical guidelines to ensure compliance

Minimum Qualifications:

• Bachelor's degree, or 4+ additional years of cybersecurity experience in lieu of a degree
• 5+ years of experience in an enterprise and/or cybersecurity-focused environment
• Experience with Splunk administration and engineering
• Experience with Splunk Enterprise Security (ES) operations and configurations
• Proficiency with Unix and Windows environments
• DoD 8570 IAT Level II certification (e.g., Security+, CCNA-Security, GSEC)

Preferred Qualifications:

• Splunk certifications such as Architect, Consultant I/II, Admin, or Power User
• Experience with scripting or programming languages (e.g., Bash, Python, Java, Perl, .NET)
• Familiarity with developing and deploying operational and security use cases within Splunk

Clearance Requirements:

• Must have a current/active TS/SCI with CI Polygraph

Physical Requirements:

• Must be able to remain in a stationary position 50% of the time
• Occasionally move about inside the office to access file cabinets, office machinery, or to communicate with co-workers, management, and customers via email, phone, or virtual communication, which may involve delivering presentations