Posted 2 days ago
Top Secret
Senior Level Career (10+ yrs experience)
Unspecified
IT - Security
Alexandria, VA (Off-Site/Hybrid)
Job Title: Senior Splunk / SIEM Engineer
Job Location: Mark Center – Alexandria, VA (HYBRID - 3 DAYS ONSITE)
Clearance: Must Possess Active Top Secret Clearance
Position Summary
August Schell is seeking a Senior Splunk / SIEM Engineer with advanced hands-on experience in designing, deploying, and maintaining large-scale Splunk environments. This role requires strong technical capabilities in troubleshooting complex system issues, creating custom dashboards, and managing Splunk clusters aligned with best practices. The candidate will support a Department of Defense customer from the Mark Center in Alexandria, VA (hybrid role - 3 days onsite).
Minimum Qualifications (Knowledge, Skills, and Abilities)
• Bachelor’s Degree
• Experience in Splunk administration or engineering roles
• Knowledge of Splunk architecture, deployment models, and indexing best practices
• At least ten (10) years of overall Cybersecurity experience.
• At least five (5) years of SIEM experience
• Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
• Proficiency in creating custom dashboards and advanced queries
• Must possess a valid DoD 8570 IAT-II certification (ex. Security+)
• Active Top Secret clearance required
• Strong problem-solving skills and ability to work independently or within a team
• Excellent written and verbal communication skills
Stand Out With
• DoD 8570 CSSP Analyst Certification desired
• Familiarity with DevOps and automation tools such as Ansible or Terraform
• Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
• Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
• Experience with Elastic
• Familiarity with Linux and Windows server environments
Essential Duties and Responsibilities
• Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms
• Develop and optimize advanced Splunk dashboards and queries to support mission-critical operations
• Troubleshoot and resolve issues within large-scale, complex Splunk environments
• Implement best practices for indexing, data transformation, and system architecture
• Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions
• Support vulnerability and STIG scanning operations and interpret outputs for system compliance
• Manage virtual environments including VRFs and VLAN
• Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements
• Document configurations and operational procedures for audit and continuity purposes
Job Location: Mark Center – Alexandria, VA (HYBRID - 3 DAYS ONSITE)
Clearance: Must Possess Active Top Secret Clearance
Position Summary
August Schell is seeking a Senior Splunk / SIEM Engineer with advanced hands-on experience in designing, deploying, and maintaining large-scale Splunk environments. This role requires strong technical capabilities in troubleshooting complex system issues, creating custom dashboards, and managing Splunk clusters aligned with best practices. The candidate will support a Department of Defense customer from the Mark Center in Alexandria, VA (hybrid role - 3 days onsite).
Minimum Qualifications (Knowledge, Skills, and Abilities)
• Bachelor’s Degree
• Experience in Splunk administration or engineering roles
• Knowledge of Splunk architecture, deployment models, and indexing best practices
• At least ten (10) years of overall Cybersecurity experience.
• At least five (5) years of SIEM experience
• Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
• Proficiency in creating custom dashboards and advanced queries
• Must possess a valid DoD 8570 IAT-II certification (ex. Security+)
• Active Top Secret clearance required
• Strong problem-solving skills and ability to work independently or within a team
• Excellent written and verbal communication skills
Stand Out With
• DoD 8570 CSSP Analyst Certification desired
• Familiarity with DevOps and automation tools such as Ansible or Terraform
• Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
• Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
• Experience with Elastic
• Familiarity with Linux and Windows server environments
Essential Duties and Responsibilities
• Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms
• Develop and optimize advanced Splunk dashboards and queries to support mission-critical operations
• Troubleshoot and resolve issues within large-scale, complex Splunk environments
• Implement best practices for indexing, data transformation, and system architecture
• Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions
• Support vulnerability and STIG scanning operations and interpret outputs for system compliance
• Manage virtual environments including VRFs and VLAN
• Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements
• Document configurations and operational procedures for audit and continuity purposes
group id: RTL73977
