Posted today
Top Secret
Mid Level Career (5+ yrs experience)
Unspecified
No Traveling
IT - Security
Washington, DC (On-Site/Office)
Title: Data Engineer (Splunk)
Location: Bolling AFB, Washington, DC
Clearance: Active TS/SCI or Top Secret (Required)
Contact: Crystal.dinnocenti@systemone.com
This role designs, deploys, and manages the Splunk data platform to collect, normalize, and analyze machine data from networks, systems, and applications. It supports high-visibility operational and cybersecurity missions by ensuring reliable data onboarding, scalable ingestion pipelines, and actionable analytics through dashboards and alerts.
CORE RESPONSIBILITIES
• Designs, deploys, and manages the Splunk platform, including indexers, search heads, forwarders, and supporting infrastructure.
• Onboards data from diverse systems, ensuring proper parsing, normalization, and routing for high?quality ingestion.
• Builds and maintains dashboards, alerts, and data models to support operational monitoring and security visibility.
• Troubleshot ingestion issues, performance bottlenecks, and data quality problems across distributed environments.
• Integrates Splunk with enterprise systems, security tools, and external data sources to expand visibility.
• Maintains configuration baselines, documentation, and best practices for Splunk data management and retention.
• Collaborates with cybersecurity, network, and operations teams to ensure end-to-end system reliability.
REQUIRED QUALIFICATIONS
• 5+ years in data management, systems administration, or related technical roles, including at least 3 years of hands-on Splunk experience.
• Strong understanding of Splunk architecture including data ingestion, indexing, search optimization, and app/TA management.
• Experience building dashboards, queries, alerts, and data models to support mission operations.
• Familiarity with secure or high assurance environments and federal cybersecurity frameworks.
• A bachelor’s degree in a technical field is preferred.
• Experience with related tools such as Cribl for data routing and transformation is increasingly valuable.
WORK ENVIRONMENT
The position typically operates in a secure, high-tempo environment where uninterrupted visibility into systems and networks is essential. Engineers must be comfortable supporting sensitive operations, responding quickly to issues, and working closely with multidisciplinary teams responsible for mission-critical communications.
Location: Bolling AFB, Washington, DC
Clearance: Active TS/SCI or Top Secret (Required)
Contact: Crystal.dinnocenti@systemone.com
This role designs, deploys, and manages the Splunk data platform to collect, normalize, and analyze machine data from networks, systems, and applications. It supports high-visibility operational and cybersecurity missions by ensuring reliable data onboarding, scalable ingestion pipelines, and actionable analytics through dashboards and alerts.
CORE RESPONSIBILITIES
• Designs, deploys, and manages the Splunk platform, including indexers, search heads, forwarders, and supporting infrastructure.
• Onboards data from diverse systems, ensuring proper parsing, normalization, and routing for high?quality ingestion.
• Builds and maintains dashboards, alerts, and data models to support operational monitoring and security visibility.
• Troubleshot ingestion issues, performance bottlenecks, and data quality problems across distributed environments.
• Integrates Splunk with enterprise systems, security tools, and external data sources to expand visibility.
• Maintains configuration baselines, documentation, and best practices for Splunk data management and retention.
• Collaborates with cybersecurity, network, and operations teams to ensure end-to-end system reliability.
REQUIRED QUALIFICATIONS
• 5+ years in data management, systems administration, or related technical roles, including at least 3 years of hands-on Splunk experience.
• Strong understanding of Splunk architecture including data ingestion, indexing, search optimization, and app/TA management.
• Experience building dashboards, queries, alerts, and data models to support mission operations.
• Familiarity with secure or high assurance environments and federal cybersecurity frameworks.
• A bachelor’s degree in a technical field is preferred.
• Experience with related tools such as Cribl for data routing and transformation is increasingly valuable.
WORK ENVIRONMENT
The position typically operates in a secure, high-tempo environment where uninterrupted visibility into systems and networks is essential. Engineers must be comfortable supporting sensitive operations, responding quickly to issues, and working closely with multidisciplinary teams responsible for mission-critical communications.
group id: COMPHLP
