Apply
Security Splunk SME
Fully Remote Remote - USA
Apply
Description

Enhanced Veterans Solutions, Inc. (EVS) is seeking an experienced Security Splunk SME to join our team. This role is critical in ensuring effective data ingestion, integration, and analysis within Splunk environments. The ideal candidate will collaborate with cross-functional teams to design, implement, and maintain Splunk solutions that support security and operational excellence.

This position is remote within the United States.


Key Responsibilities:

  • Data Integration: Design and implement processes for ingesting customer data flows, including pre-processing, parsing, and indexing to ensure optimal data usability.
  • Knowledge Object Development: Collaborate with teams to create and maintain queries, dashboards, reports, and alerts that provide actionable insights.
  • Data Transformation: Utilize Splunk Query Language to perform data transformation and create advanced analytics.
  • System Health & Optimization: Monitor the performance and health of Splunk environments, troubleshoot issues, and optimize system performance, including indexing and search efficiency.
  • Access Management: Manage user authentication, roles, and access controls (RBAC/ABAC). Integrate Splunk with LDAP, Active Directory, and HEC tokens to maintain secure access.
  • App Integration: Implement and manage Splunk technical add-ons, including DBConnect and third-party apps, ensuring seamless functionality.
  • Cloud Administration: Administer and optimize Splunk in large-scale cloud environments, supporting scalable operations.
  • DevOps Collaboration: Work within DevOps and Scrum teams to align Splunk implementations with agile workflows.



Requirements

 Required Qualifications:

  • Active Secret Security Clearance - Must be active
  • Extensive experience administering Splunk Enterprise in large organizations.
  • Proven expertise with Splunk Enterprise, Splunk ES, and Splunk ITSI.
  • Hands-on experience managing Role and Attribute-Based Access Controls (RBAC/ABAC).
  • Proficiency with LDAP/AD integrations and token-based access (HEC).
  • Strong background in managing and integrating Splunk technical add-ons like DBConnect.
  • Deep understanding of Splunk applications in cloud environments.
  • Familiarity with DevOps and Scrum practices for iterative development.

Preferred Skills:

  • Advanced troubleshooting and problem-solving skills in Splunk environments.
  • Ability to design intuitive dashboards and analytics for various stakeholders.
  • Strong communication skills for cross-functional collaboration.

Why Join Us? This role offers the opportunity to work on cutting-edge technologies and secure large-scale Splunk deployments. As a Splunk SME, you will play a vital role in shaping our security analytics and operations while advancing your expertise in the field. 


  

EEO Statement:

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, marital status, age, national origin, protected veteran status, or disability. VEVRAA Federal Contractor.

Salary Description
Salary range: $135,000.00 to $148,150.00
Apply
View All Jobs