SPLUNK ADMINISTRATOR / DEVELOPER (Cleared) jobs in United States
cer-icon
Apply on Employer Site
company-logo

CriticalTilt, Inc. · 2 months ago

SPLUNK ADMINISTRATOR / DEVELOPER (Cleared)

positionTampa, FL
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

CriticalTilt is a company with over 25 years of specialized experience delivering tailored solutions to government agencies and private clients. They are seeking a Splunk Administrator / Developer to support enterprise-scale Splunk platform implementation, optimization, and automation in a secure DoD environment.

Information Technology & Services
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Install, configure, and maintain Splunk Enterprise and Enterprise Security platforms in accordance with DoD and organizational best practices
Deploy and configure Splunk SOAR and UBA systems, ensuring secure connectivity, license application, and integration with Enterprise Security
Develop and test automation playbooks using Python or JavaScript within the Splunk SOAR framework
Design and implement secure data onboarding workflows for diverse security sources (e.g., DNS, DHCP, Active Directory, firewall, VPN, and endpoint telemetry)
Implement identity resolution and data normalization processes supporting UBA analytics and detection modeling
Perform tuning, baselining, and false-positive reduction for UBA and SOAR detections
Conduct infrastructure health checks, search head/indexer performance reviews, and diagnostic troubleshooting
Integrate Splunk platforms with enterprise authentication systems and configure granular role-based access controls
Document system configurations, architecture validations, and implementation reports
Support knowledge transfer and stakeholder enablement sessions on Splunk administration, automation, and operational best practices
Maintain strict adherence to all information security, change management, and operational governance procedures

Qualification

Splunk EnterpriseSplunk SOARUser Behavior AnalyticsPythonData normalizationCompTIA Security+ CECISSPCISMCASP+JavaScriptBashPowerShellAgileITIL

Required

Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or related field (or equivalent professional experience)
5+ years of Splunk Enterprise administration experience supporting security operations or analytics environments
2+ years of experience with Splunk SOAR automation or playbook development
Experience deploying and tuning Splunk UBA or comparable user behavior analytics solutions
Strong understanding of data normalization (CIM compliance), data pipeline design, and SIEM integration
Proficiency in scripting (Python, JavaScript, Bash, or PowerShell)
Familiarity with DoD cybersecurity compliance and secure enclave operations
Active Top Secret clearance required; SCI eligibility preferred
DoD 8570/8140 Baseline: CompTIA Security+ CE (minimum); CISSP, CISM, or CASP+ (preferred)
Splunk Certifications: Splunk Core Certified Power User, Splunk Enterprise Certified Admin, Splunk SOAR Certified Automation Developer (recommended), Splunk Enterprise Security Certified Admin (highly desirable), Splunk UBA or behavioral analytics certification (preferred)

Preferred

Experience with common security telemetry sources (firewalls, proxies, EDR, DLP)
Experience with configuration management, CI/CD pipelines, or automation tooling (e.g., Ansible, Git)
Familiarity with Agile or ITIL-based delivery processes

Company

CriticalTilt, Inc.

twitter
company-logo
In an ever-evolving technological landscape with scant resources, CriticalTilt is your stalwart ally.
dateFounded in 2023
location
Henderson, NV, US
people-size2-10 employees
web-link
https://www.criticaltilt.com/

Funding

Current Stage
Early Stage
Company data provided by crunchbase