Splunk Administrator Principal jobs in United States
cer-icon
Apply on Employer Site
company-logo

SAIC · 22 hours ago

Splunk Administrator Principal

positionNorth Charleston, SC
timeFull-time
remoteOnsite
seniorityLead/Staff
date9+ years exp

SAIC is seeking a Splunk Administrator to support their customer site in North Charleston, SC. The role is responsible for the administration, maintenance, and enhancement of the Splunk platform, ensuring optimal performance and availability for mission-critical security and business operations.

Information TechnologySecurityService IndustrySoftware
check
Work & Life BalancebadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Install, configure, and maintain Splunk Enterprise software, Apps, and Add-ons
Configure data inputs from servers, applications, and network devices
Manage indexes, parsing, and data normalization for multi-tenant environments
Troubleshoot configuration, indexing, and performance issues
Develop dashboards, reports, alerts, and saved searches using SPL
Support data collection for security incident response and forensics
Create and maintain system documentation and configuration tracking
Manage user roles, RBAC permissions, and STIG compliance
Integrate Splunk with enterprise tools such as ServiceNow, Tenable ACAS, Trellix ESS, EvaluateSTIG, and eMASS
Support Enterprise Security (ES) and IT Service Intelligence (ITSI) modules for performance and security enhancement

Qualification

Splunk architectureSplunk Processing Language (SPL)DoD STIG compliancePowerShellPythonBashWindowsLinuxCompTIA Security+CompTIA CASPCISSPNetworking principlesVirtualizationRed Hat Enterprise Linux

Required

Nine (9) years of experience with a bachelor's degree in Electrical, Electronic, or Computer Engineering; Computer Science; or Information Systems
At least one (1) of the following certifications: CompTIA Security+, CompTIA Advanced Security Practitioner (CASP), Certified Information Systems Security Professional (CISSP)
Strong understanding of DoD STIG and auditing/monitoring controls
Advanced knowledge of Splunk architecture, configuration, and optimization
Proficiency in Splunk Processing Language (SPL)
Experience with PowerShell, Bash, and Python for automation
Working knowledge of Windows, Linux, and networking principles
Familiarity with virtualization and Red Hat Enterprise Linux (RHEL)
MUST BE A US CITIZEN WITH AN ACTIVE SECRET CLEARANCE AND THE ABILITY TO OBTAIN A TOP SECRET

Company

SAIC

twittertwittertwitter
Glassdoor4.1
company-logo
SAIC specializes in IT, enterprise IT, engineering, and professional services.
dateFounded in 1969
location
Reston, Virginia, USA
people-size10001+ employees
web-link
http://www.saic.com

Funding

Current Stage
Public Company
Total Funding
$522.13M
Key Investors
U.S. Geothermal
2025-09-22Post Ipo Debt· $500M
2010-09-13Post Ipo Equity· $22M
2006-10-13IPO

Leadership Team

leader-logo
Prabu Natarajan
Chief Financial Officer
linkedin
leader-logo
Kevin F Brown
Senior Vice President, Chief Information Security Officer
linkedin

Recent News

MarketScreener
SAIC Appoints Ravi Dankanikote as New Chief Growth Officer
2025-12-16
thefly.com
SAIC appoints Dankanikote as new Chief Growth Officer
2025-12-16
SAIC, Inc.
SAIC Announces Third Quarter of Fiscal Year 2026 Results
2025-12-05
Company data provided by crunchbase