Senior Splunk Engineer jobs in United States
cer-icon
Apply on Employer Site
company-logo

Chenega MIOS SBU · 4 days ago

Senior Splunk Engineer

positionOakton, VA
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date12+ years exp

Chenega Military, Intelligence & Operations Support (MIOS) is seeking a Senior Splunk Engineer to enhance their team that supports large-scale government operations using advanced technology. The role involves developing, maintaining, and optimizing the enterprise SIEM infrastructure, focusing on log correlation, alerting, and operational dashboards while collaborating with various teams to improve threat detection and visibility.

Defense & Space
badNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Lead the design and optimization of Splunk dashboards, alerts, correlation searches, and data ingestion for security and network observability
Collaborate with network and Extra Hop teams to integrate flow data, traffic patterns, and anomalies into actionable Splunk detections
Support development of network baseline visualizations and identify deviations using correlated log and traffic data
Tune log sources and ingestion pipelines to improve performance, reduce false positives, and enhance signal fidelity
Develop and manage Splunk content related to firewalls, VPNs, proxies, routers, switches, and endpoint devices
Work with analysts to interpret detection triggers in context of network flows, packet captures, and behavior anomalies
Configure and maintain Splunk components including apps, indexes, forwarders, and CIM data models
Produce documentation, runbooks, and training for SOC teams and technical stakeholders
Operate in both connected and disconnected environments; support secure enclave deployments of Splunk
Mentor junior engineers and analysts in SPL, dashboarding, and detection development
Other duties as assigned

Qualification

Splunk engineeringCybersecurity experienceNetwork engineeringDoD 8140 certificationTCP/IP understandingPacket analysisData normalizationDocumentation skillsMentoring skillsCollaboration skills

Required

Bachelors degree in a related field OR
Associates degree with an additional 2+ years of relevant IT experience OR
High school diploma or GED equivalent with an additional 4+ years of directly related IT experience in lieu of degree
12+ years of cybersecurity or network engineering experience with 3+ years of Splunk engineering and content development
Hands-on experience with Splunk Enterprise and Enterprise Security (ES) in air-gapped or mission-secure environments
Must hold a current DoD 8140 (or 8570) baseline certification at the IAT Level II or higher (e.g., CompTIA Security+)
U.S. Citizen with active TS/SCI clearance
Expert-level Splunk SPL development and content creation
Strong understanding of TCP/IP, packet structures, and network traffic analysis
Familiarity with Extra Hop, SolarWinds, and PCAP-based threat identification
Ability to correlate multi-source logs with behavioral and network data to create high-fidelity detections
Experience tuning and normalizing data to align with Splunk CIM and ES frameworks
Proficiency with regex, lookup tables, macros, and dashboard visualizations
Excellent documentation and mentoring skills
Comfortable working across cyber, networking, and threat teams to improve detection and visibility

Benefits

Professional development plan
Well-being programs
Flexibility to make daily choices that can help them be healthy, centered, confident, and aware

Company

Chenega MIOS SBU

twitter
company-logo
Chenega Corporation’s MIOS Strategic Business Unit (SBU) provides innovative solutions for federal, DOD, and commercial customers around the globe.
dateFounded in 2010
location
Lorton, VA, US
people-size1001-5000 employees
web-link
https://chenegamios.com/

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Chet Husk
Chief Technical Officer
linkedin
leader-logo
Sarah Bruno, SHRM-CP
Human Resources Business Partner
linkedin
Company data provided by crunchbase