Apply on Employer Site

ECS · 7 hours ago

Sr Splunk Specialist

Alexandria, VA

Full-time

Onsite

Senior Level, Lead/Staff

$160K/yr - $180K/yr

10+ years exp

ECS is a leading mid-sized provider of technology services to the United States Federal Government, and they are seeking a Sr Splunk Specialist. This role involves leading a team of Splunk Engineers and Analysts to enhance the client's security data environment and manage SIEM operations.

Artificial Intelligence (AI)Cloud InfrastructureComplianceConsultingCyber SecurityInformation TechnologyMachine LearningSecuritySoftware

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Serve as the Lead Splunk Engineer and Analyst

Lead and manage the continued deployment, expansion, and day-to-day maintenance and administration of Security Information & Event Management (SIEM) operations

Maintain operational proficiency of Splunk servers, forwarders, indexers and search heads

Conduct Assessments and support system components according to DISA STIGs, Security Requirements Guides (SRG), and applicable DoD orders and directives

Build use cases and dashboards depending on requirements

Work closely with the Incident Response team on handling incident and problem management for the SIEM infrastructure

Facilitate the integration of new data sources into the SIEM

Develop detailed security design documentation for component and interface specifications to support system design and development

Track, measure and evaluate logging security posture across the enterprise

Mentor analysts and engineers on Splunk technologies and components

Candidate may also provide general technical cybersecurity support in the areas of vulnerability assessment, risk assessment, network security, and security implementation

Additional general duties include implementation and support for protecting the confidentiality, integrity and availability of sensitive information; providing input into the design of IS contingency plans; and conducting testing and audit log reviews to evaluate the effectiveness of current security measures

Qualification

SplunkCybersecurityDoD 8570 IAT Level 2/3CISSPRisk ManagementCloud SecurityEndpoint SecurityAnalytic SkillsCommunication SkillsOrganizational Skills

Required

Must be a US citizen, possess a DoD Secret clearance. Minimum vetting Tier 5(T5)-Single Scope Background Investigation (SSBI)

Active DoD 8570 IAT Level 2 or Level 3 certification for compliance, including at least one of the following certifications in good standing: CompTIA CISA+, CompTIA Security, ISC2 CISSP, ISC2 CCSP, or ISC2 SSCP

Computing Environment Certification

Bachelor's degree and 10+ years of Information Technology or Cybersecurity related experience

Subject matter expertise in Splunk and Splunk Enterprise Security, with proven experience designing, configuring, deploying, monitoring, and optimizing log management in a distributed, complex enterprise

Experience delivering Tier-3 cybersecurity support, including resolving critical issues, mentoring junior personnel, and performing post mortem analysis to identify, document, and implement lessons learned within a continuing quality improvement framework

Comprehensive awareness of IT operations business requirements, with the ability to deliver cyberhardening and cybersecurity requirements while not degrading system availability, functionality, or performance

Ability to communicate effectively with government and contract leadership, while conveying highly technical concepts to both technical and nontechnical stakeholders

Capacity to thrive in a complex, fast paced environment with competing demands while delivering consistent, high-quality commitment to mission-critical systems and solutions

Excellent analytic skills, including qualitative and quantitative data analysis to support and defend data-driven decision-making regarding system threats, vulnerabilities, and risk

Knowledge of DoD cybersecurity policies, practices, and requirements

Strong organizational skills

Preferred

Splunk Certified

CISSP, CASP, CEH certifications

Systems architecture, engineering, and networking experience, with computing environment certifications

Experience in threat, vulnerability, and risk management and mitigation

Cybersecurity incident response experience

Proven experience supporting all aspects of diverse endpoint systems

Knowledge of and experience administering, optimizing, and securing cloud environments

Expert knowledge of and experience configuring, optimizing, troubleshooting, securing, scanning, and penetration testing endpoint systems, including Windows workstations, Windows servers, and Linux servers

Experience applying troubleshooting techniques across various server, application, and network technologies

Company

ECS

Glassdoor3.6

ECS is a fast-growing 4,000-person, $1.2B provider of advanced technology solutions for federal civilian, defense, intelligence, and commercial customers.

Founded in 2001

Fairfax, Virginia, USA

1001-5000 employees

https://www.ecstech.com

Funding

Current Stage

Late Stage

Total Funding

unknown

2018-01-31Acquired

2015-04-10Private Equity

Leadership Team

Keith McCloskey

VP / Chief Technology Officer

Ryan Garner

Chief Financial Officer

Recent News

Business Wire

ECS Ranked #4 on Top 250 MSSP List for 2025

2026-01-22

Morningstar.com

ECS Recognized as a Top Partner with 2025 Elastic Services Partner Award – AMER

2025-11-19

MarketScreener

ECS Joint Venture 1CyberForce Wins Spot On $20B Cybersecurity Vehicle

2025-03-26

Company data provided by crunchbase