Splunk Cloud Engineer

ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™


ASRC Federal is actively hiring a Splunk Cloud Engineer in support of our Defense Counterintelligence Security Agency (DCSA) program based out of Hanover MD.
Remote flexibility available! Telework offered with a requirement to be onsite up to one (1) day a week at Hanover, MD.
We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefit packages. This position is offering a pay range of $145,000.00 - $157,040.00 depending on experience, seniority, geographic locations, and factors permitted by law. Benefits offered may include health care, dental, vision, life insurance; 401k; education assistance; paid time off including Paid Time Off, holidays and any other paid leave required by law.
Job Description:
The Splunk Cloud Engineer will play a critical role within the agency to enhance the security posture by leading the planning and execution of migration projects to move client data and processes to Splunk platforms. The applicant will develop a tailored migration strategies through collaboration with stakeholders to understand their requirements to ensure seamless integration of new systems with existing infrastructure and processes.
Minimum Requirements:
• At least five (5) Years – Hands-on technical cybersecurity experience
• At least five (5) Years – Direct Splunk engineering/administration experience
• Active Secret Clearance REQUIRED, eligible to be upgraded to TS/SCI
• Bachelor’s degree in information security or related field and/or equivalent combination of experience.
• Certifications:
◦ Must meet DoD 8140/8570 IAT Level II/III certifications’ requirements at the time of hire by having one of the following certifications. (CCNA/CCNP Security, CySA +, GICSP, GSEC, Security+, SSSP, CSSP, CASP CE, CISA, CISSP (or Associate), GCED or GCIH
◦ Must have one or more Splunk Certifications:
▪ Splunk Enterprise Admin
▪ Splunk Enterprise Certified Architect
▪ Splunk Certified Developer
Basic Qualifications:
• Experience in the design, build, support and maintenance of a Splunk infrastructure in a highly available configuration
• Proven experience as a Splunk Engineer or similar role, with specific experience in SIEM migrations into a Splunk cloud environment
• Strong understanding of Splunk architecture, including data ingestion, indexing, search, and visualization
• Experience conducting pre-migration assessments to identify potential issues and develop mitigation strategies
• Prior experience customizing and configuring Splunk environments according to client needs, including developing scripts and apps as necessary
• Proficiency in scripting languages such as Python or Bash for Splunk app and dashboard development
• Experience with data transformation and normalization to ensure compatibility with Splunk
• Ability to Standardize Splunk forwarder deployment, configuration and maintenance in Linux and Windows platforms
• Troubleshoot Splunk indexers, search heads and forwarder problems
• Familiarity with networking principles and protocols
• Excellent problem-solving skills and the ability to work under pressure
• Strong communication and interpersonal skills, with the ability to explain technical concepts to non-technical stakeholders
• Experience analyzing log files from network traffic logs, firewall logs, IDS logs, DNS logs and ESS to ID possible security threats e.g., determine rogue systems, infected systems, unauthorized system changes and unauthorized hardware connections


We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.

EEO Statement
ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.