Splunk Security Engineer

Splunk Security Engineer

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Top Secret

Employee Type: Regular

Percentage of Travel Required: Up to 10%

Type of Travel: Local

* * *

The Opportunity:

CACI is seeking an experienced Splunk Security Engineer with expertise in Cribl to join our Splunk Engineering team. The ideal candidate will assist with the designing, implementing, and maintaining of DHS’ Splunk environment while leveraging Cribl for data processing and routing.

The Splunk Security Engineer should feel comfortable optimizing and refining the current Splunk implementation while collaborating with cross-functional teams to enhance DHS’ overall security posture.

Responsibilities:

The Splunk Security Engineer will:

• Design, implement, and maintain the Splunk infrastructure and solutions
• Configure and optimize Cribl Stream for data collection, processing, and routing
• Develop and maintain Splunk dashboards, alerts, and reports
• Assist with troubleshooting issues related to Splunk and Cribl implementations
• Perform capacity planning and performance tuning for Splunk and Cribl environments
• Collaborate with cross-functional engineering and ISSO teams to gather requirements and deliver solutions
• Document and map the architecture of the current Splunk implementation
• Support the development of a Security Engineering Tool roadmap
• Stay current with emerging security technologies and industry trends to recommend improvements or additions.


Qualifications:

Required: 

• Ability to attain DHS EOD and Top Secret Clearance
• ITIL V4 Foundations certification (or obtain in first 6 months)
• BA/BS or equivalent +10 years of experience
• Significant experience in cybersecurity, with strong hands-on experience in access management and network security
• 5+ years of experience as a Splunk Engineer
• 2+ years of experience with Cribl Stream
• Strong knowledge of search processing language (SPL)
• Proficient in scripting languages (Python, Bash PowerShell) for automation and integration
• Experience with Linux/Unix system administration
• Experience working with and guiding technicians with varying skill levels and supporting end users remotely
• Experience with security tools and technologies, like SIEM, IDS/IPS, and firewalls
• Strong analytical and problem-solving skills, particularly in optimizing security workflows
• Professional, customer-oriented, and even-keeled under pressure
• Effective communicator at all levels, both written and verbal


Desired:

• Splunk Certified Admin or Architect certification
• Splunk Enterprise Security certification
• Significant experience with Cribl LogStream and Cribl Edge
• Knowledge of CI/CD pipelines and DevOps practices
• Familiarity with other observability tools (Elasticsearch, Prometheus)
• Knowledge of containerization technologies (Docker, Kubernetes)
• Experience with large-scale, distributed systems

-

________________________________________________________________________________________

What You Can Expect:

 

A culture of integrity.

At CACI, we place character and innovation at the center of everything we do. As a valued team member, you’ll be part of a high-performing group dedicated to our customer’s missions and driven by a higher purpose – to ensure the safety of our nation.

 

An environment of trust.

CACI values the unique contributions that every employee brings to our company and our customers - every day. You’ll have the autonomy to take the time you need through a unique flexible time off benefit and have access to robust learning resources to make your ambitions a reality.

A focus on continuous growth.

Together, we will advance our nation's most critical missions, build on our lengthy track record of business success, and find opportunities to break new ground — in your career and in our legacy. 

 

Your potential is limitless. So is ours.

Learn more about CACI here.

________________________________________________________________________________________

Pay Range: There are a host of factors that can influence final salary including, but not limited to, geographic location, Federal Government contract labor categories and contract wage rates, relevant prior work experience, specific skills and competencies, education, and certifications. Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives. We offer competitive compensation, benefits and learning and development opportunities. Our broad and competitive mix of benefits options is designed to support and protect employees and their families. At CACI, you will receive comprehensive benefits such as; healthcare, wellness, financial, retirement, family support, continuing education, and time off benefits. Learn more here.

The proposed salary range for this position is:

$94,400 - $198,300

CACI is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, age, national origin, disability, status as a protected veteran, or any other protected characteristic.