SR Splunk Engineer

About Peraton
Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees solve the most daunting challenges that our customers face. Visit to learn how we're keeping people around the world safe and secure.

Program OverviewCybersecurity experts, Scrum and Agile professionals and engineers (systems, software, network, and cloud reliability) design and sustain cloud infrastructure to host spacecraft command and control systems. Infrastructure as a Service (IaaS), Antenna as a Service (AaaS), Data as a Service (DaaS), and an active Admin Wide Area Network (AWAN) team are provided.

About The Role
Peraton is seeking a Senior Splunk Engineer, in our Chantilly, VA office in support of a Department of Defense (DoD) Community customer. The engineer will be responsible for the design, implementation, optimization, and maintenance of the enterprise Splunk platform for a private cloud-based program. This role involves ensuring the stability and performance of the environment, integrating new data sources, developing complex search queries, and building dashboards and reports to support critical business and security operations. Join us and be part of the next generation of innovators as we blaze a trail forward for our profession and company.

What You'll Do

• Platform Management: Install, configure, and maintain all components of a distributed Splunk environment (Indexers, Search Heads, Forwarders, Deployment Servers, License Manager, etc.)
• Data Onboarding: Integrate new logs and data sources from various systems (e.g. operating systems, network devices, applications, security tools) using universal and heavy forwarders, ensuring efficient ingestion and parsing.
• Search & Content Development: Develop and optimize complex Search Processing Language (SPL) queries, alerts, reports, and visualizations to meet the needs of security, application, and operations teams.
• Performance & Optimization: Tune the Splunk environment for optimal performance, ensuring data retention policies are met, and managing storage/indexing tiering (e.g. hot/warm/cold, and smart store)
• Automation: Utilize scription (e.g. Python, Shell) and configuration management tools (e.g. Ansible, Helm) to automate Splunk deployment, configuration, and data source onboarding processes
• Documentation & Training: Create and maintain detailed documentation for the Splunk architecture, processes, and content, and provide training to end-user and administrators Qualifications

Required Qualifications:

• Associates degree and 10+ years of experience in a Systems Engineering related field; OR bachelor's degree in Computer Science, Computer Engineering, or related field and 8+ years of experience in a Systems Engineering related field; OR a master's degree in Computer Science, Computer Engineering, or related field and 6+ years of experience in a Systems Engineering related field. Additional Four (4) years of relevant experience will be considered in lieu of a bachelor's degree
• This position requires the candidate possess a minimum of Top-Secret clearance with the ability to obtain TS/SCI. The candidate must maintain the clearance.
• 3+ years of hands-on experience as a Splunk Administrator or Engineer in a large, distributed enterprise environment.
• Advanced proficiency in writing and optimizing complex Search Processing Language (SPL) queries.
• Deep understanding of Splunk architecture, including clustering, data ingestion, pipelines, and best practices for scaling.
• Strong working knowledge of Linux/Unix and Windows operating systems for deployment and troubleshooting
• Strong working knowledge of Kubernetes platform for deployment and troubleshooting
• Experience with scripting languages (e.g. Python or Shell) for automation tasks.
• Fundamental understanding of networking concepts (TCP/IP, firewalls) relevant to log collection and data