Splunk Architect - RemoteGeneral Dynamics Information Technology • Fairfax, Virginia, United States
This job offer is no longer available
Splunk Architect - Remote
General Dynamics Information Technology
- Fairfax, Virginia, United States
- Fairfax, Virginia, United States
About
This can be a
remote position
with the requirement to travel on site as needed.
Key Responsibilities
Architect, deploy, and optimize comprehensive Splunk Enterprise and Splunk Enterprise Security (ES) environments to ensure high performance and scalability under diverse use cases.
Lead the strategic development of Splunk solutions with a focus on modular designs, efficient configurations, and forward compatibility to meet future technological demands.
Evaluate Splunk data inputs and integrations, devising workflows that maximize interoperability across hybrid networks.
Develop tailored Splunk dashboards, advanced analytics tools, and system configurations to detect and correlate security events across complex enterprise environments.
Analyze security logs and data streams to identify anomalous behaviors and high‑risk patterns, enabling proactive mitigation of cybersecurity risks.
Collaborate with internal teams to conduct forensic investigations, refine monitoring capabilities, and enhance threat intelligence workflows.
Spearhead initiatives to automate Splunk workflows using scripting tools such as Python and PowerShell, streamlining data parsing, alerting, and reporting.
Provide technical mentorship to SOC analysts, forensic specialists, and IT administrators, fostering cross‑functional alignment on security protocols and system best practices.
Design Splunk architectures that adhere to organizational and regulatory compliance requirements, enabling solutions for audit readiness and policy enforcement.
Maintain detailed documentation for architectural configurations, operational playbooks, and troubleshooting guides with a focus on maintaining cybersecurity standards.
Required Qualifications
BA/BS or equivalent.
15+ years of experience (or 4 years experience can substitute for a degree).
In‑depth understanding of Splunk Enterprise Security environments, including expertise in SPL, modular data inputs, and advanced configurations.
Splunk Enterprise Certified Architect or Splunk Core Certified Consultant; current certification preferred or ability to obtain within 30 days.
Additional certifications such as Splunk Core Certified Consultant, Splunk Core Certified Power User, or similar strengthen candidacy.
Relevant cybersecurity credentials like CISSP, CEH, Security+ CE, or GIAC certifications (e.g., GCIH, GCFA).
Active Secret, TS/SCI, or DOE equivalent clearance (required).
US citizenship required.
Desired Attributes
Strong analytical mindset with ability to critically evaluate data and propose innovative cybersecurity strategies.
Exceptional communication skills to articulate technical findings and architectural decisions to both technical teams and non‑technical stakeholders.
Ability to thrive in high‑pressure environments, delivering critical insights and solutions to address urgent cybersecurity threats.
Compensation: likely salary range $170,144 - $230,000, based on experience, location, and contractual requirements.
Benefits
Comprehensive medical, dental, vision plans and 401(k) with company match.
Paid time off: vacation, sick, personal, holidays, paid parental, military, bereavement, jury duty.
Full flex work week to support work/life balance.
Additional disability, life, accident, critical illness, and travel insurance options.
Global benefits package reviewed regularly for competitiveness.
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans.
#J-18808-Ljbffr
Languages
- English
Notice for Users
This job was posted by one of our partners. You can view the original job source here.