Splunk Engineer

Description:

The Splunk Engineer Jr. will support the engineering, administration, and daily operations of the enterprise\-wide Splunk environment. This role is ideal for candidates with a strong foundation in Splunk administration who are eager to develop advanced engineering skills and contribute to the stability, scalability, and integration of Splunk within a large, distributed environment.

MINIMUM REQUIRED EXPERIENCE:

*2\+ years with Splunk

• administration and engineering

*4\+ years in IT or cybersecurity*

Responsibilities:

*Splunk Administration \& Engineering*

• Assist in the administration, configuration, and maintenance of Splunk components (search heads, indexers, deployers, cluster managers, forwarders, syslog servers) to ensure high availability and performance.
• Support the integration of new data sources into Splunk, following best practices for data onboarding and normalization.
• Collaborate with senior engineers to implement and maintain distributed and clustered Splunk environments.
• Participate in the deployment and management of Splunk apps, add\-ons, and technology integrations.

*Data Analysis \& Visualization*

• Develop and optimize saved searches, dashboards, alerts, and reports using SPL (Search Processing Language).
• Analyze data for anomalies, trends, and actionable insights, and present findings to stakeholders.

*Support \& Troubleshooting*

• Provide first and second\-level support for Splunk users, troubleshooting issues and resolving incidents.
• Work with application owners, network engineers, and other stakeholders to identify and resolve data ingestion and parsing issues.

*Automation \& Scripting*

• Assist with scripting and automation tasks (using Python, Bash, or PowerShell) to streamline Splunk operations and data onboarding.
• Support version control and deployment processes using Git or similar tools.

*Documentation \& Knowledge Sharing*

• Maintain and update Splunk knowledge base articles and technical documentation.
• Share knowledge and best practices with team members and end users.

*Skills \& Qualifications*

* 2\+ years of hands\-on experience with Splunk administration and engineering in a production environment.

• Proficiency with SPL and experience building dashboards, alerts, and reports.
• Familiarity with Linux/Unix command line and basic system administration.
• Understanding of data ingestion strategies (Universal Forwarders, Heavy Forwarders, APIs, HEC, syslog, TAs/Add\-ons).
• Experience with scripting languages (Python, Bash, or PowerShell) is a plus.
• Experience with Git or other version control systems is preferred.
• Strong troubleshooting, analytical, and communication skills.
• Ability to work independently and collaboratively in a remote team environment.

NICE TO HAVE

• Splunk Certified Admin or higher certification.
• Experience supporting healthcare or federal environments.
• Exposure to integrating Splunk with other IT monitoring tools.

MINIMUM QUALIFICATIONS:

• Bachelors or Higher in related field
• U.S. Citizenship
• Ability to obtain/maintain required security clearance.

*We offer competitive pay, full health benefits, 401K Employer Matching, Holiday, Paid Time Off and more.*

SDV INTERNATIONAL is an essential business. The health and safety of our team members is our highest priority, so we are taking a science driven approach to slowly welcome and transition some of our workforce back to the office with many safety protocols in place. This may include periodic site visits for teleworkers. We continue to monitor and assess before we confirm the return of each wave, paying specific attention to geography\-specific trends.

Diversity creates a healthier atmosphere: SDV INTERNATIONAL is an Equal Employment Opportunity/Affirmative Action employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin, protected veteran status, disability status, sexual orientation, gender identity or expression, marital status, genetic information, or any other characteristic protected by law.

Job Type: Full\-time

Pay: From $47,000\.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Health insurance
• Life insurance
• Paid time off
• Vision insurance

Application Question(s):

• Are you a US Citizen?
• Are you a US Citizen AND authorized to work for the Federal Government?

Education:

• Bachelor's (Required)

Experience:

• Splunk Administration: 2 years (Required)
• IT or Cybersecurity: 4 years (Required)

License/Certification:

• IAT Level II (Required)
• Splunk Certified Admin (Preferred)

Security clearance:

• Top Secret (Preferred)

Work Location: Remote