Splunk Engineer

Job description

Responsibilities The Mid-Level Splunk Engineer supports enterprise-wide monitoring, alerting, and analytics across the customer’s operational and security environments. This position develops and maintains custom Splunk dashboards, visualizations, and alerts that provide actionable insights for NOC and SOC personnel. The engineer ensures data integrity, visibility, and system performance across mission-critical networks and applications supporting government operations. This role bridges IT operations and cybersecurity by delivering analytics solutions that enhance situational awareness, reduce incident response time, and support compliance with NIST 800-171, and DoD 8570 requirements. Key Responsibilities: - Design, develop, and maintain custom Splunk dashboards, alerts, and reports to support both NOC and SOC operations. - Onboard new data sources including network appliances, servers, security tools, and applications using forwarders, APIs, and syslog integrations. - Implement data normalization using the Splunk Common Information Model (CIM) to support consistent reporting and event correlation. - Develop and optimize SPL queries, regex extractions, and macros for high-performi...