SAIC is seeking a highly motivated Splunk Engineer SME to join their Cloud One A1 Multi-Cloud Environment (MCE) team. The selected candidate will be responsible for the design, planning, management, support, and oversight of the A1 MCE infrastructure, focusing on Splunk and Splunk Enterprise Security implementation.
Responsibilities:
- Configure, deploy, and troubleshoot the Splunk environment, including Splunk Enterprise Security
- Design and manage data visualizations, dashboards, and reports to support analytics and reporting requirements
- Implement interactive features and drill-down capabilities in Splunk dashboards to enhance the user experience and enable deeper data exploration
- Manage system health, data ingestion pipelines, and infrastructure to ensure optimal Splunk performance
- Collaborate with customers and other stakeholders to analyze requirements, implement Splunk solutions, and conduct root cause analysis for issues
- Provide recommendations and implement corrective actions to optimize Splunk performance and functionality
- Deliver expertise in Splunk toolsets to stakeholders through clear communication and reporting
- Support efforts to modernize and secure multi-cloud infrastructures within the A1 MCE environment, which may include cloud platforms such as AWS, Azure, and Oracle Cloud
- Ensure integration and alignment of Splunk with broader multi-cloud strategies and security architectures
- Provide mentoring and technical guidance to team members
- Support on-call tasks as required for critical systems, troubleshooting and resolving urgent issues
Requirements:
- Bachelors and nine (9) years or more experience; Masters and seven (7) years or more experience; PhD or JD and four (4) years or more experience
- 4+ years of hands-on experience with Splunk and Splunk Enterprise Security, including the development of dashboards for analytics and reporting purposes
- Expertise in implementing interactive features and drill-down capabilities to enhance Splunk dashboards
- Deep understanding of Splunk configurations, infrastructure, and overall environment management
- Security+ or an equivalent IAT Level II certification
- Splunk Enterprise Security Certified Administrator
- Active Interim Secret clearance or higher; Ability to obtain a Secret clearance required to maintain employment
- US citizenship
- Additional Splunk Certifications: Splunk Enterprise Certified Administrator. Splunk Enterprise Certified Architect
- Experience with security concepts, such as vulnerability assessments, data classification, incident response, security policy creation, and enterprise security architectures
- Familiarity with regulatory compliance requirements and privacy/data protection issues relevant to mission-critical environments
- Ability to work within a team environment and mentor junior team members
- Strong interpersonal and communication skills with the ability to deliver complex technical messages to various audiences
- Practical experience using Agile, Scrum, or SAFe methodologies
- Hands-on experience with enterprise architecture methods in cross-functional teams
- Ability to integrate solutions that align with overall organizational security strategies
- Ability to work independently with minimal direction while contributing to team objectives