SIEM Data Engineer/Splunk
About The Position
Titan Technologies is hiring! We are actively seeking a SIEM Data Engineer/Splunk Engineer to support a government intelligence agency customer. The Chief Information Office (CIO) is responsible for planning, maintaining, and sustaining the global CIO enterprise that supports critical national security missions. Through the SITE III multi-award IDIQ contract, the CIO delivers high-impact solutions that strengthen how the Defense Intelligence Agency operates today and prepares it for the future. SITE III supports warfighters, policymakers, and acquisition leaders across the Defense Intelligence Enterprise (DIE) by delivering a decisive Information and Communications Technology (ICT) advantage. Our teams provide strategic, technical, and program management expertise to modernize enterprise infrastructure, systems, and applications—ensuring they are secure, resilient, and mission-ready. This is not a staff augmentation program. SITE III focuses on managed services and outcome-driven solutions that improve integration, enable seamless information sharing, and protect critical data. If you’re interested in solving complex problems, working at scale, and helping modernize mission-critical systems, SITE III offers the opportunity to make a real difference. Job description The Splunk Engineer manages and enhances Splunk environments, designs and deploys infrastructure, develops dashboards, integrates data sources, monitors performance, collaborates with teams, and provides user training and support.
Requirements
- 2+ years managing and configuring Splunk
- 2+ years in Splunk architecture (indexers, search heads, forwarders, deployment server)
- 1+ year with Splunk REST API
- 2+ years configuring Cribl sources, destinations, routes, and collectors
- 2+ years building data pipelines and authoring configuration files
- 2+ years in Linux and Windows administration
- 1+ year with regex skills for field extraction and event breaking
- DoD 8570 IAT Level II certification, including Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND certification
- Must obtain a DoD 8570 Cyber Security Service Provider - Infrastructure Support certification prior to start date
- Active TS/SCI clearance; willingness to take a polygraph exam
Nice To Haves
- 1 year experience with DISA STIGs or other organizational hardening standards
- 2+ years networking fundamentals and troubleshooting tools
- Knowledge of common log formats and scripting languages such as Python, Bash, or PowerShell
- Strong communication skills, load-balancer fundamentals, Git, Ansible, and Python scripting knowledge
Responsibilities
- Design, deploy, and manage Splunk infrastructure
- Develop and maintain Splunk dashboards, queries, and alerts
- Integrate Splunk with various data sources to ensure comprehensive data ingestion
- Monitor and troubleshoot Splunk performance issues
- Collaborate with cross-functional teams to gather requirements and provide Splunk solutions
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
Associate degree
