Splunk Engineer
About The Position
Advance how our customers operate while you advance your career. Join GDIT as a Splunk Engineer and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you. MEANINGFUL WORK AND PERSONAL IMPACT As a Splunk Engineer, the work you’ll do at GDIT will be impactful to the mission of USCENTCOM. You will play a pivotal role in enabling data driven cyber operations and accelerating the command’s ability to detect, respond to, and mitigate threats. You will lead the engineering, deployment, and optimization of Splunk Enterprise and Splunk Enterprise Security (ES) solutions that support high tempo operations and mission critical decision making. In this role, you will design, architect, and maintain enterprise‑scale observability and Splunk solutions that provide real‑time visibility into mission‑critical applications, networks, and infrastructure. Job Duties include: Lead the design, deployment, and administration of Splunk Enterprise, Splunk ES, and Splunk ITSI across complex, multi classification environments supporting CENTCOM missions. Engineer end to end data ingestion pipelines, including onboarding, parsing, CIM normalization, correlation rule development, and integration with enterprise security tools. Develop advanced dashboards, alerts, analytics, and automation to support threat hunting, incident response, and operational reporting for the Joint Cyber Center (JCC). Conduct performance tuning, capacity planning, system hardening, and lifecycle management of Splunk infrastructure to ensure high availability and resilience. Collaborate with cybersecurity, network, and systems engineering teams to integrate Splunk with SIEM/SOAR platforms, mission systems, and emerging technologies. Perform vulnerability analysis, risk assessments, and forensic support using Splunk based analytics and data models. Translate CENTCOM operational requirements into scalable, secure, and cost effective Splunk solutions aligned with mission priorities. Build trusted relationships with CENTCOM stakeholders, providing expert guidance and mentoring junior engineers. May serve as a team or task lead, guiding technical execution and ensuring alignment with operational and cybersecurity objectives. WHAT YOU’LL NEED TO SUCCEED Bring your technology expertise and drive for innovation to GDIT. The Systems Engineer Sr Principal must have:
Requirements
- 10+ years of related experience in cybersecurity, systems engineering, or enterprise monitoring
- 3–5+ years of hands on Splunk engineering experience (Enterprise, ES, or ITSI)
- Proficiency in SPL (Search Processing Language)
- Experience with CIM mapping, data modeling, and correlation searches
- Strong Linux administration skills
- Familiarity with Python, REST APIs, and automation frameworks
- Understanding of enterprise cybersecurity tools, SIEM/SOAR, and network architecture
- Experience supporting classified environments and secure enclaves
- Bachelor’s degree in Computer Science, Cybersecurity, Information Systems, Engineering, or a related technical field. Equivalent military or industry experience may be considered in lieu of a degree.
- Current DoW 8140 or DoW 8570 Certification
- TS/SCI required
- US citizenship required
Nice To Haves
- Splunk Certifications
- Experience supporting DoW, IC, or federal cyber operations
Responsibilities
- Lead the design, deployment, and administration of Splunk Enterprise, Splunk ES, and Splunk ITSI across complex, multi classification environments supporting CENTCOM missions.
- Engineer end to end data ingestion pipelines, including onboarding, parsing, CIM normalization, correlation rule development, and integration with enterprise security tools.
- Develop advanced dashboards, alerts, analytics, and automation to support threat hunting, incident response, and operational reporting for the Joint Cyber Center (JCC).
- Conduct performance tuning, capacity planning, system hardening, and lifecycle management of Splunk infrastructure to ensure high availability and resilience.
- Collaborate with cybersecurity, network, and systems engineering teams to integrate Splunk with SIEM/SOAR platforms, mission systems, and emerging technologies.
- Perform vulnerability analysis, risk assessments, and forensic support using Splunk based analytics and data models.
- Translate CENTCOM operational requirements into scalable, secure, and cost effective Splunk solutions aligned with mission priorities.
- Build trusted relationships with CENTCOM stakeholders, providing expert guidance and mentoring junior engineers.
- May serve as a team or task lead, guiding technical execution and ensuring alignment with operational and cybersecurity objectives.
Benefits
- Comprehensive benefits and wellness packages
- 401K with company match
- Competitive pay and paid time off
- Full flex work weeks where possible
- A variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave
- Short and long-term disability benefits
- Life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
