Sr Splunk SME

CDW

23h•Onsite

About The Position

At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It’s why we’re coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we’re headed. We’re proud to share our story and Make Amazing Happen at CDW. Overview We’re seeking a highly skilled Senior Splunk Subject Matter Expert (SME) to support mission-critical operations at Fort Meade, MD. This role is ideal for a seasoned engineer who thrives in secure environments, excels at solving complex data challenges, and can guide enterprise-level Splunk architecture, engineering, and analytics efforts. You’ll play a pivotal role in advancing security, observability, and operational intelligence across a high‑visibility government program.

Requirements

Active TS/SCI with Full-Scope Polygraph (no exceptions).
7+ years of hands-on experience with Splunk engineering, administration, and architecture.
Deep expertise with Splunk Enterprise, Splunk ES, and large-scale distributed deployments.
Strong proficiency in SPL, data modeling, and dashboard development.
Experience onboarding diverse data sources (syslog, APIs, cloud, custom apps).
Solid understanding of cybersecurity frameworks, SIEM concepts, and log analytics.
Ability to operate in a fast-paced, mission-focused, highly secure environment.
Excellent communication skills and the ability to brief technical and non-technical stakeholders.

Nice To Haves

Splunk certifications (Architect, Consultant, ES Analyst/Admin, Core Certified Power User).
Experience with automation tools (Ansible, Python, Terraform).
Familiarity with cloud platforms (AWS, Azure, GovCloud) and hybrid architectures.
Background supporting DoD, IC, or other classified programs.
Knowledge of data governance, zero trust, and enterprise security architectures.

Responsibilities

Lead the design, deployment, configuration, and optimization of enterprise Splunk environments (Enterprise, ES, ITSI, UF/HF/IDX/SH tiers).
Develop and maintain dashboards, alerts, correlation searches, and data models to support cybersecurity, operations, and mission analytics.
Serve as the primary Splunk technical authority, advising leadership and engineering teams on best practices, architecture decisions, and data strategy.
Integrate new data sources, validate data quality, and ensure proper onboarding using CIM and other frameworks.
Troubleshoot complex Splunk performance issues, ingestion failures, and search inefficiencies.
Support compliance, auditing, and security initiatives through advanced Splunk reporting and automation.
Mentor junior engineers and analysts; provide technical guidance and documentation.
Collaborate with cross-functional teams to enhance monitoring, detection, and operational visibility.
Maintain strict adherence to security policies, accreditation requirements, and classified environment protocols.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume