RemoteLeaf Logo
Log in Sign up

Senior Principal Splunk Architect

3 weeks ago
United States
Full-time
Lead
Security Engineer
DevOps and Infrastructure
AWS Azure Linux SIEM SOC Splunk
Apply Now

UltraViolet Cyber

UltraViolet Cyber is a cybersecurity company focused on unified offensive and defensive security operations. It describes itself as a practitioner-led MSSP delivering managed detection and response, SOC-as-a-Service, red teaming, penetration testing, application security testing, continuous threat exposure management, and dedicated defense, with its UV Lens Security-as-Code platform at the core of its integrated security operations approach.

Computer and Network Security
501-1000
View All Jobs 4

Description

  • Design and implement distributed Splunk Enterprise and Enterprise Security architectures for on-premises and hybrid cloud environments.
  • Define indexer clustering, search head clustering, and forwarder topologies to meet ingestion and availability requirements.
  • Build and optimize data ingestion pipelines, data models, and search performance for scalability and reliability.
  • Develop custom technical add-ons and field extractions for federal log sources, including endpoints, network devices, cloud platforms, and security tools.
  • Ensure Splunk platform compliance with FISMA, NIST RMF, M-21-31, CDM program requirements, and FedRAMP boundaries.
  • Provide technical governance over Splunk platform decisions and roadmap evolution.
  • Mentor junior engineers on SPL, data onboarding, and Enterprise Security content development.
  • Collaborate with SOC, network, and IT teams to align Splunk capabilities with operational and mission objectives.
  • Diagnose complex technical issues and develop practical solutions in a structured change-management environment.
  • Communicate findings and recommendations to leadership and non-technical stakeholders in clear, accessible language.

Requirements

  • US citizenship is required.
  • Must be able to pass a DHS EOD clearance.
  • Bachelor's degree plus 10 years of relevant experience, or master's degree plus 15 years of relevant experience.
  • 10+ years of Splunk experience in a large clustered environment.
  • Demonstrated expertise in Splunk administration and architecture.
  • Experience with Linux administration.
  • Experience with cloud platforms such as AWS and Azure.
  • Experience with scripting and log parsing.
  • Splunk Architect certification is required.
  • Splunk ES Certified Admin certification is required.
  • Cribl Admin certification is preferred.
  • Public Trust eligibility is required; Secret clearance is preferred.

Benefits

  • $180,000 - $240,000 annual salary.
  • 401(k) with 100% employer match on the first 3% contributed and 50% on the next 2%.
  • Medical, dental, and vision insurance starting the first day of the month after employment begins.
  • Group term life, short-term disability, and long-term disability coverage.
  • Voluntary life, hospital indemnity, accident, and critical illness coverage options.
  • Participation in the Discretionary Time Off (DTO) program.
  • 11 paid holidays annually.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

K

Principal Security Engineer, Operations

K2 Space Corporation 51-200 Defense and Space Manufacturing

K2 Space is hiring a Principal Security Engineer to build the corporate security architecture that protects people, systems, and data while enabling rapid satellite company growth and mission operations.

United States Full-time Lead Security Engineer
$155k-$185k
C++ Go Network Security Python Rust
9 minutes ago
Pinterest

Security Software Engineer II, Security Operations

Pinterest 5K-10K Internet Software & Services

Pinterest is seeking a Security Software Engineer to join its Security Operations team and build the systems, automation, and workflows that protect the platform and improve how sensitive infrastructure is managed at scale.

United States Full-time Mid Level Security Engineer
$124k-$255k
AWS Terraform
24 minutes ago
MetroStar

Sr. DevSecOps Engineer III (6473)

MetroStar 251-1K IT Services

MetroStar is seeking a Sr. DevSecOps Engineer III to design, secure, and maintain classified software delivery pipelines and cloud infrastructure for government environments.

United States Full-time Lead DevOps Engineer Security Engineer
$174k-$202k
Ansible AWS Azure Bash CI/CD CloudFormation DevSecOps Docker EC2 GCP Jenkins Linux Python RHEL Terraform
39 minutes ago
HubSpot

Security Engineer

HubSpot 5K-10K Media

HubSpot is seeking a Security Engineer to evaluate, deploy, troubleshoot, and optimize security technologies that protect the company’s assets across cloud and on-premises environments.

United Kingdom Ireland Full-time Mid Level Security Engineer
AWS Azure Bash CrowdStrike Cybersecurity GCP PowerShell Python SIEM
1 hour ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers