RemoteLeaf Logo
Log in Sign up

Senior Principal Splunk Architect

3 hours, 13 minutes ago
United States
Full-time
Lead
Security Engineer
DevOps and Infrastructure
AWS Azure Linux SIEM SOC Splunk
Apply Now

UltraViolet Cyber

UltraViolet Cyber is a cybersecurity company focused on unified offensive and defensive security operations. It describes itself as a practitioner-led MSSP delivering managed detection and response, SOC-as-a-Service, red teaming, penetration testing, application security testing, continuous threat exposure management, and dedicated defense, with its UV Lens Security-as-Code platform at the core of its integrated security operations approach.

Computer and Network Security
501-1000
View All Jobs 8

Description

  • Design and implement distributed Splunk Enterprise and Enterprise Security architectures for on-premises and hybrid cloud environments.
  • Define indexer clustering, search head clustering, and forwarder topologies to meet ingestion and availability requirements.
  • Build and optimize data ingestion pipelines, data models, and search performance for scalability and reliability.
  • Develop custom technical add-ons and field extractions for federal log sources, including endpoints, network devices, cloud platforms, and security tools.
  • Ensure Splunk platform compliance with FISMA, NIST RMF, M-21-31, CDM program requirements, and FedRAMP boundaries.
  • Provide technical governance over Splunk platform decisions and roadmap evolution.
  • Mentor junior engineers on SPL, data onboarding, and Enterprise Security content development.
  • Collaborate with SOC, network, and IT teams to align Splunk capabilities with operational and mission objectives.
  • Diagnose complex technical issues and develop practical solutions in a structured change-management environment.
  • Communicate findings and recommendations to leadership and non-technical stakeholders in clear, accessible language.

Requirements

  • US citizenship is required.
  • Must be able to pass a DHS EOD clearance.
  • Bachelor's degree plus 10 years of relevant experience, or master's degree plus 15 years of relevant experience.
  • 10+ years of Splunk experience in a large clustered environment.
  • Demonstrated expertise in Splunk administration and architecture.
  • Experience with Linux administration.
  • Experience with cloud platforms such as AWS and Azure.
  • Experience with scripting and log parsing.
  • Splunk Architect certification is required.
  • Splunk ES Certified Admin certification is required.
  • Cribl Admin certification is preferred.
  • Public Trust eligibility is required; Secret clearance is preferred.

Benefits

  • $180,000 - $240,000 annual salary.
  • 401(k) with 100% employer match on the first 3% contributed and 50% on the next 2%.
  • Medical, dental, and vision insurance starting the first day of the month after employment begins.
  • Group term life, short-term disability, and long-term disability coverage.
  • Voluntary life, hospital indemnity, accident, and critical illness coverage options.
  • Participation in the Discretionary Time Off (DTO) program.
  • 11 paid holidays annually.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

M

Líder de Seguridad de la Información

Marathon Talent 1-10 Human Resources

Líder de Seguridad de la Información para una fintech en crecimiento, responsable de estructurar e implementar el sistema de gestión de seguridad bajo marcos de gobernanza y continuidad operativa.

Colombia Full-time Senior Security Engineer
AWS
1 hour, 28 minutes ago
Ivanti

Senior Software Engineer - C++, Linux and Networking

Ivanti 1K-5K Internet Software & Services

Ivanti is hiring a software engineer to design and develop security features for its network security products within a global Secure Access and Zero Trust environment.

India Full-time Mid Level Security Engineer Software Engineer
Agile AWS Azure C++ DHCP Kubernetes Linux Microservices Network Security Python TCP/IP TLS
1 hour, 28 minutes ago
Aledade

Staff Security Engineer (DevSecOps)

Aledade 1K-5K Health Care Providers & Services

Aledade is hiring a Staff Security Engineer (DevSecOps) to design and maintain security services for its remote-first healthcare technology platform supporting independent primary care.

United States Full-time Lead Security Engineer
AWS Azure C# C++ CI/CD Databricks DevSecOps GCP Go Java Kubernetes Microservices Pulumi Python REST API Scala Snowflake
1 hour, 28 minutes ago
AHEAD

Sr. Network Engineer - Palo Alto

AHEAD 1K-5K IT Services

AHEAD is hiring a Senior Network Engineer to serve as an L3 TAC escalation expert for Palo Alto and related security and networking products, resolving critical enterprise support cases and feeding insights into product improvements.

India Full-time Lead Security Engineer Technical Support Engineer
CI/CD Linux Python REST API Wireshark
1 hour, 28 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers