Splunk Content Developer

Description

The Cyber Systems Engineer – Splunk Content Developer is responsible for designing, engineering, and enhancing advanced cybersecurity capabilities across a large-scale enterprise environment supporting DHS/FEMA missions.

This role focuses on the development, administration, and optimization of security monitoring and detection capabilities, including the maintenance of cyber defense tools, strengthening network and endpoint security, and integrating security technologies within complex enterprise infrastructures.

A key responsibility of this position is the development and tuning of custom detection content within the Splunk Security Information and Event Management (SIEM) platform using advanced Search Processing Language (SPL), data models, and related security analytics technologies. The engineer will create scalable, resilient, and automated security solutions that improve threat detection, reduce response times, and protect mission-critical assets.

.

Primary Responsibilities

Cyber Tool & Security Architecture Engineering

• Support and maintain advanced cyber tools and security capabilities across enterprise DHS/FEMA environments.

• Cyber Tools include:

• Splunk

• Axonius

• Cribl

• Corelight

• Forescount

• Wraithwatch

• Cyrtica

Cyber Operations Engineering & Troubleshooting

• Conduct deep-dive analysis and troubleshooting of complex endpoint security issues.

• Engineer permanent solutions using advanced diagnostic tools and methodologies.

• Develop and enforce security policies, compliance configurations, and hardened endpoint baselines.

Security Hardening, Resiliency & Continuity

• Engineer backup, redundancy, and disaster recovery strategies for endpoint security infrastructure.

• Develop innovative methods to improve operational efficiency, scalability, and cyber resilience.

Documentation, Reporting & Knowledge Sharing

• Produce detailed engineering documentation, system diagrams, and security reports.

• Provide technical guidance, mentorship, and specialized training to junior engineers and administrators.

• Support large-scale security exercises, vulnerability assessments, and readiness events.

Basic Qualifications:

• Bachelor’s Degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field and 12+ years of experience or MS Degree and 10 years of experience In addition, at least eight (8) years of experience in incident detection and response, malware analysis, or cyber forensics

• Extensive experience working with various security methodologies and processes

• Advanced knowledge of TCP/IP protocols, experience configuring and implementing various technical security solutions, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices

• Expert knowledge in two or more of the following areas related to cybersecurity:

Vulnerability Assessment, Intrusion Prevention and Detection, Access Control and Authorization, Policy Enforcement, Application Security, Protocol Analysis, Firewall Management, Incident Response, Web-filtering, Advanced Threat Protection

• Experience developing advanced correlation rules utilizing data models for cyber threat detection

• Experienced with creating and maintaining Splunk knowledge objects

• Experienced managing and maintaining Splunk data models

• Experience creating regex for pattern matching

• Experience implementing security methodologies and SOC processes

• TS Clearance

Preferred Qualifications

• Experience with cloud (e.g. o365, Azure, AWS, etc) security monitoring and familiar with cloud threat landscape

• Completed Splunk Advance Searching and Reporting training

• Experience developing custom scripts using python

• Splunk certifications

If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo — because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 — and moving faster than anyone else dares.

Original Posting:

June 4, 2026

For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

Pay Range $131,300.00 - $237,350.00

The Leidos pay range for this job level is a general guideline onlyand not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

About Leidos

Leidos is an industry and technology leader serving government and commercial customers with smarter, more efficient digital and mission innovations. Headquartered in Reston, Virginia, with 47,000 global employees, Leidos reported annual revenues of approximately $16.7 billion for the fiscal year ended January 3, 2025. For more information, visit .

Pay and Benefits

Pay and benefits are fundamental to any career decision. That's why we craft compensation packages that reflect the importance of the work we do for our customers. Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement. More details are available at .

Securing Your Data

Beware of fake employment opportunities using Leidos’ name. Leidos will never ask you to provide payment-related information during any part of the employment application process (i.e., ask you for money), nor will Leidos ever advance money as part of the hiring process (i.e., send you a check or money order before doing any work). Further, Leidos will only communicate with you through emails that are generated by the Leidos.com automated system – never from free commercial services (e.g., Gmail, Yahoo, Hotmail) or via WhatsApp, Telegram, etc. If you received an email purporting to be from Leidos that asks for payment-related information or any other personal information (e.g., about you or your previous employer), and you are concerned about its legitimacy, please make us aware immediately by emailing us at View email address on click.appcast.io .

If you believe you are the victim of a scam, contact your local law enforcement and report the incident to the U.S. Federal Trade Commission ( .

Commitment to Non-Discrimination

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

REQNUMBER: R-00184862-OTHLOC-6314

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. Leidos will consider qualified applicants with criminal histories for employment in accordance with relevant Laws. Leidos is an equal opportunity employer/disability/vet.