Sr. Splunk / SIEM Engineer (TS Required)

Position Summary August Schell is seeking a Senior Splunk / SIEM Engineer with advanced hands‑on experience in designing, deploying, and maintaining large‑scale Splunk environments. The role requires strong technical capabilities in troubleshooting complex system issues, creating custom dashboards, and managing Splunk clusters aligned with best practices. The candidate will support a Department of Defense customer from the Mark Center in Alexandria, VA (hybrid role). Minimum Qualifications (Knowledge, Skills, and Abilities) Bachelor’s degree in computer science, Information Systems, Information Assurance, or other relevant field. At least five years of experience in Splunk administration or engineering roles. Knowledge of Splunk architecture, deployment models, and indexing best practices. At least ten years of overall Cybersecurity experience. At least five years of SIEM experience. Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies. Proficiency in creating custom dashboards and advanced queries. Must hold a current Splunk Administrator Certification. Must possess a valid DoD 8570 IAT‑II certification (e.g., Security+). Active Top Secret clearance is required; must be able to maintain Top Secret clearance. Strong problem‑solving skills and ability to work independently or within a team. Excellent written and verbal communication skills. Stand Out With DoD 8570 CSSP Analyst Certification desired. Familiarity with DevOps and automation tools such as Ansible or Terraform. Knowledge of compliance frameworks and reporting (RMF, NIST 800‑53). Experience with Enterprise Security (ES) and/or ITSI modules within Splunk. Experience with Elastic. Familiarity with Linux and Windows server environments. Essential Duties and Responsibilities Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms. Develop and optimize advanced Splunk dashboards and queries to support mission‑critical operations. Troubleshoot and resolve issues within large‑scale, complex Splunk environments. Implement best practices for indexing, data transformation, and system architecture. Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions. Support vulnerability and STIG scanning operations and interpret outputs for system compliance. Manage virtual environments including VRFs and VLAN. Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements. Document configurations and operational procedures for audit and continuity purposes. Physical Demands and Work Environment Prolonged periods of sitting at a desk and working on a computer. Work is primarily performed on‑site (Alexandria, VA) at the customer site 3 days a week; remote work permitted 2 days a week. Standard in‑office conditions apply, though the role may require adapting to secure or compliance‑sensitive environments as needed. Minimal distractions and noise levels typical of a secure government office and/or home office apply. Equal Employment Opportunity August Schell Enterprises Inc. is an Equal Employment Opportunity Employer. We are committed to providing a workplace that is free from discrimination and harassment based on race, color, religion, sex (including pregnancy, sexual orientation or gender identity), national origin, age, marital status, disability, protected veteran status or any other characteristic protected by applicable law. Accommodations If you are an individual with a disability and would like to request a reasonable accommodation during the application or hiring process, please contact Human Resources at View email address on click.appcast.io . #J-18808-Ljbffr