Splunk Engineer
Tetrad Digital Integrity, Falls Church, VA, United States
Tetrad Digital Integrity (TDI) is a cybersecurity firm built for high-consequence environments where mission, complexity, and trust intersect. Our single focus has been delivering cyber solutions to effectively manage risk & the business of cyber for 25 years!
TDI is seeking a Splunk Engineer to design, implement, and optimize security analytics solutions, including data onboarding, automation, and cloud-native integrations within AWS environments. This role supports mission-critical operations by partnering with Agile teams to enhance detection capabilities, streamline infrastructure, and deliver scalable, secure data pipelines.
This position requires a TS/SCI active clearance and will require a hybrid commute with 2-3 days on site in Falls Church, VA.
RESPONSIBILITIES:
Ability to ingest, onboard, and index new data sources
Hands-on experience with Splunk Enterprise Security, User Behavior Analytics (UBA), and other security analytics platforms
Experience managing application directories, editing configuration files (e.g., inputs.conf, props.conf), and troubleshooting configuration issues via both GUI and terminal
Proficiency with collaboration and ticketing platforms such as SharePoint, Jira, Confluence, or similar tools
Experience leveraging automation and Infrastructure as Code (IaC) to manage installations, pipelines, and scripting
Strong scripting skills to integrate services and automate workflows using technologies such as Python, Bash, Boto3, JSON, YML, and XML
Experience working within Amazon Web Services (AWS) environments
Familiarity with containerization and orchestration tools, including Docker, Kubernetes, and configuration management tools such as Ansible
Ability to collaborate effectively with Agile/Scrum teams and deliver clear status updates and presentations on progress
QUALIFICATIONS:
Active TS/SCI clearance with ability to obtain a CI Polygraph
Bachelor of Science degree in Computer Science, Computer Engineering, Mathematics, Statistics, or a related technical engineering field
3+ years of experience with Splunk Enterprise, including Search Processing Language and the basics of writing Reports, Alerts, and Dashboards Management of infrastructure components (e.g., Indexers/Index Clusters, Search Heads, Universal Forwarders)
1+ years of experience with Linux/Windows OS system administration
1+ years of experience with drafting architectural and infrastructural diagrams
One of the following certifications and/or courses: Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect Certification, Splunk User Behavior Analytics, Splunk Enterprise Security
TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States.
“TDI is an Equal Opportunity Employer. Employment decisions are made based on individual qualifications, merit, and business needs. We do not discriminate in employment opportunities or practices based on race, color, religion, sex, or national origin, in accordance with applicable federal laws.”
TDI is seeking a Splunk Engineer to design, implement, and optimize security analytics solutions, including data onboarding, automation, and cloud-native integrations within AWS environments. This role supports mission-critical operations by partnering with Agile teams to enhance detection capabilities, streamline infrastructure, and deliver scalable, secure data pipelines.
This position requires a TS/SCI active clearance and will require a hybrid commute with 2-3 days on site in Falls Church, VA.
RESPONSIBILITIES:
Ability to ingest, onboard, and index new data sources
Hands-on experience with Splunk Enterprise Security, User Behavior Analytics (UBA), and other security analytics platforms
Experience managing application directories, editing configuration files (e.g., inputs.conf, props.conf), and troubleshooting configuration issues via both GUI and terminal
Proficiency with collaboration and ticketing platforms such as SharePoint, Jira, Confluence, or similar tools
Experience leveraging automation and Infrastructure as Code (IaC) to manage installations, pipelines, and scripting
Strong scripting skills to integrate services and automate workflows using technologies such as Python, Bash, Boto3, JSON, YML, and XML
Experience working within Amazon Web Services (AWS) environments
Familiarity with containerization and orchestration tools, including Docker, Kubernetes, and configuration management tools such as Ansible
Ability to collaborate effectively with Agile/Scrum teams and deliver clear status updates and presentations on progress
QUALIFICATIONS:
Active TS/SCI clearance with ability to obtain a CI Polygraph
Bachelor of Science degree in Computer Science, Computer Engineering, Mathematics, Statistics, or a related technical engineering field
3+ years of experience with Splunk Enterprise, including Search Processing Language and the basics of writing Reports, Alerts, and Dashboards Management of infrastructure components (e.g., Indexers/Index Clusters, Search Heads, Universal Forwarders)
1+ years of experience with Linux/Windows OS system administration
1+ years of experience with drafting architectural and infrastructural diagrams
One of the following certifications and/or courses: Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect Certification, Splunk User Behavior Analytics, Splunk Enterprise Security
TDI does business with the federal government, which restricts employment to individuals who are either US citizens or lawful permanent residents of the United States.
“TDI is an Equal Opportunity Employer. Employment decisions are made based on individual qualifications, merit, and business needs. We do not discriminate in employment opportunities or practices based on race, color, religion, sex, or national origin, in accordance with applicable federal laws.”