Senior Splunk Cybersecurity Engineer - Architect SME - Remote

Overview

Dragonfli Group is a cybersecurity and IT consulting firm headquartered in Washington, DC, serving federal and commercial clients nationwide. We deliver mission-driven consulting services across security engineering, cloud infrastructure, data science, and digital modernization.

In Short

• Lead the design, deployment, automation, and maintenance of Splunk in a complex hybrid infrastructure.
• Collaborate with cross-functional stakeholders from DevOps, Security, and IT Operations.
• Support a large federal agency.
• Develop complex dashboards, alerts, and searches using SPL.
• Integrate Splunk with cloud platforms and external systems via APIs.
• Troubleshoot ingest, parsing, and data integrity issues.
• Mentor junior engineers and support technical escalation.
• Align Splunk capabilities with cybersecurity policies and compliance.
• Remote role with occasional off-hours or weekend support.
• U.S. Citizenship or Permanent Residency is required.

Requirements

• 10+ Years of Splunk Experience Required.
• Experience with Splunk deployment and configuration management in large-scale environments.
• Proficiency in writing complex Splunk queries, dashboards, and alerts using SPL.
• Experience with REST APIs for Splunk and external system integration.
• Strong problem-solving skills and communication skills.
• Experience in mentoring and guiding junior researchers or team members.
• Ability to analyze and troubleshoot complex data ingestion and parsing issues.
• Self-starter with a service-oriented mindset.
• Strong scripting skills in Bash, Python, JavaScript, SQL, and PowerShell.
• Understanding of security and compliance requirements.

Benefits

• Insurance - health, dental, vision.
• PTO & 11 Federal Holidays.
• 401(k), employer match.