🛠 Tech Stack

💼 About This Role

You'll be part of a team maintaining Splunk instances for various clients, focusing on data onboarding, content development, reporting, and visualizations. Your work will directly impact the security posture of federal customers.

🎯 What You'll Do

• Ingest logs into Splunk via Cribl
• Develop actionable alerts and workflows for Splunk ES
• Create custom dashboards for Risk Based Alerting
• Configure incident response workflows for notable events

📋 Requirements

• Splunk Consultant Certification
• Heavy Splunk ES experience
• Experience ingesting logs via Cribl
• Experience with RBA and content development

✨ Nice to Have

• Background supporting federal customers
• Experience with machine learning models for anomaly detection

🎁 Benefits & Perks

• 🏆 Best Places to Work recognition
• 📚 Access to full knowledge base and training tools
• 💬 Internal Slack community for collaboration
• 🔧 Tools to train, demo, and test professional skills

🚩 Heads Up

• Requires US Background Check but not explicitly for US citizens only
• Multiple certifications required (Splunk Consultant + ES Accreditation)