Apply on Employer Site

TIAG® · 1 week ago

Splunk Architect

United States

Full-time

Remote

Mid, Senior Level

$120K/yr - $140K/yr

3+ years exp

TIAG is now hiring a Splunk Architect/ Splunk SME to support upcoming work within the DHA. The Splunk Architect serves as the program’s Splunk SIEM technical authority, managing and maintaining Splunk to ensure visibility of customer systems and supporting incident response operations.

Information ServicesInformation Technology

No H1B

U.S. Citizen Only

Responsibilities

Own Splunk platform administration, configuration, and ongoing maintenance to ensure stable operations

Onboard and sustain required log sources and data feeds; validate data quality, completeness, and coverage

Develop and maintain searches, alerts, correlation rules, and reporting to support monitoring and triage

Build and sustain operational and leadership dashboards; deploy initial dashboards rapidly and maintain availability targets

Produce weekly monitoring reports covering alerts, incidents, and compliance status for government leadership

Review Splunk-generated vulnerability and threat alerts; notify designated personnel and provide mitigation recommendations within required timelines

Implement and maintain integrations between Splunk and security tools (e.g., firewalls, IDS/IPS, threat feeds) to improve visibility and response

Enable incident response workflows through automation and analyst-facing data views to accelerate triage and prioritization

Participate in governance activities (e.g., change control/working groups) and provide technical inputs and status updates as assigned

Qualification

Splunk Enterprise Certified ArchitectSplunk architecture experienceSIEM integration experienceData onboardingOperational reportingIncident response supportExecutive-ready dashboardsGovernance activities participationAutomation workflows

Required

Active Splunk Enterprise Certified Architect certification

A minimum of 3 years of demonstrated enterprise Splunk architecture and administration experience (data onboarding, dashboards, alerting, reporting)

Experience integrating SIEM with security tools and log sources; ability to engineer reliable data pipelines

Ability to develop executive-ready dashboards and operational reporting on a recurring cadence

Ability to meet High Risk Public Trust (Tier 4) suitability requirements

Preferred

Experience supporting federal cybersecurity programs in regulated environments (FISMA/HIPAA/NIST)

Hands-on incident response support experience and SIEM-driven triage workflows

Experience with Splunk Enterprise Security (ES), SOAR automation, and detection engineering at scale

Company

TIAG®

Delivering transformative technology solutions for the public sector and across the Department of Defense, TIAG drives modernization through synergistic processes and unique approaches.

Founded in 1999

Reston, Virginia, USA

201-500 employees