What are the responsibilities and job description for the Sr. Splunk / SIEM Engineer (Secret Required) with Security Clearance position at August Schell?
Position Summary August Schell is seeking a Senior Splunk / SIEM Engineer with advanced hands-on experience in designing, deploying, and maintaining large-scale Splunk environments. This role requires strong technical capabilities in troubleshooting complex system issues, creating custom dashboards, and managing Splunk clusters aligned with best practices. The candidate will support a Department of Defense customer from the Mark Center in Alexandria, VA (hybrid role). Minimum Qualifications (Knowledge, Skills, and Abilities) Bachelor’s degree in computer science, Information Systems, Information Assurance or other relevant field.
At least five (5) years of experience in Splunk administration or engineering roles
Knowledge of Splunk architecture, deployment models, and indexing best practices
At least ten (10) years of overall Cybersecurity experience.
At least five (5) years of SIEM experience
Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
Proficiency in creating custom dashboards and advanced queries
Must hold a current Splunk Administrator Certification
Must possess a valid DoD 8570 IAT-II certification (ex. Security )
Active Secret clearance required; must be willing and able to obtain Top Secret clearance.
Strong problem-solving skills and ability to work independently or within a team
Excellent written and verbal communication skills Stand Out With DoD 8570 CSSP Analyst Certification desired
Familiarity with DevOps and automation tools such as Ansible or Terraform
Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
Experience with Elastic
Familiarity with Linux and Windows server environments Essential Duties and Responsibilities Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms
Develop and optimize advanced Splunk dashboards and queries to support mission-critical operations
Troubleshoot and resolve issues within large-scale, complex Splunk environments
Implement best practices for indexing, data transformation, and system architecture
Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions
Support vulnerability and STIG scanning operations and interpret outputs for system compliance
Manage virtual environments including VRFs and VLAN
Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements
Document configurations and operational procedures for audit and continuity purposes
Physical Demands and Work Environment The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the functions.
Prolonged periods of sitting at a desk and working on a computer.
Work is primarily performed on-site (Alexandria, VA) at the customer site 3 days a week, remote work permitted 2 days a week.
Standard in office conditions apply, though the role may require adapting to secure or compliance-sensitive environments as needed.
Minimal distractions and noise levels typical of a secure government office and/or home office apply. Note
This job description in no way states or implies that these are the only duties to be performed by the employee(s) of this position. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. Who we are...
August Schell Offers 30 Years Of Experience In Providing Our Customers Innovative Solutions And Engineering Services To Their Most Challenging Needs. We Thrive On Navigating Complex IT Difficulties And Are Driven To Find The Best Solutions For Our Customers. Our Team Delivers Expert Knowledge In Cyber Security, Big Data, Endpoint Security And Cloud Solutions. Our Ability To Serve Our Customers With Continued Excellence Is a Direct Reflection Of Our Dedicated And Exceptional People. At August Schell, We Are Not Only a Team, We Are a Family. Equal Employment Opportunity
August Schell Enterprises Inc. is an Equal Employment Opportunity Employer. We are committed to providing a workplace that is free from discrimination and harassment based on race, color, religion, sex (including pregnancy, sexual orientation or gender identity), national origin, age, marital status, disability, protected veteran status or any other characteristic protected by applicable law. Accommodations:
If you are an individual with a disability and would like to request a reasonable accommodation during the application or hiring process, please contact Human Resources at
At least five (5) years of experience in Splunk administration or engineering roles
Knowledge of Splunk architecture, deployment models, and indexing best practices
At least ten (10) years of overall Cybersecurity experience.
At least five (5) years of SIEM experience
Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
Proficiency in creating custom dashboards and advanced queries
Must hold a current Splunk Administrator Certification
Must possess a valid DoD 8570 IAT-II certification (ex. Security )
Active Secret clearance required; must be willing and able to obtain Top Secret clearance.
Strong problem-solving skills and ability to work independently or within a team
Excellent written and verbal communication skills Stand Out With DoD 8570 CSSP Analyst Certification desired
Familiarity with DevOps and automation tools such as Ansible or Terraform
Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
Experience with Elastic
Familiarity with Linux and Windows server environments Essential Duties and Responsibilities Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms
Develop and optimize advanced Splunk dashboards and queries to support mission-critical operations
Troubleshoot and resolve issues within large-scale, complex Splunk environments
Implement best practices for indexing, data transformation, and system architecture
Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions
Support vulnerability and STIG scanning operations and interpret outputs for system compliance
Manage virtual environments including VRFs and VLAN
Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements
Document configurations and operational procedures for audit and continuity purposes
Physical Demands and Work Environment The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform the functions.
Prolonged periods of sitting at a desk and working on a computer.
Work is primarily performed on-site (Alexandria, VA) at the customer site 3 days a week, remote work permitted 2 days a week.
Standard in office conditions apply, though the role may require adapting to secure or compliance-sensitive environments as needed.
Minimal distractions and noise levels typical of a secure government office and/or home office apply. Note
This job description in no way states or implies that these are the only duties to be performed by the employee(s) of this position. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. Who we are...
August Schell Offers 30 Years Of Experience In Providing Our Customers Innovative Solutions And Engineering Services To Their Most Challenging Needs. We Thrive On Navigating Complex IT Difficulties And Are Driven To Find The Best Solutions For Our Customers. Our Team Delivers Expert Knowledge In Cyber Security, Big Data, Endpoint Security And Cloud Solutions. Our Ability To Serve Our Customers With Continued Excellence Is a Direct Reflection Of Our Dedicated And Exceptional People. At August Schell, We Are Not Only a Team, We Are a Family. Equal Employment Opportunity
August Schell Enterprises Inc. is an Equal Employment Opportunity Employer. We are committed to providing a workplace that is free from discrimination and harassment based on race, color, religion, sex (including pregnancy, sexual orientation or gender identity), national origin, age, marital status, disability, protected veteran status or any other characteristic protected by applicable law. Accommodations:
If you are an individual with a disability and would like to request a reasonable accommodation during the application or hiring process, please contact Human Resources at