Sign Up Sign Up Log In Sign Up

Splunk Architect

Job Description

What You’ll Get to Do:

If chosen, YOU will get to work with an agile, fast paced team focused on defending our client’s global networks through threat hunting and tactical analysis of ongoing attacks. In this role, you will assist our growing consulting practice with design, installation, administration, and development of a myriad of Splunk related activities for our customer. These activities include but are not limited to log parsing and alert monitoring, reporting, custom queries, dashboards, and security roles administration. If chosen, YOU will have the opportunity to work on highly visible projects that directly make an impact to the Nations mission. YOU will be a motivated, passionate leader with the ability to drive our long-term strategic goals with daily tactical objectives. YOU will be a critical component in taking complex problems and delivering solutions that are simple yet elegant.

More About the Role:

  • Design and manage a distributed Splunk environment, including indexing cluster, multiple search heads, license server, deployment server and the Linux servers hosting the Splunk software
  • Excellent understanding of Splunk setup, configuration, and tuning
  • Developed and/or maintained system documentation and standards
  • Monitoring system resource utilization to detect and solve problems that are about to occur
  • Ability to maintain relationships with customers with diverse needs
  • Architect, design, support, and maintain Splunk infrastructure
  • Standardize Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms
  • Troubleshoot Splunk server and agent problems and issues
  • Assist internal users of Splunk in designing and maintaining production-quality dashboards
  • Monitor the agent and server infrastructure for capacity planning and optimization
  • Design core systems performance and troubleshooting logs
  • Support Splunk on Linux and Windows-based platforms
  • Perform data mining and analysis, utilizing various queries and reporting methods
  • Solve complex Integration challenges and debug complex configuration issues
  • Technical writing/creation of formal documentation such as architecture diagrams, technical designs, and SOPs

You’ll Bring These Qualifications:

  • Must have an active TS/SCI with Poly
  • Has a University Degree (BA/BS) or equivalent
  • Demonstrated experience writing SPLUNK queries utilizing lookup tables and accelerated data models in a power user role
  • Demonstrated experience writing SPLUNK queries and displaying the results in the form of reports, dashboards, or alerts
  • Demonstrated experience performing SPLUNK installations to include hardware recommendations, software installs, and search head configuration
  • Experience working in SPLUNK Enterprise Security User Behavior Analysis Platforms
  • Hands on experience with network logging and monitoring tools such as Cisco Network Analysis Module, or LogRhythm
  • Hands on experience writing scripts for automation, parsing data sets, and network monitoring (e.g. bash, Perl, Python, etc.)
  • Proficient working in a Linux environment- (Centos, Ubuntu, Kali)

What We Can Offer You:

- We’ve been named a Best Place to Work by the Washington Post.

- Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.

- We offer competitive benefits and learning and development opportunities.

- We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.

- For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.

Job Location



CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

Company Name:
Security Clearance:
Top Secret / SCI + Poly
Chantilly, Virginia
United States
Not Specified
Job Number:

Send me email alerts for similar jobs