Description:

The position is for a Splunk/DevOps Engineer on a long-term contract lasting over 2 years, fully funded.
The role is fully remote, with a preference for candidates in the EST timezone.
The engineer will manage and maintain a large-scale Splunk deployment hosted in AWS.
Responsibilities include integrating, configuring, and optimizing Splunk for log analysis, monitoring, and troubleshooting.
The engineer will collaborate with development and operations teams to ensure system performance, scalability, and security.
Automation and optimization of deployment processes, monitoring, and infrastructure using Infrastructure as Code (IaC) tools such as Terraform, Ansible, or CloudFormation is required.
The role involves implementing security best practices and leveraging Splunk Enterprise Security for system monitoring.
Troubleshooting production issues and resolving system/application errors within the Splunk ecosystem is a key responsibility.
The engineer will set up and manage SC4S (Splunk Connect for Syslog) for log collection.
Executing standard Splunk onboarding procedures to ensure proper log ingestion, parsing, and adherence to the Splunk Common Information Model (CIM) is necessary.
The engineer will implement and manage Splunk apps and add-ons for specialized use cases and data visualizations.

Requirements:

Candidates must have 8+ years of experience as a Splunk Security Engineer or DevOps Engineer in a large, distributed environment.
US Citizenship or Green Card holder is required.
Proven experience operating and managing Splunk in cloud (AWS) and/or hybrid environments is essential.
Strong knowledge of AWS infrastructure and services, with hands-on experience in platform optimization, is necessary.
Proficiency in Linux, shell scripting, and GitHub for code management is required.
Hands-on experience with Terraform, CloudFormation, or similar automation tools is necessary.
Familiarity with CI/CD tools is required.
Experience with containerization (Docker, Kubernetes) and working within cloud environments (AWS, Azure, GCP) is essential.
Strong problem-solving and troubleshooting skills, particularly in multi-tenant enterprise environments, are required.
Expertise in Splunk Search Processing Language (SPL), dashboard creation, and complex query development is necessary.
Excellent communication and collaboration skills, with the ability to work under pressure in fast-paced environments, are required.

The position offers a fully remote work environment, allowing for flexibility in work location.
The contract is long-term, providing job security for over 2 years.
The role involves working with a national government integrator, contributing to significant projects for a government agency.
Opportunities for professional growth and development in a dynamic and challenging environment are available.
The position may provide exposure to advanced technologies and practices in cloud and security monitoring.