Splunk Consultant—SIEM, Manassas, VA
Nagaraju
Only 1 round-Face to Face interview In Manassas, VA
Splunk Consultant—SIEM
Location : Manassas, VA
We are seeking a Senior Splunk Consultant to lead architecture, implementation, and optimization of
enterprise Splunk environments. This role requires deep expertise in Splunk Enterprise and Enterprise
Security (ES), including Risk-Based Alerting (RBA), performance tuning, automation, and advanced security
analytics.
Key Responsibilities
• Lead end-to-end Splunk architecture design, deployment, and optimization in enterprise
environments.
• Configure and tune Splunk Enterprise & ES for high-volume data ingestion, indexing efficiency, and
search performance.
• Design scalable data onboarding strategies aligned with CIM standards.
• Implement High Availability (HA), Disaster Recovery (DR), backup, and capacity planning strategies.
• Automate Splunk provisioning and configuration using Infrastructure-as-Code (Ansible).
• Develop advanced SPL queries, dashboards, reports, data models, macros, and alerts.
• Engineer and deploy Risk-Based Alerting (RBA) use cases and custom correlation rules.
• Optimize ES incident response workflows and automate notable event triage.
• Build executive dashboards and automate CISO-level reporting on risk posture and threat metrics.
• Conduct health checks, resolve performance bottlenecks, and improve overall system stability.
• Deliver SPL training and mentor engineering teams on best practices.
Required Qualifications
• 7+ years of hands-on Splunk Enterprise experience (ES required).
• Strong expertise in SPL development and optimization.
• Experience with distributed Splunk architecture and large-scale deployments.
• Knowledge of RBA, security analytics, and SIEM best practices.
• Experience with automation (Ansible or similar IaC tools).
• Strong communication and documentation skills.
Nagaraju
Nagaraju
Only locals
Nagaraju
Local OPT ,H4 EAD Profiles also good. Face to face interview is must.