Architectural Design, Architectural Services, Artificial Intelligence (AI), Cross-Domain Solutions (CDS), Data Management, Documentation, Enterprise Architecture, Establish Priorities, High Availability, IAT - Information Assurance Technical, Incident Response, Information/Data Security (InfoSec), Internet Security, Machine Learning, Machine Tool, Network Operations Center, Network Systems, Predictive Modeling, Protective Services, Python Programming/Scripting Language, Root Cause Analysis, Scripting (Scripting Languages), Security Attacks, Security Protocols, Splunk, Systems Engineering, Technical Support, Telemetry, Testing, Traceability, United States Department of Defense (DoD), Web Infrastructure
I have direct hire onsite Splunk Architect positions at Fort Belvoir, Virginia. The hiring company provides tailored cybersecurity, artificial intelligence, systems engineering services to public and private sectors.
Benefits for employees- medical, dental, vision, 401K, flexible spending accounts, short-term and long-term disability, life insurance, vacation and personal leave and additional benefits.
PLEASE SEND SALARY REQUIREMENTS AND RESUME IN WORD IF INTERESTED. Minimum active Top-Secret Clearance or higher
SPLUNK ARCHITECT-JOB DESCRIPTION
This role is responsible for the design, deployment, and management of AIOps solutions that enhance the reliability and security of Department of War (DoW) networks and systems. You will utilize Splunk and the Machine Learning Toolkit (MLTK) to provide predictive analytics and automated incident response, ensuring the high availability of mission-essential infrastructure.
Key Responsibilities:
- Architect and maintain Splunk AIOps solutions across unclassified and classified enclaves to provide real-time situational awareness.
- Deploy custom machine learning models via Splunk MLTK to identify anomalous behavior, potential cyber threats, and infrastructure degradations.
- Engineer secure data ingestion pipelines for telemetry data from cross-domain solutions and tactical edge devices.
- Utilize IT Service Intelligence (ITSI) to correlate multi-source events, reducing noise and prioritizing high-impact mission alerts.
- Collaborate with the Cyber Security Service Provider (CSSP) to integrate AIOps insights into defensive cyber operations (DCO).
- Ensure all observability tools and data handling practices comply with DoW STIGs and IL5/IL6 security protocols.
- Develop and maintain architectural documentation, identity diagrams, and compliance traceability.
Required Qualifications
- Active IAT Level II certification
- 7+ years of experience with Splunk Enterprise, including architectural design, cluster management, and advanced Search Processing Language (SPL).
- 3+ years of experience specifically implementing AIOps workflows, including automated root cause analysis and predictive maintenance.
- Proven track record of building, testing, and tuning supervised and unsupervised models within the Splunk MLTK.
- Advanced scripting skills for developing custom search commands and automating remediation tasks (e.g. Python).
- Prior experience working within a DoW/DoD Operations Center (NOC/SOC) or supporting mission-critical systems and networks.