Splunk Engineer Active Public Trust Clearance - Target, Fannie Mae, Capital One

Key Responsibilities

• Lead the architecture, deployment, and tuning of Splunk Enterprise and Splunk Cloud platforms to support enterprise‑wide logging and security analytics.
• Integrate Splunk with AWS services (e.g., CloudWatch, S3, Kinesis) and hybrid on‑prem infrastructure to ensure continuous data ingestion and visibility.
• Develop, maintain, and enhance dashboards, alerts, and reports that enable real‑time threat detection, compliance reporting, and operational monitoring.
• Automate routine Splunk administration tasks and data pipelines using scripting languages and orchestration tools.
• Collaborate with cybersecurity, incident response, and IT operations teams to translate security requirements into Splunk use cases and actionable insights.

Requirements

• 5+ years of hands‑on experience administering Splunk Enterprise and/or Splunk Cloud in large, security‑focused environments.
• Strong knowledge of AWS services and experience integrating Splunk with AWS data sources.
• Proficiency in creating complex Splunk searches, SPL queries, dashboards, and alerts for security monitoring and compliance.
• Experience with automation/scripting (e.g., Python, PowerShell) to streamline data onboarding and platform management.
• Active Public Trust clearance (U.S. citizen) and demonstrated ability to work in federal government or regulated sectors.