×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Systems Engineer

Splunk Content Developer

Job in Ashburn, Loudoun County, Virginia, 22011, USA
Listing for: Koitecc Solutions
Full Time position
Listed on 2026-06-10
Job specializations:
  • IT/Tech
    Cybersecurity, Systems Engineer
Salary/Wage Range or Industry Benchmark: 100000 - 130000 USD Yearly USD 100000.00 130000.00 YEAR
Job Description & How to Apply Below

The Cyber Systems Engineer - Splunk Content Developer is responsible for designing, engineering, and enhancing advanced cybersecurity capabilities across a large-scale enterprise environment supporting DHS/FEMA missions.

This role focuses on the development, administration, and optimization of security monitoring and detection capabilities, including the maintenance of cyber defense tools, strengthening network and endpoint security, and integrating security technologies within complex enterprise infrastructures.

A key responsibility of this position is the development and tuning of custom detection content within the Splunk Security Information and Event Management (SIEM) platform using advanced Search Processing Language (SPL), data models, and related security analytics technologies. The engineer will create scalable, resilient, and automated security solutions that improve threat detection, reduce response times, and protect mission‑critical assets.

Primary Responsibilities Cyber Tool & Security Architecture Engineering
  • Support and maintain advanced cyber tools and security capabilities across enterprise DHS/FEMA environments.
  • Cyber Tools include:
    • Splunk
    • Axonius
    • Cribl
    • Corelight
    • Fores count
    • Wraithwatch
    • Cyrtica
Cyber Operations Engineering & Troubleshooting
  • Conduct deep‑dive analysis and troubleshooting of complex endpoint security issues.
  • Engineer permanent solutions using advanced diagnostic tools and methodologies.
  • Develop and enforce security policies, compliance configurations, and hardened endpoint baselines.
Security Hardening, Resiliency & Continuity
  • Engineer backup, redundancy, and disaster recovery strategies for endpoint security infrastructure.
  • Develop innovative methods to improve operational efficiency, scalability, and cyber resilience.
Documentation, Reporting & Knowledge Sharing
  • Produce detailed engineering documentation, system diagrams, and security reports.
  • Provide technical guidance, mentorship, and specialized training to junior engineers and administrators.
  • Support large‑scale security exercises, vulnerability assessments, and readiness events.
Basic Qualifications
  • Bachelor’s Degree in Computer Science, Engineering, Information Technology, Cybersecurity, or related field and 12+ years of experience or MS Degree and 10 years of experience. In addition, at least eight (8) years of experience in incident detection and response, malware analysis, or cyber forensics.
  • Extensive experience working with various security methodologies and processes.
  • Advanced knowledge of TCP/IP protocols, experience configuring and implementing various technical security solutions, extensive experience providing analysis and trending of security log data from a large number of heterogeneous security devices.
  • Expert knowledge in two or more of the following areas related to cybersecurity:
    • Vulnerability Assessment
    • Intrusion Prevention and Detection
    • Access Control and Authorization
    • Policy Enforcement
    • Application Security
    • Protocol Analysis
    • Firewall Management
    • Incident Response
    • Web‑filtering
    • Advanced Threat Protection
  • Experience developing advanced correlation rules utilizing data models for cyber threat detection.
  • Experienced with creating and maintaining Splunk knowledge objects.
  • Experienced managing and maintaining Splunk data models.
  • Experience creating regex for pattern matching.
  • Experience implementing security methodologies and SOC processes.
  • TS Clearance.
Preferred Qualifications
  • Experience with cloud (e.g., O365, Azure, AWS) security monitoring and familiar with cloud threat landscape.
  • Completed Splunk Advanced Searching and Reporting training.
  • Experience developing custom scripts using Python.
  • Splunk certifications.

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law. Leidos will also consider for employment qualified applicants with criminal histories consistent with relevant laws.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search