Home
Recruiter
Log In

Splunk Architect / Subject Matter Expert (SME)

Remote from
USA flag
USA
Salary, yearly, USD
150,000 - 190,000
Department
Software Engineering
Employment type
Full Time,
Job posted
Apply before
3 Sep 2025
Experience level
Senior
Views / Applies
12345 / 123
About company Share

About ECS

Partnering with leading organizations to deliver powerful solutions for a complex world.

Actively Hiring
Verified job posting
This job post has been manually reviewed for authenticity and compliance.

ECS is seeking a Splunk Architect / Subject Matter Expert (SME) to work remotely. Please Note: This position is contingent upon contract award.

ECS Federal is seeking an experienced Splunk Architect to design, build, and optimize an integrated SplunkSOAR+UBA+Core environment with automated compliance via QmulosQ‑Compliance/Q‑Audit for a long‑term Federal program. You will lead hybrid (remote‑first) engineering efforts that advance the client toward OMBM‑21‑31 Event Logging Level3 while mapping evidence to NIST 800‑53, FISMA, and NERC CIP.

  • PositionResponsibilities:

    • Architect & Engineer Splunk Core, SOAR, and UBA tiers; develop data‑ingest blueprints and high‑level architecture.
    • Automate Compliance using Q‑Compliance/Q‑Audit to map controls and produce real‑time dashboards.
    • Develop SOAR Playbooks&UBA Models for privileged‑account misuse, lateral movement, and OT/IT segmentation alerts.
    • Integrate OT Log Sources via secure one‑way transfers and document risk mitigations.
    • Lead Workshops & KnowledgeTransfer sessions; create Section 508‑compliant diagrams and runbooks.
    • Mentor BPA analysts and junior engineers on Splunk best practices and compliance automation.

Salary Range: $150,000 – $190,000

General Description of Benefits

Qualifications

  • Hands‑on Experience
    • 3 + years architecting Splunk Enterprise / Splunk SOAR (Phantom) solutions in federal or critical‑infrastructure settings
    • 2 + years deploying Splunk UBA and Qmulos Q‑Compliance/Q‑Audit, including control mapping to NIST/FedRAMP
  • Proven ability to automate compliance evidence for OMB M‑21‑31, NIST RMF, and EO 14028 objectives.
  • Strong stakeholder‑engagement, documentation, and briefing skills suitable for C‑suite and COR audiences.

  • Clearance Requirement:

    • U.S. citizenship and eligibility to obtain a DOE public‑trust (Q level) clearance; sponsorship provided

  • Certifications/Licenses:

    • Bachelor’s degree in Computer Science, Cybersecurity, Engineering, or related discipline (or equivalent experience).
    • Active Splunk certifications: Splunk Core Certified Admin and Splunk SOAR Certified Automation Developer
    • Preferred: Splunk Certified Architect, CISSP, CISM, or Qmulos Certified Professional.

Apply now >

This job listing has been manually reviewed by the Jobicy Trust & Safety Team for compliance with our posting guidelines, including verification of the company's legitimacy, accuracy of job details, clarity of remote work policy, and absence of misleading or fraudulent content.

How to apply

Did you apply? Let us know, and we’ll help you track your application.

For safety tips, see our guides, and please let us know if you need any assistance.

Log in to save
You're almost done!

Create a free account with us to save a history of all jobs you've shown interest in.

You can also continue as a guest if you prefer.

Share

See a few more

Similar Software Engineering remote jobs

More Jobs

Job Search Safety Tips

Here are some tips to help you search and apply for jobs safely:
Watch out for suspicious jobs Don't apply for jobs that offer high pay for little work or offer to hire you without an interview. Read more ›
Check the employer's profile Make sure you're applying for a trustworthy job by visiting the employer's profile and learning more about them. Read more ›
Protect your information Don't share personal details like your bank account or government-issued ID on suspicious websites or messengers. Read more ›
Report jobs that feel unsafe If you see a job that seems misleading, inappropriate or discriminatory, report it for going against our policies and we'll review it.

Share this job

FAQ

What position is ECS hiring for?

ECS is hiring a remote Splunk Architect / Subject Matter Expert (SME) from 🇺🇸 USA

What type of employment does ECS offer?

This is a Full Time role.

Jobicy+ Subscription

Jobicy

571 professionals pay to access exclusive and experimental features on Jobicy

Free

USD $0/month

For people just getting started

  • • Unlimited applies and searches
  • • Access on web and mobile apps
  • • Weekly job alerts
  • • Access to additional tools like Bookmarks, Applications, and more

Plus

USD $8/month

Everything in Free, and:

  • • Ad-free experience
  • • Daily job alerts
  • • Personal career consultant
  • • AI-powered job advice
  • • Featured & Pinned Resume
  • • Custom Resume URL
Go to account ›