Senior Splunk Administrator

Senior Splunk Administrator

Core4ce is seeking a Senior Splunk Administrator to support mission-critical, classified DoD programs. This role is responsible for the design, deployment, administration, and optimization of enterprise Splunk environments supporting cybersecurity, operational monitoring, and compliance initiatives within secure enclaves.

The ideal candidate will have deep expertise in Splunk Enterprise, Splunk ES, and distributed architectures, with experience operating in classified (TS/SCI) environments and supporting RMF, continuous monitoring, and Zero Trust initiatives.

Responsibilities

• Demonstrated experience using Splunk Search Processing Language to assist customers in creating queries, setting alerts, identifying event conditions, and building dashboards.
• Develop reliable, efficient, and re-usable queries that will drive custom alerts and dashboards.
• Assist users in accessing and identifying relevant audit logs, both for troubleshooting and cybersecurity compliance purposes.
• Assist customers in configuring dashboards to facilitate their own audit log analysis, and generally assist customers in developing Splunk solutions for their use cases.
• Data onboarding to high data quality standards and CIM compliance.
• Install, configure, and deploy Splunk infrastructure, to include search heads, indexers, forwarders, and other Splunk components in large deployments.
• Support large-scale deployments with data feeds from multiple locations worldwide.
• Monitor and maintain Splunk performance, availability, and capacity.
• Recommend configuration changes to improve the performance, stability, or usability of the platform.
• Work independently, take initiative, and proactively troubleshoot and resolve platform issues.
• Act as the Splunk liaison for Splunk technical questions, issues, or escalations. This will include working with Splunk Support, Product Management, or others as needed.
• This position is designed to be flexible, with responsibilities evolving to meet business needs and enable individual growth.

Requirements

• Top Secret security clearance.
• High school graduation or GED. High-level education, such as a technical bachelor’s degree, is highly valued but not required.
• At least 8 years of IT experience, with at least 1 year working directly with Splunk, either as a power user or as a system administrator.
• Experience with the Department of Defense or other federal agencies is preferred but not required.
• Hold an industry certification related to any of the following technologies: Windows OS, Red Hat Enterprise Linux, Microsoft Azure, Amazon Web Services, or VMWare. Other industry certifications may also be applicable for this position and will be considered upon request.
• Experience with scripting languages such as bash, python, and powershell.
• Broad understanding of IT infrastructure, including network, system, application, and compliance, and corresponding logs generated.
• Splunk Enterprise Certified Admin certification strongly preferred. If the successful candidate does not already hold this certification at the time of hire, he/she will be expected to obtain it within 6 months of starting.
• CompTIA Security+ or equivalent certification required, either at the time of hire or within 6 months of starting if not already held.

Why Work for Us?

Core4ce is a team of innovators, self-starters, and critical thinkers—driven by a shared mission to strengthen national security and advance warfighting outcomes.

We Offer

• 401(k) with 100% company match on the first 6% deferred, with immediate vesting.
• Comprehensive medical, dental, and vision coverage—employee portion paid 100% by Core4ce.
• Unlimited access to training and certifications, with no pre-set cap on eligible professional development.
• Tuition assistance for job-related degrees and courses.
• Paid parental leave, PTO that grows with tenure, and generous holiday schedules.
• Got a big idea? At Core4ce, The Forge gives every employee the chance to propose bold innovations and help bring them to life with internal backing.

Join us to build a career that matters—supported by a company that invests in you.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), national origin, disability, veteran status, age, genetic information, or other legally protected status.

Key skills/competency

• Splunk Enterprise
• Splunk ES
• Splunk Search Processing Language (SPL)
• Cybersecurity
• System Administration
• Data Onboarding
• Scripting (Bash, Python, PowerShell)
• IT Infrastructure
• CompTIA Security+
• Top Secret Clearance