Mclean, VA
|
Security Engineering
|
Contract-to-perm
|
$50 - $63 (hourly estimate)
{"JobID":478618,"JobType":["Contract-to-perm"],"EmployerID":null,"Location":{"Latitude":-77.19,"Longitude":38.94,"Distance":null},"State":"Virginia","Zip":"22102","ReferenceID":"DC0-71d0a3e9-d6da-4fdf-bbd9-97a0db2135df","PostedDate":"\/Date(1767641654000)\/","Description":"The Front-End Splunk Developer is responsible for designing, developing, and maintaining intuitive, high-impact Splunk dashboards and visual analytics that transform complex log and security data into actionable insights. This role focuses on front-end Splunk development, including SPL optimization, dashboard design, and user experience, to support security operations, compliance reporting, and executive decision-making. The developer will collaborate closely with SOC analysts, engineers, and stakeholders to deliver role-based visualizations, improve situational awareness, and enhance enterprise monitoring and security visibility across on-premises and cloud environments.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global\u0027s Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.","Title":"Splunk Front End Developer","City":"Mclean","ExpirationDate":null,"PriorityOrder":0,"Requirements":"Requirements:Must be able to obtain a Public Trust clearance.This position is remote with occasional travel to DC, MD, VA, WV, NJ, and OK.Qualifications and Experience:Bachelor\u0027s degree in Computer Science, Information Systems, Cybersecurity, Engineering, Mathematics, Technology, or a related IT, engineering, math, or science discipline.6+ years of experience in Splunk development, security analytics, or enterprise monitoring environments.Demonstrated experience delivering front-end Splunk dashboards, visualizations, and user-focused analytics for SOC, engineering, compliance, and executive audiences.One or more industry-recognized certifications required, including:Certified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)Certified Information Systems Auditor (CISA)Certified Ethical Hacker (CEH)Certified Authorization Professional (CAP)CompTIA Security+Or other equivalent IT or cybersecurity certificationsPreferred Splunk certifications (Core Certified Power User, Advanced Power User, Enterprise Security)Splunk Front-End Development:Advanced proficiency with Splunk Search Processing Language (SPL), including complex searches, joins, lookups, sub-searches, and statistical analysis.Strong experience developing and customizing:Splunk dashboards using Classic XML and Dashboard StudioInteractive forms, tokens, drilldowns, and role-based viewsExperience with Splunk UI customization, including Simple XML, HTML/CSS, JavaScript, and SplunkJS (as applicable).Ability to optimize dashboards and SPL queries for performance, scalability, and usability.Data Visualization \u0026 User Experience:Strong understanding of data visualization principles and best practices.Experience translating complex log and security data into clear, actionable insights and executive-level metrics.Ability to design dashboards aligned to KPIs, SLAs, and operational goals.Security Analytics \u0026 SIEM Knowledge:Experience building dashboards and alerts to support Security monitoring, incident response, and threat detectionWorking knowledge of:Cyber threats, attack vectors, APTs, and log-based detectionSIEM concepts and SOC workflowsExperience supporting Splunk Enterprise Security (ES), including correlation searches, notable events, and risk-based alerting (preferred).Data Onboarding \u0026 Normalization:Understanding of data ingestion, parsing, and field extraction from diverse sources such as Firewalls, IDS/IPS, endpoint tools, cloud platforms (AWS, Azure, GCP), and operating systemsExperience applying Splunk CIM data models to support reusable analytics and dashboards.Governance, Compliance \u0026 Reporting:Experience supporting compliance and reporting aligned with NIST, FISMA, FedRAMP, ISO 27001, and DoD STIGs.Ability to develop audit-ready dashboards and reports supporting security assessments and ATO activities.Experience documenting SPL logic, data sources, and dashboard functionality.Analytical \u0026 Problem-Solving Skills:Proficient in standard and advanced analytical techniques to correlate events, identify trends, and surface anomalies.Ability to troubleshoot dashboard performance, data quality, and visualization issues across complex environments.Apply data-driven analysis to improve monitoring coverage and security visibility.Collaboration, Communication, and Professional Attributes:Collaborate with SOC analysts, engineers, auditors, and leadership to gather requirements and deliver effective Splunk solutions.Communicate technical analytics and risk insights clearly to technical and non-technical stakeholders.Provide user training and knowledge transfer on dashboard usage and interpretation.Strong organizational, time-management, and multitasking skills.Highly responsive and customer-focused.Detail-oriented with a strong emphasis on data accuracy and consistency.Ability to work with confidential and proprietary information with discretion.Commitment to staying current with Splunk platform enhancements, visualization capabilities, and security analytics best practices.Responsibilities:Architect and implement Splunk dashboards for data-center asset inventory and vulnerability reporting.Build Executive dashboards that filter and highlight critical assets for situational awareness.Normalize dashboard layouts, panels, and visualizations to a consistent styling and naming convention.Optimize searches and SPL queries for performance and scalability.Integrate new data sources and onboard security systems into Splunk.Map CVE and asset owner data into asset-centric dashboardsProduce and maintain dashboard documentation: data sources, queries, drill-downs, and user guides.Mentor junior engineers and lead knowledge-transfer sessions.Collaborate with stakeholders to plan new dashboards, define requirements, wireframes, and success metricsRequired Tools and Technologies:Splunk PlatformSplunk Enterprise and/or Splunk CloudSplunk Search Processing Language (SPL) for advanced searches, analytics, and data correlationSplunk Dashboard Studio and Classic Simple XMLSplunk Enterprise Security (ES) (preferred): correlation searches, notable events, risk-based alertingSplunk Common Information Model (CIM) and data modelsSplunk Lookups, KV Store, summary indexing, and scheduled searchesSplunk Role-Based Access Control (RBAC) and knowledge object managementFront-End Development \u0026 VisualizationDashboard design and customization using Simple XMLHTML, CSS, and JavaScript for UI customization and advanced dashboard behaviorSplunkJS SDK (as applicable)Data visualization best practices for security and operational analyticsData Sources \u0026 IntegrationsLog ingestion and normalization from:Firewalls, IDS/IPS, VPNs, endpoint protection platformsIdentity systems (Active Directory, IAM solutions)Operating systems (Windows, Linux)Cloud platforms (AWS, Azure, GCP)Experience with log forwarders, parsing, field extraction, and sourcetypesSecurity \u0026 SIEM TechnologiesSIEM and security monitoring conceptsFamiliarity with:Firewalls, IDS/IPS (e.g., Snort, Suricata)Endpoint security toolsThreat detection and incident response workflowsUnderstanding of cyber threats, attack vectors, and log-based detection methodsAutomation \u0026 Scripting (Supporting)Python and/or PowerShell for data analysis, automation, or API integrationREST APIs for integrating Splunk with external systemsSecurity frameworks and standardsNIST RMF, FISMA, FedRAMP, ISO 27001, DoD STIGs","Skills":"","Industry":"Security Engineering","Country":"US","Division":"IT","Office":null,"IsRemoteJob":false,"IsInternalJob":false,"ExtraValues":null,"__RecordIndex":0,"__OrdinalPosition":0,"__Timestamp":0,"Status":null,"ApplicantCount":0,"SubmittalCount":0,"ApplicationToHireRatio":0,"JobDuration":null,"SalaryHigh":63.0000,"SalaryLow":50.4000,"PayRateOvertime":0,"PayRateStraight":0,"Filled":0,"RemainingOpenings":0,"TotalOpenings":0,"Visa":null,"ClearanceType":null,"IsClearanceRequired":false,"IsHealthcare":false,"IsRemote":false,"EndClient":null,"JobCreatedDate":"\/Date(-62135578800000)\/","JobModifiedDate":"\/Date(-62135578800000)\/"}
The Front-End Splunk Developer is responsible for designing, developing, and maintaining intuitive, high-impact Splunk dashboards and visual analytics that transform complex log and security data... into actionable insights. This role focuses on front-end Splunk development, including SPL optimization, dashboard design, and user experience, to support security operations, compliance reporting, and executive decision-making. The developer will collaborate closely with SOC analysts, engineers, and stakeholders to deliver role-based visualizations, improve situational awareness, and enhance enterprise monitoring and security visibility across on-premises and cloud environments.We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.