Location: Herndon, VA

Job ID: 5701


Capital TechSearch is seeking a Principal Splunk Architect to join a Global Information Security organization located just outside of Washington, DC.


We are searching for an experienced IT professional with a strong background leading the design, deployment and management of large and complex multi-site clustered Splunk implementations.


When deployment is complete, this team will own and manage one of the largest Splunk ES deployments in the world.


Ideal Experience:

  • Multi-site Clustered environments
  • Large numbers of indexers
  • Bucket roll-ups
  • Design of highly-scalable systems
  • Configuration Management
  • Deployment Server experience
  • Heavy/Universal Forwarders
  • Storage (SDD, SAN, etc)
  • Capacity Planning
  • Ability to talk with novice and highly technical consumers

Job Qualifications:

  • 7 years Information Technology
  • 5 years working with Splunk at senior level capacity, preferably architect level.
  • 5 years Unix/Linux system administration
  • 5 years managing enterprise firewalls, IDS/IPS and content filtering devices
  • Solid understanding of a variety of types of security technologies including but not limited to; packet capture devices, proxies, EDR, malware appliances
  • Expertise in the design, configuration, tuning and customization of various IPS technologies required
  • Expert level knowledge of enterprise logging, with a focus on security event logging
  • Experience with programming and/or scripting a plus (Python/Perl/bash)
  • Experience with Cloud technologies a plus (Amazon AWS, Azure, IBM)
  • Experience migrating security controls from a traditional data center to cloud technologies like Amazon, Azure, IBM a plus
  • Experience writing complex regular expressions a must
  • Strong written and verbal communication skills
  • Sound problem resolution, judgment, negotiating and decision making skills
  • Eligible to work in the USA

Relocation Assitance Available


No 3rd parties.  No c2c.


To be immediately and seriously considered for this exceptional opportunity please apply below. Your responses will be held in the strictest confidence.

Please call our office if you have any questions. Capital TechSearch, Inc. is an Equal Opportunity Employer.


Apply for this position

  • Accepted file types: doc, docx, pdf, txt.
    File types permitted: .DOC, .DOCX, .PDF, or .TXT
  • Accepted file types: docx, doc, pdf, txt.
    docx, doc, pdf, or txt files
  • Add any additional information in the notes that describes your value and fit for the position. Additional considerations may include your availability, compensation, and if you are not local to the position, your interest in relocating.

By clicking "Apply" you agree to receive new job updates, information and news from Capital TechSearch, Inc. You can always unsubscribe from our communications at any time.