Sr. Splunk Architect III (6233)

Washington, AR - USA

Monthly Salary: $ 184000 - 207000

Posted on: 20 hours ago

Vacancies: 1 Vacancy

Job Summary

As a Sr. Splunk Architect III youll lead the architectural design strategy and enterprise implementation of our Splunk SIEM platform. The Splunk Architect will serve as the primary technical authority responsible for ensuring scalability reliability and alignment of the SIEM with the organizations security compliance and operational needs. This role provides strategic guidance to engineering teams SOC leadership and business stakeholders.

We know that you cant have great technology services without amazing people. At MetroStar we are obsessed with our people and have led a two-decade legacy of building the best and brightest teams. Because we know our future relies on our deep understanding and relentless focus on our people we live by our mission: A passion for our people. Value for our customers.

If you think you can see yourself delivering our mission and pursuing our goals with us then check out the job description below!

What youll do:

Maintain architecture diagrams operational guides and executive reports.
Track SIEM improvements threat trends and compliance coverage.
Plan and optimize Splunk deployment for scalability reliability and performance.
Ingest logs from diverse sources (firewalls endpoints cloud services).
Normalize and enrich data for effective detection and analysis.
Define data ingestion strategies and index management.
Create and refine correlation rules alerts dashboards and reports.
Align detection rules with threat intelligence and compliance requirements.

What youll need to succeed:

An Active TS security clearance with SCI (active or eligible for SCI)
Define the long-term architecture roadmap and standards for Splunk Enterprise and Splunk ES.
Architect scalable distributed Splunk environments across on-prem cloud or hybrid infrastructure.
Lead the SIEM strategy including detection frameworks data coverage models and logging governance.
Establish standards for data onboarding retention normalization risk scoring and use case development.
Evaluate new tools integrations and technologies that enhance SIEM maturity.
Design and oversee Splunk clustering models search head architecture indexer scaling and forwarder deployment patterns.
Define Splunk ingestion pipelines props/transforms indexing strategy and data model architecture.
Oversee integration of cloud-native logs security tools and enterprise applications.
Lead platform hardening access control design and architectural compliance.

SALARY RANGE: $184000 - $207000

The salary range for this position is determined based on qualifications skills and relevant experience. The final salary offered will be determined based on several factors including:

The candidates professional background and relevant work experience
The specific responsibilities of the role and organizational needs
Internal equity and alignment with current team compensation
This role is also eligible for additional compensation subject to the terms and policies of MetroStar which may include:

Performance-based bonuses
Company-paid training and/or certifications
Referral bonuses

To apply for this position please submit your resume via the form below or through our careers page: Deadline: Applications will be accepted on a rolling basis until the position is filled; candidates are encouraged to apply as early as possible for full consideration.

Additional Compensation: This role may also be eligible for bonuses and/or additional incentives based on individual and company performance.

Benefits: All full-time employees are eligible to participate in our benefits programs:

Health dental and vision insurance
401(k) retirement plan with company match
Paid time off (PTO) and holidays
Parental Leave and dependent care
Flexible work arrangements
Professional development opportunities
Employee assistance and wellness programs

Like we said we are big fans of our people. Thats why we offer a generous benefits package professional growth and valuable time to recharge. Learn more about our company culture code and benefits. Plus check out our accolades.

Commitment to Non-Discrimination
All qualified applicants will receive consideration for employment based on merit and without regard to sex race ethnicity age national origin citizenship religion physical or mental disability medical condition genetic information pregnancy family structure marital status ancestry domestic partner status sexual orientation gender identity or expression veteran or military status status as a protected veteran or any other status protected by applicable federal state local or international law.

What we want you to know:

In compliance with federal law all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification form upon hire.

Not ready to apply now

Required Experience:

Senior IC

As a Sr. Splunk Architect III youll lead the architectural design strategy and enterprise implementation of our Splunk SIEM platform. The Splunk Architect will serve as the primary technical authority responsible for ensuring scalability reliability and alignment of the SIEM with the organizations s...

If you think you can see yourself delivering our mission and pursuing our goals with us then check out the job description below!

What youll do:

Maintain architecture diagrams operational guides and executive reports.
Track SIEM improvements threat trends and compliance coverage.
Plan and optimize Splunk deployment for scalability reliability and performance.
Ingest logs from diverse sources (firewalls endpoints cloud services).
Normalize and enrich data for effective detection and analysis.
Define data ingestion strategies and index management.
Create and refine correlation rules alerts dashboards and reports.
Align detection rules with threat intelligence and compliance requirements.

What youll need to succeed:

An Active TS security clearance with SCI (active or eligible for SCI)
Define the long-term architecture roadmap and standards for Splunk Enterprise and Splunk ES.
Architect scalable distributed Splunk environments across on-prem cloud or hybrid infrastructure.
Lead the SIEM strategy including detection frameworks data coverage models and logging governance.
Establish standards for data onboarding retention normalization risk scoring and use case development.
Evaluate new tools integrations and technologies that enhance SIEM maturity.
Design and oversee Splunk clustering models search head architecture indexer scaling and forwarder deployment patterns.
Define Splunk ingestion pipelines props/transforms indexing strategy and data model architecture.
Oversee integration of cloud-native logs security tools and enterprise applications.
Lead platform hardening access control design and architectural compliance.

SALARY RANGE: $184000 - $207000

The salary range for this position is determined based on qualifications skills and relevant experience. The final salary offered will be determined based on several factors including:

The candidates professional background and relevant work experience
The specific responsibilities of the role and organizational needs
Internal equity and alignment with current team compensation
This role is also eligible for additional compensation subject to the terms and policies of MetroStar which may include: