DevOps/ Systems Security Engineer

Overview DEVOPS/SYSTEMS SECURITY ENGINEER (CORPIT) Bowhead seeks a motivated DevOps/Systems Security Engineer to serve as the primary Splunk engineer in support of the Naval Surface Warfare Center, Dahlgren Division (NSWCDD). This position will play a central role in developing, managing, and optimizing the command's Splunk environment - establishing administrative governance, improving data visibility, and ensuring the platform aligns with DoD cybersecurity and RMF requirements. The ideal candidate will possess a strong foundation in Splunk administration and security operations, complemented by experience with DoD Risk Management Framework (RMF), aptitude in application-layer security and a collaborative, learning-driven mindset. Responsibilities Serve as the primary point of contact for the NSWCDD's Splunk environment. Establish and maintain administrative governance across multiple Splunk instances (e.g., data onboarding, index management, role-based access, and dashboard development). Collaborate with cross-functional teams to define Splunk data ingestion priorities and ensure log sources align with mission and compliance objectives. Lead initiatives to improve Splunk performance, health monitoring, and data integrity across the hybrid (on-prem and cloud) enterprise. Partner with developers and system owners to integrate security telemetry from applications, containers, and cloud workloads into Splunk. Create and maintain dashboards, alerts, and reports to improve situational awareness and decision-making across the Cloud Group. Contribute to developing the long-term Splunk strategy and serve as the POC for all Splunk-related activities across NSWCDD. Apply DoD Risk Management Framework (RMF) principles to ensure Splunk aligns with accreditation and compliance requirements. Support application-layer and DevSecOps security efforts, including scanning and monitoring activities related to code, APIs, or containers. Qualifications High School Diploma or Bachelor's degree required and at least five (5+) or more years of relavent expereince. DOD 8570 IAT level II certification is required (i.e., CompTIA Security+ce). Hands-on experience administering Splunk Enterprise or Splunk Cloud environments (indexers, search heads, data inputs, user/role management). Knowledge of SIEM concepts, log management, and correlation rule creation. Familiarity with DoD cybersecurity frameworks, particularly RMF and STIG compliance. Understanding of application-layer security concepts, including secure coding, API protection, and container security. Ability to troubleshoot and resolve data ingestion, parsing, and performance issues within Splunk. Strong analytical and communication skills; able to convey technical insights to non-technical stakeholders. Motivated self-starter with the ability to work independently while collaborating effectively across teams. Curious and self-driven learner with a passion for mastering SIEM technologies. Abiltiy to serve as the central point of contact for Splunk-related issues ("product owner" mindset). Preferred Qualifications: Experience with Splunk Enterprise Security (ES) or similar security analytics platforms. Familiarity with DevSecOps pipelines and code scanning tools (e.g., Fortify, SonarQube). Experience integrating cloud-native telemetry from AWS, Azure, or hybrid environments. Physical Demands: Must be able to lift up to 10 pounds Must be able to stand and walk for prolonged amounts of time Must be able to twist, bend and squat periodically SECURITY CLEARANCE REQUIREMENTS: Must currently hold a security clearance at the Top Secret level. US Citizenship is a requirement for Top Secret clearance at this location.