Lead design, deployment, and optimization of enterprise Splunk environments; develop dashboards, alerts, correlation searches, and data models; onboard and validate data sources; troubleshoot performance and ingestion issues; support compliance/auditing; mentor junior staff and maintain strict adherence to classified environment protocols.
Description
At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It's why we're coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW. Overview We're seeking a highly skilled Senior Splunk Subject Matter Expert (SME) to support mission-critical operations at Fort Meade, MD. This role is ideal for a seasoned engineer who thrives in secure environments, excels at solving complex data challenges, and can guide enterprise-level Splunk architecture, engineering, and analytics efforts. You'll play a pivotal role in advancing security, observability, and operational intelligence across a high‑visibility government program. Key Responsibilities
* Lead the design, deployment, configuration, and optimization of enterprise Splunk environments (Enterprise, ES, ITSI, UF/HF/IDX/SH tiers).
* Develop and maintain dashboards, alerts, correlation searches, and data models to support cybersecurity, operations, and mission analytics.
* Serve as the primary Splunk technical authority, advising leadership and engineering teams on best practices, architecture decisions, and data strategy.
* Integrate new data sources, validate data quality, and ensure proper onboarding using CIM and other frameworks.
* Troubleshoot complex Splunk performance issues, ingestion failures, and search inefficiencies.
* Support compliance, auditing, and security initiatives through advanced Splunk reporting and automation.
* Mentor junior engineers and analysts; provide technical guidance and documentation.
* Collaborate with cross-functional teams to enhance monitoring, detection, and operational visibility.
* Maintain strict adherence to security policies, accreditation requirements, and classified environment protocols. Required Qualifications
* Active TS/SCI with Full-Scope Polygraph (no exceptions).
* 7+ years of hands-on experience with Splunk engineering, administration, and architecture.
* Deep expertise with Splunk Enterprise, Splunk ES, and large-scale distributed deployments.
* Strong proficiency in SPL, data modeling, and dashboard development.
* Experience onboarding diverse data sources (syslog, APIs, cloud, custom apps).
* Solid understanding of cybersecurity frameworks, SIEM concepts, and log analytics.
* Ability to operate in a fast-paced, mission-focused, highly secure environment.
* Excellent communication skills and the ability to brief technical and non-technical stakeholders. Preferred Qualifications
* Splunk certifications (Architect, Consultant, ES Analyst/Admin, Core Certified Power User).
* Experience with automation tools (Ansible, Python, Terraform).
* Familiarity with cloud platforms (AWS, Azure, GovCloud) and hybrid architectures.
* Background supporting DoD, IC, or other classified programs.
* Knowledge of data governance, zero trust, and enterprise security architectures. Work Environment
* 100% onsite at Fort Meade, MD
* Secure, collaborative, mission-driven environment
* Opportunities to influence enterprise strategy and drive technical innovation
* We make technology work so people can do great things.
* CDW is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers in the United States, the United Kingdom and Canada. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. Together, we unite. Together, we win. Together, we thrive. CDW is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other basis prohibited by state and local law. CDW is committed to fostering an equitable, transparent, and respectful hiring process for all applicants. During our application process, CDW's goal is to get to know you as an applicant and understand your experience, strengths, skills, and qualifications. While AI can help you present yourself more clearly and effectively, the essence of your application should be authentically yours. To learn more, please review [CDW's AI Applicant Notice](https://www.cdwjobs.com/pages/ai-applicant-notice).
At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It's why we're coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we're headed. We're proud to share our story and Make Amazing Happen at CDW. Overview We're seeking a highly skilled Senior Splunk Subject Matter Expert (SME) to support mission-critical operations at Fort Meade, MD. This role is ideal for a seasoned engineer who thrives in secure environments, excels at solving complex data challenges, and can guide enterprise-level Splunk architecture, engineering, and analytics efforts. You'll play a pivotal role in advancing security, observability, and operational intelligence across a high‑visibility government program. Key Responsibilities
* Lead the design, deployment, configuration, and optimization of enterprise Splunk environments (Enterprise, ES, ITSI, UF/HF/IDX/SH tiers).
* Develop and maintain dashboards, alerts, correlation searches, and data models to support cybersecurity, operations, and mission analytics.
* Serve as the primary Splunk technical authority, advising leadership and engineering teams on best practices, architecture decisions, and data strategy.
* Integrate new data sources, validate data quality, and ensure proper onboarding using CIM and other frameworks.
* Troubleshoot complex Splunk performance issues, ingestion failures, and search inefficiencies.
* Support compliance, auditing, and security initiatives through advanced Splunk reporting and automation.
* Mentor junior engineers and analysts; provide technical guidance and documentation.
* Collaborate with cross-functional teams to enhance monitoring, detection, and operational visibility.
* Maintain strict adherence to security policies, accreditation requirements, and classified environment protocols. Required Qualifications
* Active TS/SCI with Full-Scope Polygraph (no exceptions).
* 7+ years of hands-on experience with Splunk engineering, administration, and architecture.
* Deep expertise with Splunk Enterprise, Splunk ES, and large-scale distributed deployments.
* Strong proficiency in SPL, data modeling, and dashboard development.
* Experience onboarding diverse data sources (syslog, APIs, cloud, custom apps).
* Solid understanding of cybersecurity frameworks, SIEM concepts, and log analytics.
* Ability to operate in a fast-paced, mission-focused, highly secure environment.
* Excellent communication skills and the ability to brief technical and non-technical stakeholders. Preferred Qualifications
* Splunk certifications (Architect, Consultant, ES Analyst/Admin, Core Certified Power User).
* Experience with automation tools (Ansible, Python, Terraform).
* Familiarity with cloud platforms (AWS, Azure, GovCloud) and hybrid architectures.
* Background supporting DoD, IC, or other classified programs.
* Knowledge of data governance, zero trust, and enterprise security architectures. Work Environment
* 100% onsite at Fort Meade, MD
* Secure, collaborative, mission-driven environment
* Opportunities to influence enterprise strategy and drive technical innovation
* We make technology work so people can do great things.
* CDW is a leading multi-brand provider of information technology solutions to business, government, education and healthcare customers in the United States, the United Kingdom and Canada. A Fortune 500 company and member of the S&P 500 Index, CDW helps its customers to navigate an increasingly complex IT market and maximize return on their technology investments. Together, we unite. Together, we win. Together, we thrive. CDW is an equal opportunity employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status or any other basis prohibited by state and local law. CDW is committed to fostering an equitable, transparent, and respectful hiring process for all applicants. During our application process, CDW's goal is to get to know you as an applicant and understand your experience, strengths, skills, and qualifications. While AI can help you present yourself more clearly and effectively, the essence of your application should be authentically yours. To learn more, please review [CDW's AI Applicant Notice](https://www.cdwjobs.com/pages/ai-applicant-notice).
Top Skills
Splunk Enterprise,Splunk Es,Splunk Itsi,Universal Forwarder,Heavy Forwarder,Indexer,Search Head,Spl,Cim,Siem,Syslog,Apis,Ansible,Python,Terraform,Aws,Azure,Govcloud
Similar Jobs at CDW
Information Technology
Lead and manage a presales team focused on Digital Velocity and Security solutions. Coach and mentor technical presales staff, support sales cycles with solution strategies, review proposals and demos, track KPIs and pipeline health, collaborate cross-functionally, contribute to GTM initiatives, and stay current on cloud, data, AI, security, and DevOps trends to drive customer outcomes and revenue growth.
Top Skills:
Cloud,Devops,Ai,Data,Infosec,Salesforce
Information Technology
Design and build production-grade security automation and AI-assisted SOAR playbooks to convert detections into policy-driven responses. Integrate across identity, endpoint, network, cloud, and SaaS, embed guardrails, ensure measurable and auditable outcomes, and enable self-healing and resilient automation. Collaborate with platform owners and response teams and embed security controls into CI/CD and policy-as-code pipelines.
Top Skills:
Python,Powershell,Soar,Palo Alto Xsoar,Xsiam,Siem,Xdr,Microsoft Sentinel,Microsoft Defender,Crowdstrike,Azure Ad,Entra Id,Splunk,Apis,Ai/Ml,Event-Driven Architecture,Ci/Cd,Infrastructure As Code,Policy-As-Code,Mitre Att&Ck
Information Technology
Design, build, and operationalize cloud-based data pipelines and transform raw data into analysis-ready datasets. Collaborate with business, analytics, and engineering teams to develop data models, automate data preparation, and document transformations. Support Power BI models and dashboards, improve data accessibility and reliability, and mentor peers while exploring new data technologies and automation techniques.
Top Skills:
AzureAzure Data FactoryAzure Data LakeFabric Data FactoryLlm-Based ToolsPower BIPythonSQLSsis
What you need to know about the NYC Tech Scene
As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
