Maveris is an IT and cybersecurity services company committed to helping organizations create secure digital solutions to accelerate their mission. Originally founded as a Veteran-owned company, we remain deeply committed to supporting veterans and proudly serving customers across the Federal Government and private sector. We have an opening for a full-time, permanent Splunk Engineer to join our talented, dynamic team.
As a Splunk Engineer, you will play a critical role in supporting the mission of the Treasury through a wide range of strategic, technical, and operational responsibilities. You will directly support the Security Operations Center (SOC) and enterprise security operations by designing, implementing, and maintaining Splunk environments to enhance threat detection and incident response. This mid-level role leverages technical expertise to optimize Splunk deployments, integrate data sources, and collaborate with SOC teams to strengthen the organization’s cybersecurity posture.
Veterans are encouraged to apply.
This position will be required to work onsite daily in the DC Metro area, with site visits to Martinsburg, WV and Memphis, TN.

REQUIREMENTS

• Bachelor’s degree in IT or Cybersecurity related field (4 additional years’ experience in lieu of degree)
• 4 Years of experience as a Spunk/SIEM engineer
• Active Secret Clearance
• Relevant certifications (e.g., Splunk Fundamentals, Splunk Certified Admin) a plus
• Basic knowledge of security frameworks (e.g., MITRE ATT&CK, NIST SP 800-53) and log management
• Proficiency with Splunk Enterprise and related technologies (e.g., Splunk Cloud, Splunk ES)
• Strong understanding of TCP/IP and other networking protocols
• Extensive knowledge of common networking devices such as firewalls, routers, and switches

As the Splunk Engineer, you will be responsible for supporting the expansion and deployment of new Splunk architectures, including data ingestion, indexing, and dashboard development for SOC monitoring and analytics. You will be responsible for developing and maintaining Splunk searches, correlation rules, alerts, and reports to improve threat detection and incident response workflows.

In this role, a typical day will include:

• Integrate Splunk with security tools (e.g., EDR, SIEM, firewalls) and data sources (e.g., logs, network traffic) to ensure comprehensive visibility.
• Troubleshoot and optimize Splunk performance, addressing issues related to indexing, search efficiency, and system stability.
• Document Splunk configurations, workflows, and procedures to support operational continuity and knowledge sharing.
• Assist in audit preparations by providing Splunk-based evidence of security controls.
• Research, analyze and understand log sources utilized for the purpose of security monitoring.
• Monitor search load, manage and update search scheduling .
• Create, manage, monitor and update correlation searches, data models, data model acceleration, search accelerations .
• Configure and maintain Splunk ES user roles .
• Monitor and maintain data CIM compliance.