Splunk Architect

Overview

On Site
Depends on Experience
Contract - W2

Skills

Splunk

Job Details

Splunk Architect

Department: Information Technology

Location: On-Site - Doral, FL – Just outside of Miami, FL (Will be working in a SCIF environment)

Role Type: Contract – 3 Months (Likely to extend to 6 Months)


About Our Client

This organization is a global technology solutions leader with a history of delivering innovative, cutting-edge IT solutions to clients across various industries. Founded over three decades ago, the company employs thousands of professionals worldwide and generates multi-billion-dollar annual revenue. They are recognized for their inclusive culture, commitment to employee development, and consistent ranking among the top workplaces in the country. Their mission centers on driving growth, fostering collaboration, and providing exceptional technology solutions to both public and private sector clients.


Job Description

We are seeking a highly experienced Splunk Architect to join a Department of Defense project team. In this role, you will lead the design and architecture of large-scale Splunk enterprise environments, ensuring optimal performance, scalability, and security.

You will work hands-on as both an administrator and architect, collaborating with technical teams to design, implement, and optimize Splunk environments for a mission-critical defense client. This position requires an active Secret Clearance and the ability to work full-time in a secure SCIF environment.


Duties and Responsibilities

  • Lead the design, architecture, and implementation of enterprise-scale Splunk environments in a Department of Defense setting.

  • Oversee deployment and optimization of multi-site clustering solutions to ensure high availability, scalability, and performance.

  • Collaborate with security and operations teams to align Splunk deployments with validated designs and compliance requirements.

  • Manage both on-premises and cloud Splunk infrastructure, including hybrid and SaaS models.

  • Optimize indexing, search, and data ingestion strategies to meet performance and licensing requirements.

  • Configure and maintain search head clusters, indexer clusters, and deployment servers with high availability.

  • Develop and maintain custom parsers and Splunk knowledge objects to enhance data analysis and reporting.

  • Monitor, troubleshoot, and enhance system performance using best practices in architecture and traffic flow management.

  • Document architecture decisions, deployment processes, and capacity planning to support future scalability.

  • Provide technical leadership, mentoring, and guidance to team members during project execution.


Required Experience/Skills

  • MUST HAVE ACTIVE SECRET CLEARANCE.

  • Ability to fulfill Splunk admin role as well as architect.

  • Fully design and architect a Splunk enterprise environment.

  • Experience with multi-site clustering Architecture and deployment.

  • Experience designing multi-site clustering.

  • Experience and knowledge of Splunk validated designs.

  • Experience with large Splunk deployments 30+TB.

  • Experience with on-prem and cloud architectures.

  • Experience with ingest vs SVC vs forecasting (predictive) licensing.

  • Understanding SVC cloud models.

  • Firm understanding of search, indexer and forwarding tiers.

  • Working knowledge of smartstore vs traditional frameworks.

  • Working knowledge of architecting Splunk for performance.

  • Understanding Splunk cloud SaaS vs hybrid models.

  • Experience with maximizing traffic flows to Splunk on-prem and cloud.

  • Ability to create custom parsers.

  • Working knowledge of Splunk knowledge objects.

  • Ability to deploy HA for Cluster Managers and indexer clusters.

  • Ability to deploy HA for Deployment Servers.

  • Experience with Search head clustering.

  • Understanding of site0.

  • Understanding of search affinity.

  • Understanding of cluster management.

  • Understanding of SF/RF, single and multisite.

  • 8+ years deploying large enterprise Splunk architectures.

  • Experience planning, documenting, designing, and architecting large Splunk deployments.

  • Good oral, written, and presentation skills.


Nice-to-Haves

  • ES and ITSI experience.

  • Scripting experience.

  • Experience in large enterprise deployments.

  • Splunk Architect certification.

  • Security background.

  • Understanding of cloud computing and observability concepts.

  • Leadership and ownership skills.

  • Documentation and capacity planning expertise.


Pay & Benefits Summary

  • Pay rate up to 150/h W2


Call-to-Action

Apply now to join a high-performance team delivering mission-critical technology solutions for the Department of Defense.


Keywords: Splunk | Architect | Multi-Site Clustering | Splunk Enterprise | Splunk Admin | Splunk Cloud | Splunk On-Prem | Splunk Performance | Splunk Architect Certification | Secret Clearance | Department of Defense | SCIF | ES | ITSI | Cloud Computing | Observability

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Catapult Solutions Group