Senior Splunk User Entity Behavior Analytics Engineer (UEBA)

Remote • Posted 8 hours ago • Updated 8 hours ago
Full Time
No Travel Required
Remote
$140,000/yr
Fitment

Dice Job Match Score™

🎯 Assessing qualifications...

Job Details

Skills

  • Amazon Web Services
  • Analytics
  • Cloud Computing
  • FedRAMP
  • DevOps
  • Cyber Security
  • Leadership
  • Google Cloud Platform
  • Machine Learning (ML)
  • Microsoft Azure
  • RBAC
  • NIST 800-53
  • Regulatory Compliance
  • Reporting
  • SIEM
  • Good Clinical Practice
  • Incident Management
  • SSO
  • Auditing
  • Continuous Improvement

Summary

Job Title: Senior Splunk User Entity Behavior Analytics Engineer (UEBA)

Location: Remote

Security Clearance Requirements:

·      Ability to obtain and maintain a Public Trust or higher clearance

·      Active clearance preferred

Position Overview:  ACI Solutions is seeking a Senior Splunk UEBA Engineer to support enterprise-level logging, monitoring, and cybersecurity operations within a U.S. Government / FedRAMP-compliant environment. This role is responsible for administering, optimizing, and securing infrastructure while supporting mission-critical systems and SOC operations.

The ideal candidate brings deep Splunk expertise, hands-on experience in federal environments, and the ability to operate within the Splunk UEBA platform. The tasks shall include deployment assistance, system integration, configuration, monitoring, and continuous improvement, as outlined in the objectives section. These activities will help meet regulatory requirements, strengthen threat detection, and improve response times for security incidents.

Experience Requirements:

  • 10+ years of overall IT experience (systems, cloud, or cybersecurity engineering)
  • 3–5+ years of hands-on Splunk UEBA experience
  • Proven experience supporting U.S. Government or FedRAMP environments
  • Strong expertise in:
    • Splunk SPL (Search Processing Language)
    • Log ingestion, parsing, and normalization
    • Cloud platforms (AWS, Azure, or Google Cloud Platform)
  • Experience with:
    • SIEM operations and SOC support
    • Identity federation (SAML/SSO)
    • RBAC and security best practices

Preferred Qualifications:

  • Splunk certifications (e.g., Splunk Enterprise Certified Architect, Splunk Cloud Certified)
  • Experience supporting federal agencies
  • Familiarity with compliance frameworks (FedRAMP, NIST 800-53)
  • Experience working within Splunk Cloud shared responsibility model
  • Knowledge of DevOps / Infrastructure as Code practices

Job Responsibilities:

Baseline Establishment and Anomaly Detection:

  • Configure UEBA to establish user and entity activity baselines.
  • Monitor, detect, and prioritize unusual behavior patterns using automated threat scoring
  • techniques.

Machine Learning Refinement:

  • Investigate flagged behavioral anomalies and refine machine learning models to reduce false positives while improving detection accuracy.

Incident Insights and Reporting:

  • Deliver actionable insights to expedite incident response and threat mitigation.
  • Create audit-ready, regulatory-compliant reports leveraging UEBA data.

Why ACI Solutions?

At ACI, you’re more than just a team member; you’re part of a mission-driven organization that supports critical government initiatives. We provide:

  • Strong leadership access and support
  • Career growth and training opportunities ($2,000/year training benefit)
  • Wellness benefits including gym reimbursement
  • A collaborative, people-first culture
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
  • Dice Id: 10229270
  • Position Id: 9014369
  • Posted 8 hours ago
Contact the job poster
CC

Colleen Crowder

HR Manager @ ACI Solutions
Create job alert
Set job alertNever miss an opportunity! Create an alert based on the job you applied for.

Similar Jobs

Remote or Washington, District of Columbia

4d ago

Full-time

Remote

Today

Full-time

Remote

2d ago

Easy Apply

Full-time

Depends on Experience

Remote

Today

Easy Apply

Full-time, Part-time, Third Party, Contract

Search all similar jobs