Splunk Architect - US Physical Resident/Work Authorized - Remote

Access Global Group is seeking an experienced Splunk Architect with hands-on experience to join our delivery team.

• REQUIRED: Must be physically located in the U.S. and authorized to work in the U.S.
• TERMS: Full-time, remote position
• EMPLOYMENT TYPE: W2 preferred; 1099 accepted.
• NOTE: Not open to third-party or agency candidates

INTERESTED:

• Visit ;/li>
• Click on the role that aligns with your experience
• Submit your application

Our team will review viable applicants and reach out directly to discuss next steps with those whose experience aligns with the role.

POSITION DESCRIPTION:

This Splunk Architect role involves leading a comprehensive assessment of the client's Splunk SIEM platform, evaluating system architecture, data management, use case development, and governance using SIEM Assessment Framework. The consultant will conduct stakeholder meetings, review existing documentation, assist with CIM compliance, and deliver actionable insights to optimize the SIEM environment. The ideal candidate is a seasoned Splunk ES expert with strong leadership skills and a proven track record in SIEM evaluations.

RESPONSIBILITIES

• Lead the assessment of the client's SIEM platform, ensuring thorough evaluation and documentation of its current state.
• Obtain and review all relevant documentation related to the SIEM deployment, including architecture diagrams, data flow diagrams, process flows, and procedures.
• Conduct up to eight data gathering meetings with representative members from the SIEM and Security Operations teams to gather insights and understand the operational context.
• Assist the client in making log sources CIM compliant.
• Analyze the SIEM platform across focus areas following the clients SIEM Assessment Framework, which includes:
• System Architecture: Evaluate SIEM's system components (forwarders, search heads, indexers, etc.), assess non-functional requirements (availability, scalability, performance, data retention, monitoring), review the health monitoring process, and examine the current integration with the ServiceNow Security Incident Response (SIR) module.
• Data Management: Evaluate data management processes, including data source onboarding and prioritization, data pipelines, log streaming, data quality and normalization, and data enrichment.
• Use Case Development: Evaluate intake, prioritization, development, and detection-as-code processes.
• Governance: Evaluate the existing governance framework, operating and interaction models, relevant policies and standards, governing committees and working groups, and training programs.

REQUIREMENTS

• Active Splunk Enterprise Certified Administrator credential.
• 8+ years of hands-on experience with Splunk ES.
• Proven experience in managing and leading SIEM assessments with a focus on Splunk.
• Strong understanding of SIEM system components, data management processes, use case development, and governance frameworks.
• Strong communication and leadership skills, with the ability to lead a team of consultants and interact effectively with client teams.

LOCATION REMOTE US-Physical Resident, US-Authorized Required

BENEFITS For W2 employees, AGG offers the opportunity for growth and advancement, as well as a competitive base salary, medical benefits & 401k.

EMPLOYMENT TYPE Acceptable as either W2 or 1099.

ABOUT ACCESS GLOBAL GROUP (;/b>

• Access Global Group is a team of experts in Salesforce Consulting, Support, and Managed Services. Living up to our name, we are a truly global company with offices throughout the United States, Canada, and India and successful projects throughout 37 US states and 15 countries.
• Access Global Group is a fully remote company, which means we aren't limited to hiring within the confines of a single district or region. We can add talented individuals to our team based on experience, certifications, and skills from across the globe. This gives our clients access to the most exceptional team overall, not just in their area. Since solutions come in all shapes and sizes, we believe the best team should be just as unique.
• The Access Global Group team is comprised of individuals with a wide variety of languages, backgrounds, stories, experiences, and expertise. This makes it hard to find a problem we haven't encountered before and certifies that there is no limit to what can be achieved with Access Global Group.

EEO/ADA POLICY

• AGG is an equal opportunity, affirmative action employer providing equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, national origin, protected veteran status, disability status, or any other legally protected basis, in accordance with applicable law.
• ADA Specifications: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this position.
• Requires the ability to speak, hear, see, and use a computer and other office-related equipment.

Interested in this role?

Kindly apply at > APPLY NOW.

Our recruitment team looks forward to reviewing your experience!