Previous Job
Splunk /Elastic Search SME
Ref No.: 22-00024
Location: Washington, District of Columbia
Are you passionate about technology? Join our growing team! AboutWeb, an award-winning IT solutions company, has been providing excellence in product development, application design, and cybersecurity solutions, since 1998. We are a diverse blend of engineers, developers, and cybersecurity professionals, providing cutting-edge solutions to real-world issues and solving problems for clients.
AboutWeb is a subsidiary of Penacity, LLC.

Job Title: Splunk or Elastic Search SME
Location: Remote
Status: U.S. Citizen
Clearance: Active Public Trust

What You Will Do

Support for Splunk Cloud. Splunk will be provided as Software as a Service (SaaS), but will also be managed on the Client side of the infrastructure, which may include setting up connectivity for other systems and managing the forwarders, as a minimum.

Must have experience working in fast-paced Cyber Security environment. Must have the ability to perform all tasks in a timely and professional manner. Must be a team player, with effective communication skills, high integrity, and solid work ethics.

Who You Will Work With
Works with other team members.

Who You Are
A Splunk SME with experience with Splunk Cloud migration and solutions and Linux

Our minimum requirements for this role:

  • U.S. Citizenship
  • 10+ years of IT experience and 5+ years of experience with Splunk or Elastic Search and Linux
  • Data science, data analytics experience using Splunk required
  • Experience delivering data analysis, working with relational databases, and writing Splunk queries to retrieve data for analysis and reporting purposes
  • Proficient in writing SPL (Search Processing Language), including advanced commands such as tstats, lookup, using subquery, etc. Able to correlate multiple data sources efficiently
  • Proficient in creating advanced dashboards, including drill down and various user control elements to present to leadership.
  • Knowledge of statistical analysis
  • Knowledge of making data SIEM compliant
  • Preferred Splunk Core certified Power User.
  • Familiar with M-21-31,
  • Familiar NIST Risk Management Framework (RMF),
  • Familiar Continuous Diagnostics and Mitigation (CDM)

Hands on Knowledge and Familiar with:

  • Splunk Search Processing Language (SPL) ,
  • Splunk solution expert knowledge
  • Splunk Dashboard (create visualizations, anomaly detection and reporting)
  • Splunk Data Model
  • Splunk Programming
  • Regular Expressions
  • SQL Knowledge
  • Work with structured/un-structured data



If you are interested in applying for this job, or if you know someone who is (we offer referral bonuses), please get in touch with us at