Principal Security Operations Analyst

About the Role

• Lead the design, administration, and optimization of Splunk environments for security monitoring, log management, and threat detection. • Architect, implement, and maintain enterprise cybersecurity tools and platforms. • Tune, monitor, and troubleshoot security tools to ensure performance, reliability, and scalability. • Integrate security tools with third‑party platforms, APIs, and cloud services. • Administer and optimize Cribl for efficient data routing, filtering, and transformation. • Conduct gap analyses and evaluate emerging security technologies. • Collaborate with IT, SOC, and business teams to align security architecture with enterprise objectives. • Develop technical documentation, standards, procedures, and security reports. • Provide technical leadership and mentorship on security engineering best practices.

Key Responsibilities

• ▸splunk management
• ▸security tooling
• ▸tool tuning
• ▸tool integration
• ▸cribl administration
• ▸gap analysis

What You Bring

Parsons is seeking a talented Principal Security Engineer to join our growing team. In this role you will lead the design, architecture, and operation of enterprise cybersecurity tooling, with a strong emphasis on Splunk administration, architecture, and security analytics. You’ll be responsible for protecting systems, networks, and data through advanced security engineering, strategic planning, and operational excellence. • 10+ years of Splunk administration and architecture experience. • 10+ years of Linux OS administration and system architecture experience. • Strong understanding of security threats, attack methodologies, networking, and operating systems. • Excellent written and verbal communication skills, able to convey complex technical concepts to non‑technical audiences. • Ability to obtain and maintain a government security clearance. • One or more Splunk certifications (e.g., Splunk Cloud Certified Admin, Splunk Enterprise Security Certified Admin, etc.). • Experience supporting or leading SOC or SOC‑adjacent teams. • Deep knowledge of SIEM platforms, IDS/IPS, firewalls, proxies, and security monitoring tools. • Experience with cloud platforms (AWS, Azure, GCP) and cloud security architectures. • Familiarity with Infrastructure as Code (Terraform, Ansible). • Experience with containers and orchestration (Docker, Kubernetes). • Proficiency in scripting languages (Python, Bash, PowerShell). • Strong analytical, problem‑solving, and data‑driven decision‑making skills.

Requirements

• ▸splunk
• ▸linux
• ▸siem
• ▸aws
• ▸terraform
• ▸python

Benefits

This position is part of our Corporate team. For over 80 years, Parsons Corporation has shaped the future of the defense, intelligence, and critical infrastructure markets. We offer best‑in‑class benefits such as medical, dental, vision, paid time off, an Employee Stock Ownership Plan, 401(k), life insurance, flexible work schedules, and holidays. Salary range is $120,800.00 – $217,400.00.

Work Environment

Office Full-Time