Splunk Logging Services Technical Product Lead

The Digital Modernization Sector is seeking an experienced Splunk Logging Services Technical Product Lead to oversee and grow our enterprise Splunk services platform that spans multiple tenants and supports a wide array of applications, security operations, cloud/on-prem infrastructure, and IT services. In this role, you will architect, optimize, and manage large-scale Splunk deployments in AWS, ensuring the platform’s reliability, scalability, and performance. You will manage a cross-functional team of 10-15 Splunk specialists and cloud engineers, develop a product roadmap, and coordinate with multiple stakeholders to ensure a seamless, secure, and continuously improving logging environment.

Key Responsibilities

Architecture & Platform Ownership

• Design, implement, and maintain complex Splunk architectures in AWS, including multi-indexer clusters, workload distribution, search head configurations, and data ingestion frameworks.

• Define and document best practices for Splunk implementation, performance tuning, data modeling, and monitoring in a multi-tenant environment.

Team Leadership & Management

• Direct a team of Splunk administrators, cloud engineers, and support staff, providing mentorship, guidance, and professional development.

• Coordinate resource allocation, delegate tasks, and ensure that project milestones and service-level objectives are consistently met.

Product Roadmap & Strategy

• Develop and maintain a Splunk product roadmap aligned with organizational priorities, focusing on feature enhancements, platform improvements, and new use cases.

• Translate business requirements into technical deliverables, balancing innovative roadmap items with ongoing operational needs.

Stakeholder & Customer Engagement

• Act as the primary interface with customers, leadership teams, and Splunk Professional Services to align on architecture decisions, best practices, and service improvements.

• Communicate product vision, roadmap updates, and platform enhancements effectively across diverse technical and non-technical audiences.

Operational Excellence & Best Practices

• Oversee and refine operational procedures (e.g., data onboarding, index management, security configurations) to ensure high availability, resilience, and adherence to compliance/regulatory requirements.

• Implement and monitor key performance indicators (KPIs) to maintain optimal system health and proactively identify areas for improvement.

Cross-Functional Collaboration & Integrations

• Collaborate with various engineering and operations teams to integrate Splunk with other observability, monitoring, and analytics tools.

• Champion consistent logging standards and practices across the organization, driving adoption of next-generation logging solutions.

Continuous Innovation & Improvement

• Stay current with emerging Splunk capabilities, AWS services, and logging/monitoring trends to introduce new features and capabilities.

• Lead proof-of-concept initiatives that explore innovative ways of leveraging Splunk for business insights and system observability.

Required Qualifications

• Education & Experience:

  • Bachelor’s degree in Computer Science, Information Technology, or a related field (or equivalent professional experience). Additional years of experience may be substituted in lieu of degree.

  • Minimum of 12 years working with Splunk in enterprise-scale environments, including architecture, deployment, and administration.

  • Proven track record implementing and managing Splunk on AWS.

• Technical Expertise:

  • Deep understanding of Splunk Enterprise Security, IT Service Intelligence (ITSI), or similar modules.

  • Solid experience with AWS services (EC2, S3, CloudFormation, Lambda, etc.) and how they integrate with Splunk.

  • Expertise in performance tuning (indexers, search heads, forwarders) and data lifecycle management in Splunk.

  • Strong knowledge of security best practices and secure data handling in regulated environments.

• Leadership & Communication Skills:

  • Demonstrated ability to lead technical teams, manage workloads, and deliver on roadmap commitments.

  • Excellent verbal and written communication skills for interfacing with stakeholders of varying technical backgrounds.

  • Experience working with external consulting and professional services teams.

• Product Management & Strategy:

  • Proven experience developing and executing multi-phase product roadmaps.

  • Ability to balance competing priorities and manage stakeholder expectations effectively.

Must be able to obtain and maintain a public trust clearance

All candidates supporting the CMS programs must have lived in the United States at least three (3) out of the last five (5) years prior in order to be considered.

Preferred Qualifications

• Splunk certifications (e.g., Splunk Certified Architect, Splunk Enterprise Security Certified Admin).

• AWS certifications (e.g., AWS Certified Solutions Architect – Associate/Professional).

• Familiarity with DevOps/DevSecOps practices and CI/CD pipelines.

• Experience with scripting/programming languages (Python, Bash, etc.) for automation and integration.

• Understanding of ITIL practices and ServiceNow integration.

Original Posting Date:

While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.

Pay Range:

The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.