Splunk Administrator & Engineer - TS/SCI with Polygraph

We are seeking highly motivated engineers with a thirst for learning, in support of a geographically dispersed, state of the art systems that seamlessly integrate Linux and Microsoft services. Candidates with proven depth creating solutions with Splunk in a Microsoft Windows Server environment will be positioned for success in our organization. Strong working knowledge of Splunk development (Create Dashboards, Visualizations, Statistical Reports, Scheduled Searches, Alerts, and Knowledge Objects) is critical. The selected candidate will design solutions within a large-scale multi-domain enterprise Windows Server environments (as well as select hybrid domains with RHEL integration).  Embracing the DevOps model, engineers will be responsible for supporting their solutions throughout the entire IT project lifecycle, to include refining requirements, creating design documentation, creating installation instructions and deployment plans, and providing O&M support. Project assignments will vary based on skill level, and may include engineering geographically dispersed services, integrating services into public, private and hybrid cloud environments, engineering solutions to be deployed via automated CM tools, and hardening the solutions to address security and SCAP compliance.

Responsibilities:

• Designs and defines solutions leveraging Splunk

• Analyze requirements and system architectures to develop system requirements specifications and resulting design plans

• Administer, operate, manage, and maintain components of Splunk

• Reviews completion and implementation of system additions and/or enhancements and makes recommendations to management and/or clients

Required Skills:

• Active TS/SCI and CI Polygraph

• CompTIA Security+ or similar for IAT Level II DoD 8570 certification

• Experience in Splunk development (Create Dashboards, Visualizations, Statistical reports, scheduled searches, alerts, and knowledge objects)

• Expert-level knowledge and understanding of Splunk “Search” language and building complex queries

• Implement KV stores, lookups, and data model acceleration to optimize search performance and reporting

• Knowledge of how to customize Dashboards via the simple XML, advanced XML source, JavaScript, CSS, advanced HTML

• Expert-level capabilities with a regular expression and statistical functions

• Experience with creating Splunk knowledge objects

• Additional experience engineering or administering Microsoft or Red Hat Enterprise Linux environments is a plus

• Additional experience engineering or administering workloads in cloud PaaS solutions such as AWS or Azure is a plus

• Experience with managing work tasks via tools such as JIRA and ServiceNow

• System configuration experience and hardening based on security guidelines, such as DISA STIGs

#JET