• DO NOT APPLY UNLESS YOU HAVE A CURRENT SECRET CLEARANCE THAT IS ACTIVE OR CAN BE ACTIVATED IMMEDIATELY and eligible for TOP SECRET upgrade.

    We are looking to fill a highly specialized SPLUNK deployment and administration position IMMEDIATELY in Sterling, VA. This is a direct-hire positions with our company and does require a current SECRET clearance, eligible for upgrade to TS. 

    MUST HAVE RELATED EXPERIENCE TO APPLY

    We are currently seeking a Splunk Engineer / Administrator to provide onsite support in Sterling, VA. The Splunk Engineer/Admin will work with the client in leveraging the full utility of Splunk technology to monitor cyber security, protect IT infrastructure, and enable rapid containment and resolution to IT security incidents. Duties and responsibilities also include

    • Implement the production of Splunk Ecosystem (Splunk Core, Splunk Enterprise Security), and feature the people, process, and tools that enable successful adoption assuring the solution is able to meet the objectives of the business.

    • Provide strategic support of Splunk integration and deployment, configuration and maintenance

    • Understand, interpret and develop content for SIEM products to meet internal and external customer requirements

    • Coordinate with other organizations (SOC/CSIRT) and assist with advanced issue resolution across the enterprise

    • Assist in the proper operation and performance of Splunk, Loggers and connectors and integration of data feeds (logs) into Splunk

    • Perform Content Development to properly identify data feeding SIEM’s and correlation of events.

    • Develop filters to assist in the identification of significant events

    • Provide recommendations and implement changes to optimize Splunk products in the customer environment

    • Write and develop custom scripts, programs as needed

    Basic Qualifications

    • 5+ years of experience with Splunk administration

    • 10+ years of experience with System Administration and/or Cyber Security

    • Bachelors of Science degree in Information Technology, IT Security, Network Systems Technology or related field.

    • Experience developing enterprise strategic implementation of Splunk deployments

    • Certified Splunk Architect or Engineer

    • Experience with Linux or Solaris Servers

    • Experience with SQL and/or Oracle Databases

    • Experience with or knowledge of SIEM Content Development

    • Experience with Scripting (Python, Ruby, PowerShell, Perl, etc.)

    • Technical writing experience

    • Experience with installation/deployment procedures

    • Experience with document requirements

    • Excellent verbal and written communication skills are preferred

    • Candidates should possess interpersonal skills and must be fluent in the English language 

    We offer a very generous compensation packages to include 10 Federal Holidays paid + 20 paid vacation days annually, 401k matching plan, $10,000 Medical/Dental allowance, and more.  This is a standard onsite M-F day shift working between 7am and 5pm, with the possibility of flex schedule in the future.

    We are looking to fill this position IMMEDIATELY.

This job is currently not open for applications. Would you like to see our other open positions?