** DO NOT APPLY UNLESS YOU HAVE A CURRENT SECRET CLEARANCE THAT IS ACTIVE OR CAN BE ACTIVATED IMMEDIATELY and eligible for TOP SECRET upgrade. **

 

We are looking to fill TWO highly specialized SPLUNK deployment and administration positions IMMEDIATELY in Sterling, VA. These are direct-hire positions with our company and do require a current SECRET clearance, eligible for upgrade to TS. 

 

MUST HAVE RELATED EXPERIENCE TO APPLY

Two SPLUNK positions:

1.    Backend engineering, deploying, administering

2.    Front-end creation of customer-facing dashboards, installing/configuring apps, tuning Splunk Enterprise Security, tuning Splunk UBA (User Behavioral Analytics)

 

We are currently seeking Splunk Engineer / Administrator to provide onsite support in Sterling, VA. The Splunk Engineer/Admin will work with the client in leveraging the full utility of Splunk technology to monitor cyber security, protect IT infrastructure, and enable rapid containment and resolution to IT security incidents. Duties and responsibilities also include

·         Implement the production of Splunk Ecosystem (Splunk Core, Splunk Enterprise Security, Splunk UBA), and feature the people, process, and tools that enable successful adoption assuring the solution is able to meet the objectives of the business.

·         Provide strategic support of Splunk integration and deployment, configuration and maintenance

·         Understand, interpret and develop content for SIEM products to meet internal and external customer requirements

·         Coordinate with other organizations (SOC/CSIRT) and assist with advanced issue resolution across the enterprise

·         Assist in the proper operation and performance of Splunk, Loggers and connectors and integration of data feeds (logs) into Splunk

·         Perform Content Development to properly identify data feeding SIEM’s and correlation of events.

·         Develop filters to assist in the identification of significant events

·         Provide recommendations and implement changes to optimize Splunk products in the customer environment

·         Write and develop custom scripts, programs as needed

Basic Qualifications

·         5+ years of experience with Splunk administration

·        10+ years of experience with System Administration and/or Cyber Security

 

Education:

·         Bachelors of Science degree in Information Technology, IT Security, Network Systems Technology or related field.

·         Experience developing enterprise strategic implementation of Splunk deployments

·         Certified Splunk Architect or Engineer

·         Experience with Linux or Solaris Servers

·         Experience with or knowledge of SIEM Content Development

·         Experience with Scripting (Python, Ruby, PowerShell, Perl, etc.)

·         Technical writing experience

·         Experience with installation/deployment procedures

·         Experience with document requirements

·         Excellent verbal and written communication skills are preferred

·         Candidates should possess interpersonal skills and must be fluent in the English language 

 

We offer a very generous compensation package to include 10 Federal Holidays paid + 15 paid vacation days annually, 401k matching plan, 1-week of paid training per year, $10,000 Medical/Dental allowance, and more.  This is a standard onsite M-F day shift working between 7am and 5pm, with the possibility of flex schedule and half-time remote