Splunk Engineer

About The Position

Requirements

• Bachelor's degree with 8+ years of experience in Information Technology or equivalent Cyber Security certifications and experience.
• 4+ years of experience in Linux, Splunk, Ansible, app interface development, and using REST APIs.
• 4+ years of experience in a Splunk role within a clustered environment, including Splunk premium app management.
• Strong problem-solving abilities and the ability to work under pressure.
• Self-starter with the ability to prioritize and complete multiple tasks independently.
• Knowledge of Cloud Services such as AWS and Office365.
• Understanding and usage of Regex.
• Experience with scripting languages like Python, Bash, Visual Basic, or PowerShell.
• Understanding basic networking principles or Enterprise network design.
• Possess baseline security certification to meet DoD 8570 at IAT II requirements, such as Security +.

Nice To Haves

• Prior experience in a Splunk professional services role.
• Certifications in Splunk premium apps such as Enterprise Security, ITSI, UBA.
• Splunk Certified Developer certification.
• Experience in automating Splunk Deployments and orchestration within a Cloud environment.
• Experience with FISMA Systems requirements.
• Experience with Confluence, JIRA, ServiceNow.
• Cribl CCOE User certification.

Responsibilities

• Provide overall engineering and administration support for a large distributed clustered Splunk environment.
• Onboard new data sources into Splunk and build dashboards, searches, and reports.
• Edit and maintain Splunk configuration files and apps in a Linux environment.
• Interact with end users to gather requirements and assist with Splunk search queries and dashboards.
• Follow defined best practices and operational workflows.