Edgewater Federal Solutions - Bethesda, MD
posted 3 months ago
Edgewater is seeking a Splunk User and Entity Behavior (UBA) Engineer to support the Security Program Support Services team of the National Institute of Health (NIH). In this role, you will be part of a Cyber Security Ops organization that is dedicated to supporting a leading federal healthcare client. As a Splunk UBA Engineer, your primary responsibility will be to maintain and operate the Splunk application monitoring tool, which is integral to the client’s Cybersecurity network and application audit and monitoring program within the Threat Monitoring and Incident Response (TMIR) team. You will apply strategic, operational, and tactical cyber intelligence to enhance security operations and lead or support efforts to prepare for, monitor, detect, analyze, confirm, contain, remediate, and recover from security incidents. Your role will also involve developing and implementing actionable alerts and workflows for Splunk as a CISO monitoring tool, as well as creating apps and knowledge objects such as dashboards, reports, and data models. You will provide analyst training and workshops on using Splunk, and work on developing and implementing automation and efficiencies within the platform. Communication with customer stakeholders, including leadership, support teams, and system administrators, will be essential. You will conduct deep analysis and hunting operations, configure incident response and remediation workflows, and perform technical writing and documentation tasks such as creating reports, training materials, and architecture diagrams. Building excellent relationships with prospects, clients, and internal team members is crucial, as you will co-lead client calls and communications, including the development of presentations, status reports, and requirements documents. The position requires a strong ability to take direction and achieve quality results, with a focus on personal excellence in task completion.