Splunk Engineer

About the position

CACI seeking a talented professional to manage our Splunk Platform, create innovative applications, and leverage IT Service Intelligence (ITSI). In this role, you will build powerful tools to manage, search, analyze, and visualize data, while working in a dynamic Scrum Agile environment. You'll have the chance to integrate Splunk with other cutting-edge applications and make a significant impact on our organization's data management capabilities. Join us as a Splunk Engineer and take your career to the next level!

Responsibilities

• Design core scripts to automate Splunk maintenance and alerting tasks
• Develop dashboards and reports to display business-critical information
• Develop and maintain dashboards, reports, and alerts to ensure efficient monitoring and management of IT systems
• Engage with Product Owners to align platform capabilities with evolving business needs
• Create scalable, flexible security architectures using standards-based integrations
• Assist in developing policies for the secure operation of Splunk infrastructure
• Support cloud-based deployment and sustainment (AWS and Azure)
• Conduct software integration testing and cybersecurity compliance tasks
• Automate processes and develop efficiencies alongside development and install teams
• Maintain infrastructure for integration, cyber compliance, and network administration
• Support both UNIX/Linux and Windows-based systems
• Collaborate with IT teams to identify, troubleshoot, and resolve IT issues using Splunk
• Document configurations, changes, and troubleshooting procedures.

Requirements

• TS/SCI Clearance with Counterintelligence Polygraph
• BA/BS degree and 8 years of experience. In lieu of a bachelor's degree 10 years of experience if AA/AS, or 12 additional years of experience with HS diploma
• 8+ years of experience and demonstrated knowledge supporting IT Systems
• 4+ years of experience implementing and operating Splunk systems to include universal and heavy forwarders, search heads, deployment server, and indexes
• Design, develop, and implement new features for Splunk products
• Provide training and support to IT staff on Splunk usage and best practices
• Proven experience in designing, implementing, and maintaining Splunk solutions including, but not limited to: Splunk Enterprise, Splunk IT Service Intelligence, Splunk Log Management
• Knowledge of Linux security best practices
• Knowledge of cybersecurity compliance including RMF and IA standards
• Excellent problem-solving and analytical skills
• Service-oriented mindset
• Strong communication and collaboration skills
• At least one Splunk Certification: Splunk Certified for Splunk IT Service Intelligence (ITSI) or Splunk Certified Administrator (SCA)

Nice-to-haves

• Current Security+ or DOD 8570 IAT Level II Certification
• AWS or Azure Certification
• ITIL v4 Certification
• Strong understanding of IT operations, security, and business intelligence
• Good team player with a strong willingness to help others
• Experience scripting in the following preferred: Python, Perl, and JavaScript in relation to Splunk Apps/Add-ons
• SQL for querying structured data
• Knowledge of XML and JSON for data handling
• Splunk Search Processing Language (SPL) for data analysis in Splunk

Benefits

• healthcare
• wellness
• financial
• retirement
• family support
• continuing education
• time off benefits