Splunk SME Cleared- ONSITE

CDW•Crofton, MD

153d•Onsite

About The Position

At CDW, we make it happen, together. Trust, connection, and commitment are at the heart of how we work together to deliver for our customers. It’s why we’re coworkers, not just employees. Coworkers who genuinely believe in supporting our customers and one another. We collectively forge our path forward with a level of commitment that speaks to who we are and where we’re headed. We’re proud to share our story and Make Amazing Happen at CDW. A Splunk Subject Matter Expert (SME) plays a critical role in the deployment, configuration, and maintenance of Splunk environments. This position requires an in-depth understanding of Splunk architecture, administration, and the ability to leverage Splunk for data analysis and monitoring. The SME will be responsible for designing, implementing, and optimizing Splunk solutions to meet the organization's needs.

Requirements

Must hold active TS/SCI security clearance.
Must be able to work onsite at Crofton, MD location.
Minimum of 5+ years of experience working with Splunk, including advanced knowledge of Splunk Enterprise, Splunk Cloud, and Splunk ITSI.
Proven track record of successful Splunk deployments and management.
Technical Skills: Proficiency in SPL (Search Processing Language), Python, and shell scripting.
Familiarity with Linux/Unix environments and fundamental networking concepts.

Nice To Haves

Active CI Polygraph is preferred.
Active Splunk Certified Architect certification is strongly preferred.

Responsibilities

Splunk Deployment and Configuration: Design, implement, and maintain Splunk infrastructures, ensuring optimal performance and scalability. This includes managing Splunk clusters, indexers, search heads, and forwarders.
Data Onboarding: Collaborate with various teams to identify data sources, and ensure data is ingested into Splunk accurately and efficiently. Create and manage data inputs, indexes, and sourcetypes.
Dashboard and Report Creation: Develop custom dashboards, reports, alerts, and visualizations to provide actionable insights for stakeholders. Utilize SPL (Search Processing Language) to create advanced searches and queries.
Monitoring and Troubleshooting: Continuously monitor the health of the Splunk environment, identify and resolve performance issues, and ensure high availability. Perform root cause analysis for any Splunk-related problems.
Security and Compliance: Ensure Splunk configurations and data handling comply with organizational policies and industry standards. Implement security measures within Splunk, including role-based access controls.
Documentation and Training: Create and maintain comprehensive documentation for Splunk configurations, procedures, and best practices. Provide training and support to users and teams on Splunk functionalities.
Integration and Automation: Integrate Splunk with other tools and platforms, such as SIEM, ITSM, and Cloud services. Develop automation scripts to streamline Splunk operations and maintenance tasks.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume