Splunk Systems Engineer - TS/SCI w/Poly

General Dynamics Information TechnologyMD
108d$102,000 - $138,000
Match Resume

About The Position

As a SIEM Team – Splunk Systems Engineer at GDIT, you will deliver simple solutions to complex problems. You will tailor cutting-edge solutions to the unique requirements of our clients, prioritizing the end user’s experience while focusing on your career growth. The Digital Services SIEM Team requires an experienced Splunk System Administrator to perform all aspects of Splunk Enterprise and ITSI administration, maintenance, and operation of a global enterprise solution used for complex Splunk applications, dashboards, and reports. Your duties will include monitoring Splunk infrastructure system health and data feeds, installing and configuring Splunk Indexers, Forwarders, Deployment Servers, and Search-Heads, onboarding new data, supporting cybersecurity and operations teams, and driving complex Splunk dashboard deployments/reports. You will work closely with customers to solve their unique problems across a variety of use cases.

Requirements

  • Bachelor of Arts/Bachelor of Science degree.
  • 2+ years of related experience.
  • Top Secret SCI + Polygraph security clearance.
  • Experience managing user authentication within Splunk, including Role and Attribute Based Access Controls (RBAC/ABAC), authentication with LDAP/AD, and managing access via HEC tokens.
  • Experience implementing and managing Apps within Splunk.

Nice To Haves

  • Experience reviewing network, host, and firewall security logs.
  • Experience with scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data.
  • Experience managing integrations with technical add-ons, including DBConnect.
  • Experience with Splunk Machine Learning Toolkit (MLTK).
  • Solid knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning.
  • Expert understanding in data analytics, Hadoop, MapReduce, and visualization.
  • Programming experience in PowerShell or Python.
  • Experience using ServiceNow ticketing system.
  • Broad operations or development experience.

Responsibilities

  • Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
  • Contribute to the development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
  • Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
  • Assist with the development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop, and Information System Security teams, and Tier 2/3 Help Desk technicians.

Benefits

  • 401K with company match.
  • Comprehensive health and wellness packages.
  • Internal mobility team dedicated to helping you own your career.
  • Professional growth opportunities including paid education and certifications.
  • Full flex work weeks where possible.
  • Variety of paid time off plans including vacation, sick and personal time, holidays, paid parental, military, bereavement, and jury duty leave.
  • Short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness, and business travel and accident insurance.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Entry Level

Education Level

Bachelor's degree

Number of Employees

5,001-10,000 employees

Job Search Resources

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service