Splunk Systems Engineer - TS/SCI w/Poly

About The Position

Requirements

• Education: Bachelor of Arts/Bachelor of Science.
• Required Experience: 2+ years of related experience.
• Security Clearance Level: TS/SCI w/Poly.
• Experience managing user authentication within Splunk to include Role and Attribute Based Access Controls (RBAC/ABAC), authentication with Lightweight Directory Access Protocol and Active Directory (LDAP/AD), and managing access via HEC tokens.
• Experience implementing and managing Apps within Splunk.

Nice To Haves

• Experience reviewing network, host and firewall security logs.
• Experience with using scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data.
• Experience managing integrations with technical add-ons with a relevant experience integrating DBConnect.
• Experience with Splunk Machine Learning Toolkit (MLTK), solid knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning is highly preferred.
• Expert understanding in data analytics, Hadoop, MapReduce, visualization is a plus.
• Programming experience PowerShell or Python is preferred.
• Experience using ServiceNow ticketing system, broad operations or development experience.
• Strong organization, communication, and collaboration skills and be customer-focused and results oriented.

Responsibilities

• Monitoring Splunk infrastructure system health and data feeds.
• Install and configure Splunk Indexers, Forwarders, Deployment Servers and Search-Heads.
• Onboarding new data.
• Supporting cybersecurity and operations teams.
• Driving complex Splunk dashboard deployments/reports.
• Working side by side with customers to solve their unique problems across a variety of use cases.
• Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
• Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
• Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
• Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and Tier 2/3 Help Desk technicians.

Benefits

• 401K with company match.
• Comprehensive health and wellness packages.
• Internal mobility team dedicated to helping you own your career.
• Professional growth opportunities including paid education and certifications.
• Cutting-edge technology you can learn from.