OVERVIEW :
We are seeking a Splunk Engineer to join our team and support our mission critical customer in Reston, VA. As our Splunk Engineer, you will engineer, maintain, and fully support of AWS cloud-based deployment, hosting, enhancement, and support of centralized Splunk hosting environment.
Provide technical documentation, coordinate with external systems interface owners for integration planning, and support technical reviews.
Work with the program technical team to develop and deploy an enterprise Security Information and Event Management (SIEM) capability.
Integrate Splunk with legacy and emerging capabilities, data sources, and meta data standards. Continually research and develop capabilities to collect, analyze, aggregate, and provide network topologies that depict network connections. GENERAL DUTIES :
- Continuous improvement of Splunk capabilities, automated processes, and visualizations to provide cybersecurity analytics
- Managing and enhancing enterprise defensive tools and capabilities using Splunk capabilities
- Developing and maintaining performance metrics dashboard
REQUIRED QUALIFICATIONS :
- Bachelor’s degree and 8 years of experience related to specific functional area
- CompTIA Security+ or equivalent IAT Level II certification
- CompTIA Cloud+ or equivalent CSSP certification
- Experience with multi-node Splunk instances including administration, deployment, and use
- Experience in the use of network monitoring tools with a strong understanding of network protocols
- Experience with log normalization and other scripting and parsing (including a variety of formats such as CEF, JSON, XML)
- Knowledge of creating dashboards for application monitoring
- Experience performing security analysis, development, and implementation of security policies, standards, and guidelines
- Experience in security related areas such as vulnerability management, penetration testing, cyber threat analysis, and fusion
- Experience with Amazon Web Services or other cloud environments
- Experience integrating with REST APIs and external data sources
- Working collaboratively across cross-functional teams of all experience levels
- Creating, maintaining, and updating related knowledge management and technical documentation
- Understanding of full audit compliance to Information Assurance (IA) standards and ensure compliance to ICS 500-27 for audit reporting.
DESIRED QUALIFICATIONS :
- CSSP Infrastructure Support Cloud+, CEH, CySA+, or equivalent certification)
- Certification or interest in pursuing Splunk certifications (Architect, Consultant I, Consultant II, and / or Administrator).
- AWS certification
CLEARANCE :
- TS / SCI minimum
CLOSED - 2210 - Splunk Engineer
As our Splunk Engineer, you will engineer, maintain, and fully support of AWS cloud-based deployment, hosting, enhancement, and support of centralized Splunk hosting environment. We are seeking a Splunk Engineer to join our team and support our mission critical customer in Reston, VA. Integrate Splu...
Intelligence Analyst- WITH POLY - Security Clearance Required
Intelligence Analyst- WITH POLY. CACI has intelligence analyst positions at multiple locations in the Washington Metropolitan Area to support a wide range of operational an programmatic activities. ...
Software Developer - Security Clearance Required
We are seeking a skilled Software Developer with an active TS/SCI clearance to join our dynamic team, specializing in JavaScript/Node. ...
DevOps Engineer, Senior - Security Clearance Required
As a DevOps infrastructure engineer at Booz Allen, you’ll work closely with cloud architects and engineers to manage server configuration for modern cloud solutions. As a DevOps engineer, you know how to set up cloud environments and provision computer networking, storage, and virtual networks—ultim...
Cyber Security Analyst, Principal - Security Clearance Required
IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required. Directly manages security incidents (e. Coordinates enterprise incident response efforts, including command and control functions, in response to cyber security incidents. Performs security event and incident correlation ...
IT Network Project Manager - Security Clearance Required
SAIC has an immediate opening for a Project Manager with a background in Information Technology (IT) Network Engineering services to oversee the cost, schedule, and performance activities of an Enterprise IT Network Service Provider. ...
Jr. Software Developer - Security Clearance Required
NJVC is currently seeking a Software Developerto join our growing team in Springfield, VA. Develops and maintains software, application and content solution documentation to assist with software and application maintenance, enhancement, training and releases. Provide software process management and ...
Windows Systems Administrator
We are currently seeking a Windows Systems Administrator to join the Compartmented Enterprise Services Office (CESO) effort. Our Windows Systems Administrators work two rotating shifts - 0600-1400 (6am-2pm) and 1200-2000 (12pm-8pm). Integration of Network Management (NM) and Element Management (EM) ...
DevOps Engineer (Onsite)
Help shape the future of Flight Simulation! We seek an experienced *DevOps Engineer* to join Collins Simulation Solutions and Services (SS&S). Education and experience:** Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM) unless prohibited by local laws/regulat...
Junior Splunk Content Developer
Junior Splunk Developer to assist with maintaining custom Splunk apps and interfaces for our clients. The candidate must be very familiar with the Splunk Enterprise platform, including deployment of the product, onboarding standard and proprietary data sources, maintaining a Splunk environment, inst...