- Conceptualize, design, build, and maintain current and future customer-supported tools and platforms
- Manage multiple assignments, changing priorities, and work independently with little oversight
- Lead team of Splunk engineers in the management of Splunk solution to optimize data availability for SOC and other
- Develop data storage, access, and retention strategies for a large IT enterprise using industry standards and best
- Design, build, implement, and administer Splunk infrastructure in on-prem and cloud environments.
- Create, manage, and support automation solutions for Splunk deployment and orchestration in on-prem and cloud
- Work with existing and custom Splunk applications and add-ons to fulfill customer needs
- Provide overall engineering and design support for a distributed Splunk environment consisting of heavy forwarders,
- Onboard data to Splunk via forwarder, scripted inputs, TCP/UDP, and modular inputs from various sources
- Normalize data to ensure CIM compliance, and develop data models to accelerate queries, dashboards, and
- Work closely with all relevant stakeholders to solve technical problems at the network, system, and application levels
- Conduct periodic architectural reviews of Splunk and related systems to assess effectiveness and propose optimal
- Develop and manage comprehensive documentation, artifacts, procedures, and processes for the optimal
- Degree in Computer Science, Engineering, or a related field and 8-12 years of experience in system administration, database administration, network engineering, software engineering, or software development, with a concentration in Cybersecurity . Additional years of experience may be considered in lieu of a degree.
- 8-12 of experience with Linux and Windows system administration or an expert understanding of
- 5+ years of experience with Splunk in distributed deployments
- Current Splunk Enterprise Certified Architect certification
- Excellent written and oral skills, ability to work closely with multiple customers, manage expectations, and track
- Experience implementing FISMA, NIST, NSA, and other information security, cybersecurity and CDM-related
- Expert-level knowledge and ability with Splunk Enterprise Security or integration with other Security Information
- Extensive experience with advanced configuration of Splunk including Indexer Clustering and Search Head
- Proficient at data on-boarding activities including routing, parsing, and normalizing events to the Splunk Common
- Information Model (CIM)
- Proficiency onboarding data using Splunk-developed add-ons forWindows, Linux, and common third-party devices
- Experience onboarding data into Splunk via forwarder, scripted inputs, TCP/UDP, and modular inputs from a variety
- Proficiency managing Splunk using the Splunk command-line interface
- Proficiency managing Splunk using configuration files
- Experience collaborating with separate engineering teams to configure data sources for Splunk integration
- Intermediate understanding of SQL and common SQL dialects
- Proficiency implementing and onboarding data in Splunk DB Connect
- Experience with Splunk performing systems administration, including performing installation, configuration,
- monitoring system performance and availability, upgrades, and troubleshooting
- General networking and security troubleshooting (firewalls, routing, NAT, etc.)
- Splunk architecture/design, implementation, and troubleshooting experience
- Experience in managing, maintaining, and administering multi-site indexer cluster
- Proficiency developing log ingestion and aggregation strategies per Splunk best practices
- Perform integration activities to configure, connect, and pull data with 3rd party software APIs
- Experience implementing and optimizing Splunk data models
- Proficient in regular expressions
- Scripting and development skills (Bash, Python, or PowerShell)
- Ability to autonomously prioritize and successfully deliver across a portfolio of projects
- Department of Homeland Security ESOC employees are required to obtain an Entry on Duty (EOD) clearance to
-
Splunk Engineer
2 weeks ago
Gray Tier Technologies LLC Arlington, United States10 years of relevant professional experience · 2+ years' experience with Splunk Enterprise, including: · Search Processing Language and the basics of writing Reports, Alerts, and Dashboards · Management of infrastructure components (e.g., Indexers/Index Clusters, Search Heads, ...
-
Splunk Engineer
2 weeks ago
Nyla Technology Solutions Washington, United States Full timeJob Description · We are seeking a Security Splunk Architect/Engineer to support a Navy enterprise network within the Engineering and Cyber Divisions. The candidate's primary responsibility is to maintain and enhance the existing Splunk infrastructure in the enterprise. Further p ...
-
Splunk Engineer
3 weeks ago
OneZero Solutions Washington, United StatesJob Description · Job DescriptionWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technic ...
-
Splunk Engineers
3 weeks ago
Zivaro Inc Washington, United StatesJob Description · Job DescriptionJOB SUMMARY: · Seeking multiple Splunk Engineers to Join Zivaro's team. Our team supports both Federal and State customers in their efforts to develop and maintain a Splunk environment. While much of this role may be conducted remotely, some posit ...
-
Splunk Engineer
2 weeks ago
OneZero Solutions Arlington, United StatesWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technically proficient and technically c ...
-
Splunk Ingest Engineer
3 weeks ago
Motion Recruitment Arlington, United StatesSplunk Ingest Engineer · Arlington, Virginia · 100% Remote · Contract · $80/hr - $100/hr · Splunk Ingest Engineer · As a Splunk Ingest Engineer, you will be entrusted with the critical role of maintaining and expanding our Splunk infrastructure. Your day-to-day responsibilities w ...
-
Splunk Engineer
3 weeks ago
OneZero Solutions Arlington, United StatesJob Description · Job DescriptionWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technic ...
-
Splunk Engineer
1 week ago
OneZero Solutions Arlington, United StatesJob Description · Job DescriptionWe are an employee-centric company that truly appreciates our team members and their value to our customers and the missions they support. We pride ourselves on being forward-leaning thinkers and fostering teams that are and continue to be technic ...
-
Senior Splunk Engineer
1 week ago
Motion Recruitment Arlington, United StatesMotion Recruitment Partners · Senior Splunk Engineer · Arlington , · Virginia · Apply Now · The company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at independently getting their w ...
-
Splunk Engineer
4 weeks ago
Computer World Services (CWS)Corporation Washington, United States· Job Description · The Splunk Engineer will be responsible for the entire end to end deployment of the Splunk family of software to support OFR's log retention, aggregation and analysis requirements. It is required that the candidate be well versed in Splunk technology and impl ...
-
Splunk Consulting Engineer
2 weeks ago
August Schell Washington, United StatesJob Description · Job DescriptionWho we are... · August Schell offers 30 years of experience in providing our customers innovative solutions and engineering services to their most challenging needs. We thrive on navigating complex IT difficulties and are driven to find the best ...
-
Splunk Engineer
1 month ago
ASRC Federal Holding Company Washington, United States Paid WorkASRC Federal Data Networx is seeking candidates to provide IT security support to a government contract in Washington, DC. · Position: Security Operations Center Engineer III · Location: Washington, DC · Clearance: Must be a US Citizen; Active Public Trust, desired. · Summary : S ...
-
Security Splunk Architect/Engineer
4 weeks ago
Nodel LLC Washington, United StatesLocation: Washington DC metro area (Hybrid) · Must have an active Secret OR Top Secret Clearance · We are seeking a Security Splunk Architect/Engineer to support a Navy enterprise network within the Engineering and Cyber Divisions. The candidate's primary responsibility is to mai ...
-
Splunk Engineer SME
3 weeks ago
Latitude, Inc. Arlington, United StatesJob Description · Job DescriptionWe are seeking a highly skilled and experienced Splunk Engineer SME to join our team. As a Splunk Engineer SME, you will be responsible for designing, implementing, and maintaining complex Splunk deployments for a variety of clients. You will work ...
-
Splunk Ingest Engineer
2 weeks ago
Motion Recruitment Partners, LLC Arlington, United StatesSplunk Ingest Engineer · As a Splunk Ingest Engineer, you will be entrusted with the critical role of maintaining and expanding our Splunk infrastructure. Your day-to-day responsibilities will include health checks, maintenance, and deployment activities that are crucial for the ...
-
Senior Splunk Engineer
2 weeks ago
Motion Recruitment Arlington, United StatesSenior Splunk Engineer · Arlington, Virginia · Remote Local · Contract · $60/hr - $65/hr · Senior Splunk Engineer · The company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at inde ...
-
Senior Splunk Engineer
2 weeks ago
Motion Recruitment Arlington, United States CONTRACTSenior Splunk Engineer · The company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at independently getting their work done, at the same time they are a team player who readily and proact ...
-
Senior Splunk Engineer
2 weeks ago
Motion Recruitment Arlington, United StatesSenior Splunk Engineer · The company is looking for creative individuals interested in helping grow something truly unique in their markets. While the ideal candidate is great at independently getting their work done, at the same time they are a team player who readily and proac ...
-
Splunk Engineer
2 weeks ago
Jtec Consulting Alexandria, United StatesJTEC Consulting LLC focuses on successfully delivering solutions to meet our clients' most critical needs. Our founding members have decades of experience delivering a wide range of solutions to Air Force and DOD clients. We are a Veteran-Owned Small Business. · Security Clearan ...
-
Splunk Engineer
2 weeks ago
RMantra Solutions Inc Alexandria, United StatesWork Schedule : 100% Onsite · Clearance: TS/SCI · Certification: Security+ CE · We are seeking a Splunk Engineer in support of the Compartmented Enterprise Services Office (CESO) NOC. · With the CESO program, We will manage the commercial cloud migration and disestablishment of l ...
Splunk Engineer - Arlington, United States - Leidos
Description
Description
Leidos has an immediate need for a Splunk Engineer for a new customer on a highly-visible and strategic
Cybersecurity Task Order.
The Splunk Engineer will install and maintain Splunk infrastructure, gather requirements from customers, onboard data, and assist end users with searches, dashboards, reports, and knowledge objects. The Splunk Engineer may be required to interact with senior management, as necessary.
stakeholders.
practices to advise Customer executive-level stakeholders
environments
indexers, and search head servers, spanning security, performance, and operational roles
correlation searches
installation alternatives as required
management of the Splunk infrastructure
Basic Qualifications:
operating systems and common operating environments
engagement scope
industry policies, procedures, guidelines, standards, and best practices
and Event Management (SIEM) platforms
Clustering
and applications
of sources
support this program
Preferred Certifications: Splunk Certified Consultant, Splunk Certified Architect, CASP, GCWN, GISF, GSSP, GICSP, CCNP, CCNP Security, CCIE Security, CEH, ENSA, ECSP, MCSE, VCP, BCAP, VCIX, VCDX, RHCA, RHCE
Original Posting Date:
While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $101, $183,300.00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
