- Participate in developing security-focused content for our Splunk implementations across the four classified Department of Defense (DoD) networks. Coordinate with the APL security operations teams and customers to build threat detection logic and dynamic operational dashboards. Assist with architecting log management, and data ingest solutions to ensure they are scalable and efficient. Analyze and make recommendations for Risk Management Framework (RMF) compliance requirements.
- Leverage automation techniques and develop scripts to manipulate data repositories to support data and threat analysis. Develop documentation supporting management procedures and implementation guides for Splunk-based solutions.
- Deploy and handle Splunk indexers, search heads, forwarders, and other Enterprise components within the distributed environments. Implement and manage add-ons to enhance capabilities, such as machine learning and sophisticated threat detection.
- Assist with the Assessment and Authorization (A&A) of the Splunk environment. Perform risk assessments along with Security Test & Evaluations (ST&E) of Splunk components and, ensure network computer systems align with the Information Assurance Vulnerability Management (IAVM) standards.
- Review systems to identify potential security weaknesses, recommend improvements, and implement changes. Work with the Vulnerability Management team to remediate findings from Assured Compliance Assessment Solution (ACAS)/Nessus and Host-Based Security Solution (HBSS) scans and other automated and manual assessment tools such as DoD Security Technical Implementation Guides (STIGs).
- Work with existing and custom Splunk applications and add-ons to meet compliance requirements. Implement and administer Splunk in Windows and Linux environments.
- Leverage programming skills (e.g., CSS, HTML, JavaScript, Python, shell scripting) to automate security tools management. Build customized applications within Splunk such as searches, audit scripting, and visualization.
- Track and implement responses and actions to address operational and communication orders from governing organizations. Provide expert analysis of records to prevent or detect anomalies or possible adverse events. Identify data accessed, destination and source addresses, timestamps, user login information, and specific sequence of activities to formulate courses of action and/or responses.
- A BS degree in Computer Science, Management Information Systems, Computer Information Systems, Information Assurance, or comparable field or equivalent years of professional relevant
- 2+ years of Security Engineering experience working with DoD IT enclaves, systems, and solutions
- 1+ years of experience with application and OS enterprise logging, managing, creating rule sets and threat detection logic in Splunk
- Splunk Search Processing Language (SPL) and Regular Expression expertise
- Splunk Core Certified Advanced Power User certification
- Hold an active Secret security clearance with the ability to obtain a Top-Secret clearance. If selected, you will be subject to a government security investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.
- Are able to work occasional weekends and other after-hours to handle and/or complete critical project/work-related business needs.
- Strong communication and presentation skills
- Intermediate expertise with Red Hat Enterprise Linux (RHEL) version 8 and 9
- 3+ years of experience leveraging Splunk or audit logs for incident response and user behavior analytics
- Experience reviewing network, host and firewall security logs. Prior experience with leading vendor security products such as Tenable, Ivanti, Forescout, Trellix, etc.
- Experience with using scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data
- Experience with Splunk Machine Learning Toolkit (MLTK)
- Splunk Enterprise Certified Admin or Splunk Enterprise Certified Architect
- Current industry certification aligned to DoD Manual 8570, 01-M for IAT II
-
Splunk Administrator
Found in: Lensa US 4 C2 - 3 days ago
Johns Hopkins Applied Physics Lab Laurel, United States· Are you · searching for exciting and impactful work supporting several diverse Classified · networks? · Are you a self-starter that is · passionate about crafting visualizations, reports and charts? · If so, we're · looking for someone like you to apply and join our team at ...
-
Splunk Administrator
Found in: Lensa US 4 C2 - 2 days ago
Johns Hopkins Applied Physics Laboratory Laurel, United States· Are you searching for exciting and impactful work supporting several diverse Classified · networks? · Are you a self-starter that is passionate about crafting visualizations, reports and charts? · If so, we're looking for someone like you to apply and join our team at APL · ...
-
Splunk Administrator with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
Johns Hopkins University Applied Physics Laboratory Laurel, MD, United StatesAre you searching for exciting and impactful work supporting several diverse Classified · networks? Are you a self-starter that is passionate about crafting visualizations, reports and charts? If so, we're looking for someone like you to apply and join our team at APL The Splunk ...
-
Splunk Administrator
Found in: Lensa US 4 C2 - 5 days ago
GCyber Arlington, United StatesGCyber is hiring a Splunk Administrator, to support the Compartmented Enterprise Services Office (CESO). With the CESO program, the Defense Information System Agency (DISA) is looking to transform the existing Secure Web Services (SWS) environment, which provides security informa ...
-
Splunk Administrator
Found in: Lensa US 4 C2 - 5 days ago
Gray Tier Technologies LLC Arlington, United StatesSplunk Administrator · Gray Tier's Defense Group is seeking a · Splunk Administrator · to install and maintain Splunk infrastructure, gather requirements from customers, onboard data, and assist end users with search, dashboards, reports, and knowledge objects in support of th ...
-
Splunk Administrator
Found in: ZipRecruiter Test10S US C2 - 2 days ago
GCyber Arlington, United StatesJob Description · Job DescriptionGCyber is hiring a Splunk Administrator, to support the Compartmented Enterprise Services Office (CESO). With the CESO program, the Defense Information System Agency (DISA) is looking to transform the existing Secure Web Services (SWS) environment ...
-
Systems Engineer 2/Splunk Administrator
Found in: Talent US A C2 - 2 weeks ago
Jacobs Annapolis Junction, United StatesYour Impact:Jacobs is seeking a System Engineer 2 to perform as a Splunk Administrator in Annapolis Junction, MD. This Junior Splunk and data management candidate will focus on operations and data flows such as NiFi. The selected System Engineer will greatly reduce the workload o ...
-
Splunk Administrator with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
GCyber Arlington, VA, United States Full timeGCyber is hiring a Splunk Administrator, to support the Compartmented Enterprise Services Office (CESO) · With the CESO program, the Defense Information System Agency (DISA) is looking to transform the existing Secure Web Services (SWS) environment, which provides security inform ...
-
Cyber Security Engineer – Splunk Administrator
Found in: Talent US A C2 - 11 hours ago
QinetiQ Reston, United StatesCompany Overview · We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fie ...
-
Systems Engineer 2/Splunk Administrator
Found in: Lensa US 4 C2 - 5 days ago
Jacobs Baltimore, United StatesWelcome. You haven't signed in yet so please select 'I accept' to start or access your Jacobs Career Application. · My Account Options · Systems Engineer 2/Splunk Administrator - TS/SCI with POLY Required · - · ( · CIS0001N6 · ) · Your Impact: · Jacobs is seeking a System En ...
-
Cyber Security Engineer – Splunk Administrator
Found in: Talent US C2 - 1 day ago
QinetiQ Reston, United StatesCompany Overview · We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide. Much of our work contributes to innovative research in the fi ...
-
Splunk Systems Engineer/Administrator with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
Visionist Columbia, MD, United StatesActive Top Secret (TS/SCI) clearance with polygraph is required · Visionist has an exciting new, fully FUNDED opportunity for a Splunk Systems Engineer/Administrator · You will be joining a critical mission supporting our customers big data processing platforms · The analytics de ...
-
System Engineer 2/Splunk Administrator
Found in: Lensa US 4 C2 - 5 days ago
Wyetech LLC Baltimore, United StatesAnalyzes user's requirements, concept of operations documents, and high level system architectures to develop system requirements specifications. Analyzes system requirements and leads design and development activities. Guides users in formulating requirements, advises alternativ ...
-
Cyber Security Engineer – Splunk Administrator with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
QinetiQ Herndon, VA, United StatesCompany Overview We are a world-class team of professionals who deliver next generation technology and products in robotic and autonomous platforms, ground, soldier, and maritime systems in 50+ locations world-wide · Much of our work contributes to innovative research in the fiel ...
-
Sr. Windows Administrator SPLUNK with active TS/SCI Poly
Found in: Lensa US 4 C2 - 6 days ago
Leidos Baltimore, United StatesExciting opportunity to join our fast-growing National Security Group at Leidos · We are seeking a · Sr. · Wi ndows Systems Administrator with Splunk experience · to work at our · Annapolis Junction, MD · location. This is an exciting opportunity to join our highly sought af ...
-
System Engineer 2/ Splunk Administrator Annapolis Junction, MD
Found in: Lensa US 4 C2 - 5 days ago
Onyx Point, Inc. Baltimore, United StatesTO BE CONSIDERED FOR THIS POSITION YOU · MUST · HAVE AN ACTIVE TS/SCI W/ POLYGRAPH SECURITY CLEARANCE (U.S. CITIZENSHIP REQUIRED) · This Junior Splunk and data management candidate will focus on operations and data flows such as Ni Fi. The selected Systems Engineer will greatl ...
-
Cloud Systems Administrator 2 with Security Clearance
Found in: Dice One Red US C2 - 4 days ago
Farfield Systems, Inc Laurel, MD, United StatesAbout Farfield Systems, Inc At Farfield we are committed to delivering trusted expertise to our government clients · As we grow, our focus is on increasing opportunities for you to grow with us while still delivering the same excellence customers have grown to expect from us · We ...
-
Software Engineer, TS/SCI with Polygraph required
Found in: Lensa US 4 C2 - 5 days ago
General Dynamics Information Technology Laurel, United States**Req ID:** RQ170647 · **Type of Requisition:** Regular · **Clearance Level Must Be Able to Obtain:** Top Secret SCI + Polygraph · **Job Family:** Software Engineering · **Skills:** · Agile Methodology,Red Hat Enterprise Linux (RHEL),Splunk,Systems Architecture · **Experience:** ...
-
Python Software Engineer 2
Found in: Lensa US 4 C2 - 3 days ago
InterImage Laurel, United StatesRequirements: · -Bachelor's degree plus 5-years of relevant experience or Master's degree plus 3-years of relevant experience. An Associate's degree plus 7-years of relevant experience or high school diploma/GED plus 9-years of relevant experience may be considered for individual ...
-
Software Engineer, TS/SCI with Polygraph required
Found in: ZipRecruiter Test30 US C2 - 2 days ago
General Dynamics Information Technology Laurel, United StatesJob Description · Transform technology into opportunity as a Software Engineer with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you'll be at the forefront of innovation and play a meaningful part in improving how agencies o ...
Splunk Administrator - Laurel, United States - Johns Hopkins Applied Physics Laboratory (APL)
Found in: Lensa US 4 C2 - 11 hours ago
Description
Are you searching for exciting and impactful work supporting several diverse Classified
networks?
Are you a self-starter that is passionate about crafting visualizations, reports and charts?
If so, we're looking for someone like you to apply and join our team at APL
The Splunk Administrator will be a valued member of the team with overall responsibility for engineering, operating, and managing the Splunk Enterprise environment across five classified security enclaves. We provide technical expertise to meet compliance and security objectives across networked environments that require Audit and Logging Operations, Incident Identification and Response Coordination. Each environment consists of Splunk forwarders, indexers, search heads, centralized log servers, with varying data ingests. You will lead operational responsibilities to include security and overall performance management of the environment.
As a Splunk Administrator, you will...
You will meet the minimum requirements if you have...
You will go above and beyond our minimum requirements if you have...
Why work at APL?
While the Johns Hopkins University Applied Physics Laboratory brings world-class expertise to a broad range of challenges, what makes us truly outstanding is our culture. We offer a vibrant, innovation ecosystem where you can feel safe to share ideas and to continue to grow personally and professionally. At APL, we celebrate our differences and encourage creativity and bold, new ideas and have earned Best Places to Work accolades in outlets such as Fast Companies and Glassdoor.
.
Our employees enjoy generous benefits, including a robust education assistance program, unparalleled retirement contributions, and a healthy work/life balance. APLs campus is located in the Baltimore-Washington metro area. Learn more about our career opportunities at
About UsAPL is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, physical or mental disability, genetic information, veteran status, occupation, marital or familial status, political opinion, personal appearance, or any other characteristic protected by applicable law.
APL is committed to promoting an innovative environment that embraces diversity, encourages creativity, and supports inclusion of new ideas. In doing so, we are committed to providing reasonable accommodation to individuals of all abilities, including those with disabilities. If you require a reasonable accommodation to participate in any part of the hiring process, please contact Only by ensuring that everyones voice is heard are we empowered to be bold, do great things, and make the world a better place.