Splunk Engineer

Secret Security clearance with ability to obtain TS/SCI

As a Splunk Engineer supporting Department of State (DoS) Commercial Solutions for Classified (CSfC) deployment, you will be trusted to secure DoS CSfC services in Sterling, Va. Reporting to the Cybersecurity Operations Lead, you will be responsible for strengthening the defensive posture and cyber defense operational readiness of a CSfC deployment and collaborating with DoS cybersecurity operations to assure the program defends and protects Government assets from external Cybersecurity attacks and Insider Threats that can potentially cause or create data, systems, networks, and personnel vulnerabilities.

Must have hands-on experience in designing, fielding, and maintaining Splunk

• Perform complex system development, design, modeling, analysis, integration, and sustainment of Splunk systems for new computer systems within the CSfC Enterprise.
• Develop dashboards, data models, reports and performance optimization.
• Design and customize complex search queries and promote advance searching, forensics, and analytics.
• Develop and document configuration standards, policies, and procedures for operating, managing and ensuring the security of a Splunk infrastructure.
• Participate in incident, problem, and change management processes related to Splunk.
• Provide Splunk O&M and User access.
• Plan and direct upgrades and system enhancements.
• Develop and implement testing strategies and documenting results.
• Develop documentation on new or existing systems.
• Provide system/equipment/specialized training and technical guidance.
• Serve as liaison with clients, participating in meetings to ensure client needs are met.
• Provide guidance and work leadership to less-experienced staff.
• Communicate effectively with customers and teammates clearly and concisely.
• Maintain current knowledge of relevant CSfC technology and willingness to contribute to other software deployment and management.

• Degree in a Computer Science, Engineering or Information Technology related field is desired but not required. Bachelor’s degree in Information Technology/Systems or experience.
• 15 years of experience in information technology
• 3+ years of Splunk design and administration
• Demonstrate proven experience (with tangible outcomes and results), a can-do attitude, an ability to influence internal and external customers, and a leadership and communication style required to foster agreement and productive outcomes
• Experience with end-user device deployment
• Aware of Android and iOS technical differences
• Experience in collaborating with multiple technical teams to drive solutions that requirement driven including technical subject matter experts, including hardware and software designers, operations personnel, and test engineers and communicate potential security risks and mitigations
• Experience using Microsoft Office including MS Visio, MS Word, MS Excel and other appropriate tools.
• Strong English communication skills with ability to lead working groups, communicating clearly and succinctly in written and oral presentations

• Security Clearance of TS/SCI.
• Formal training in Splunk
• Experience with Splunk widgets to create data visualization to meet operational requirements
• Technical knowledge of any of; Cisco ICE/UCS, ForcePoint (High Speed Guard McAfee), InfoBlox, MetricStream, Radiant Logic, Tenable Security Center, Sciencelogic, SonarSource, Appscan HCL
• Department of State employee or contractor experience