Splunk Engineer

Edgewater Federal Solutions is seeking a Splunk Engineer to support an Edgewater Federal government contract. The ideal candidate will have deep hands-on knowledge of Splunk and Splunk Enterprise Security, as well as experience working with APIs, CI/CD pipeline automation, and cloud native technology.

Requirements

• Deep hands-on knowledge of Splunk and Splunk Enterprise Security
• Deep experience working with Splunk and APIs, CI/CD pipeline automation and integration with Splunk and other cloud native technology API endpoints using python, ansible, salt, chef, and other tools
• Strong experience and expertise engineering data streaming and Splunk solutions for federal customers
• Hands-on implementation of all critical components of system for audit and monitoring
• Experience deploying/managing Splunk indexer clusters and search head clusters
• Strong understanding of the underlying Splunk infrastructure and components
• Experience with data pipeline and data lake solutions, such as Cribl
• Strong Linux system administration and engineering skills
• Experience working with other big data analytics solutions (Elastic Stack, Crowdstrike, Palantir, etc.)
• Experience in building Splunk Technology Add-ons and configuring field extractions for various data sources (Regular Expressions)
• Supports and oversees all the engineering activities to include change management, platform performance and stability
• Implements and maintains Splunk platform infrastructure and configuration in large enterprise AWS environments
• Ability to provide hands-on assistance with implementation, troubleshooting, maintenance and scale for all facets of the platform
• Document all the technical functions in alignment with the internal standards, processes, and practices
• Produce metrics for platform performance, capacity, and user management periodically
• Analyze and articulate risks, tradeoffs and debt associated with Splunk Core and ES configurations and component implementations
• Integrations with ServiceNow, Phantom, UBA, and other similar platforms
• Proven experience supporting large, complex, federal Splunk deployments
• Proven experience supporting Splunk CDM deployments
• Proven experience advancing federal agency compliance with OMB M-21-31
• True change agent - not intimidated by challenge of unknown and willing to challenge status quo
• Strong verbal and written communication skills to include the ability to influence decisions with business units and technical leadership
• Demonstrated ability to handle stressful situations with calm effectiveness

Benefits

• Paid Time Off & Holiday Pay
• Medical Insurance
• Dental Insurance
• Vision Insurance
• Disability, Life Insurance, and AD&D
• Flexible Spending Accounts
• Pre-Tax 401K and/or After-Tax Roth IRA (with employer matching contribution)
• Tuition and Technical Training Reimbursement
• Exercise Reimbursement
• Computer Reimbursement
• Employee Assistance Program