Splunk Engineer

We are seeking a Splunk Engineer to design, implement, deploy, and manage complex Splunk environments for a highly complex Department of State organization. The successful candidate will be responsible for creating, managing, and supporting automation solutions for Splunk orchestration, conducting cyber threat hunts, and providing incident response support and coordination.

Requirements

• Must be a US Citizen with the ability to obtain and maintain a Secret clearance. Active Secret Clearance preferred
• Masters Degree from an accredited university or equivalent combination of education in Computer Science, Information Technology, or a related field with 5 to 7 years of experience
• Strong experience working with Splunk, including architecting and implementing Splunk solutions in large-scale environments.
• Proficiency in SPL (Search Processing Language) for creating complex queries, reports, and dashboards in Splunk.
• Experience in designing, developing, testing, troubleshooting, deploying, and maintaining Splunk solutions, reporting, alerting, and dashboards
• Extensive knowledge of a tier Splunk installation: indexers, forwarders, search heads, clusters
• Experience analyzing system, network, and application logs for attack techniques at all stages of the cyber kill chain
• Experience with more than one or more enterprise-scale EDR and SIEM tool
• Experience consuming and analyzing Cyber Threat Intelligence for actionable takeaways.
• Strong analytical and critical thinking skills to identify and address complex data and system issues.
• Strong problem-solving skills to investigate and resolve Splunk platform and data ingestion issues.
• Strong communicator and collaborator, able to work closely with cross-functional teams.
• Knowledgeable in using scripting languages (e.g., Python) and Splunk's built-in scripting to automate routine tasks.
• Detail-oriented with a strong commitment to documenting configurations, processes, and best practices.
• Familiarity with ServiceNow cloud offering and log ingestion to Splunk.

Benefits

• health benefits
• retirement benefits
• paid time off
• stock options