Splunk Engineer L3 GW - TS/SCI Poly required

Splunk Engineer L3 GW - TS/SCI Poly required

Annapolis Junction, MD · Information Technology Apply Now

The Splunk Engineer shall have the following tasks:

• Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
• Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
• Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
• Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and Tier 2/3 Help Desk technicians.

Requirements:

• TS/SCI with FS Poly
• Bachelor's Degree plus 20 years technical experience (five years technical experience can be substituted for degree).
• CompTIA Security+ CE
• Experience managing user authentication within Splunk including RBAC/ABAC
• Experience reviewing network, host, and firewall security logs
• Strong organizational, communication, and collaboration skills

Desired Skills:

• Experience with Splunk Machine Learning Toolkit (MLTK)
• Experience with scripting languages such as CSS, HTML, JavaScript, and Python
• Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning
• ServiceNow Ticketing System
• Shell scripting to automate tasks and manipulate data

Apply Now