ExtraHop SME

ExtraHop SME

Location: Rockville, MD (Hybrid, 2-3 days onsite)

We are currently hiring a highly skilled and experienced ExtraHop Subject Matter Expert (SME) to provide deep technical expertise and leadership in the implementation, management, and optimization of our ExtraHop platform. The ideal candidate will possess a comprehensive understanding of network performance monitoring, security analytics, and the ExtraHop product suite. As the ExtraHop SME, you will be responsible for ensuring the platform is effectively leveraged to provide actionable insights, improve network and application performance, enhance security posture, and support critical business initiatives.

Qualifications:

• A Bachelor's Degree in Engineering, Computer Science, or a related field is preferred.
• Minimum of 3 years of experience as an ExtraHop administrator or subject matter expert.
• Deep understanding of network protocols (TCP/IP, DNS, HTTP, etc.), network infrastructure (routers, switches, firewalls, load balancers), and application architectures.
• Proven ability to design, implement, and manage large-scale ExtraHop deployments.
• Hands-on experience with ExtraHop Reveal and/or other ExtraHop modules.
• Strong analytical and problem-solving skills with the ability to interpret complex data and translate it into actionable insights.
• Experience in creating custom dashboards, alerts, and reports within ExtraHop.
• Familiarity with security concepts, threat detection methodologies, and security information and event management (SIEM) systems such as Splunk.
• Familiarity with ExtraHop integration with Splunk, Splunk SOAR and Palo Alto firewalls.
• Excellent communication (both written and verbal) and interpersonal skills with the ability to effectively communicate technical concepts to both technical and non-technical audiences.
• Ability to work independently and collaboratively within a team environment.
• ExtraHop certification(s) (e.g., ExtraHop Certified Administrator).
• Experience integrating ExtraHop with other security and IT management tools such as Splunk and Splunk SOAR.
• Familiarity with scripting languages (e.g., Python) for automation and data manipulation.

Clearance Required:

• Must be a US citizen and pass a background investigation.
• Must have an active DHS Suitability (preferred) or be able to obtain and maintain a DHS Suitability/Entry on Duty (EOD)

Duties and Responsibilities:

• Serve as the primary point of contact and technical authority for all matters related to the ExtraHop platform.
• Lead the planning, design, implementation, configuration, integration of the ExtraHop deployment.
• Develop and implement best practices for utilizing ExtraHop for network performance monitoring, application performance management (APM), and security investigations.
• Create and customize dashboards, alerts, reports, and triggers within ExtraHop to meet the specific needs of various teams (e.g., Network, Security, Applications).
• Proactively monitor the ExtraHop environment to ensure optimal performance, health and scalability.
• Troubleshoot complex issues related to network and application performance and security incidents using ExtraHop data.
• Collaborate with cross-functional teams, including Network Engineering, Security Operations, Application Development and IT Operations, to provide data-driven insights and recommendations.
• Develop and maintain comprehensive documentation related to the ExtraHop environment, configurations, and processes.
• Provide training and knowledge transfer to other team members on the effective use of the ExtraHop platform.
• Stay up to date with the latest ExtraHop features, updates, and best practices, and proactively recommend and implement relevant enhancements.
• Work with ExtraHop support and professional services as needed to resolve issues and implement new functionalities.
• Contribute to the development and refinement of security policies and procedures based on insights gained from ExtraHop.
• Participate in capacity planning and forecasting for the ExtraHop environment.