Splunk Administrator - Now Hiring
Description Unleash Your PotentialAt Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customer's success.
We empower our teams, contribute to our communities, and operate sustainably.
Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.
Our Mission, Vision, and Values guide the way we do business.
If this sounds like an environment where you can thrive, keep reading!We are in search of a Splunk Administrator to join our Defense Enclave Services cybersecurity team at the customer site at Fort Meade, MD.
Our Opportunity:
Leidos has an exciting opportunity for a Splunk Administrator primarily supporting DMA.
In this role, a successful candidate will be a Splunk Subject Matter Expert (SME) providing Splunk administration support, including operation and maintenance of the log aggregation and Security Information and Event Management (SIEM) platform for DMA and/or other organizations supported under the DES contract.
The Splunk Administrator will perform systems analysis, modify and update systems and related data ingestion parameters based on results of analysis, deploy applications and tools, perform testing of deployed applications and tools, and communicate updates to Cybersecurity Lead and customers, as required.
Clearance Requirement:
oCurrently possess a DoD Secret security clearance with the ability to obtain and maintain a TS/SCI.
(US Citizenship required)Key
Responsibilities:
oEstablish and maintain configuration and technical support, assist in the technical design process, and provide guidance/direction to customer on how to best get value from Splunk products.
oMaintain, upgrade and troubleshoot SPLUNK servers, clusters and management systems.
oInstall, upgrade and maintain required SPLUNK applications and add-ons.
oProvide performance and license tuning for systems and troubleshoot SPLUNK components across multiple network environments.
oProvide solution engineering support to ensure systems and components meet current and future standards.
oDevelop, create, deploy, and manage custom SPLUNK monitors, alerts and dashboards.
oMonitor SPLUNK for cluster status, health status, and other issues, and resolve as needed.
oFollow approved DoD, STIG standards and DoD IAVA requirements.
oManage patching and updates of Splunk hosts and/or Splunk application software.
oMonitor and audit configurations and participate in the Change Management process to ensure that unauthorized changes do not occur.
oPerform data ingestion and visualization for Splunk.
oBuild and integrate contextual data into notable events.
oBuild dashboards highlighting data anomalies and key trends.
Design, develop, recommend, and implement Splunk dashboards and alerts in support of the Incident Response team.
oDevelop advanced scripts for the manipulation of data to support analyst requirements.
oProvide recommendations and implement changes to optimize Splunk in the environment.
oPerform integration activities to connect with 3rd party software APIs.
oRecommend innovative solutions to management and key stakeholders.
oManage automating Splunk deployments and orchestration.
Must have's:
oBachelor's degree and 8+years of relevant experience; additional years of experience may be substituted in lieu of a degree.
oAt least five (5) years of experience with Splunk implementing and administering Splunk and Splunk Enterprise Security.
oExperience developing in Bash, Perl, Shell, Powershell, SQL, D3, HTML, XML, CSS, Bash, JAVA and/or Python scripts.
oExperience writing Splunk queries in Splunk Programming Language (SPL).
oCertified Splunk Enterprise Administrator.
o8570 IAT-II certification.
o5
years hands-on experience implementing and administering security solutions, including developing related documentation and artifacts.
oAnalytical ability, problem-solving skills, and ability to break down complex problems into actionable steps.
oExperience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.
oExcellent knowledge and experience with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and related applications.
oExperience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.
oUnderstanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems:
a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.
Nice to have'soRobotic Process Automation/Intelligent Automation experience.
oCertified Splunk Enterprise Security Administrator.
oCertified Splunk SOAR Automation developer.
oAdditional certifications demonstrating cybersecurity/technical mastery.
DISADESExternal Referral EligiblePay Range:
Pay Range $97,500.
00 - $150,000.
00 - $202,500.
00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Salary:
$64.
Estimated Salary: $20 to $28 per hour based on qualifications.
We empower our teams, contribute to our communities, and operate sustainably.
Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.
Our Mission, Vision, and Values guide the way we do business.
If this sounds like an environment where you can thrive, keep reading!We are in search of a Splunk Administrator to join our Defense Enclave Services cybersecurity team at the customer site at Fort Meade, MD.
Our Opportunity:
Leidos has an exciting opportunity for a Splunk Administrator primarily supporting DMA.
In this role, a successful candidate will be a Splunk Subject Matter Expert (SME) providing Splunk administration support, including operation and maintenance of the log aggregation and Security Information and Event Management (SIEM) platform for DMA and/or other organizations supported under the DES contract.
The Splunk Administrator will perform systems analysis, modify and update systems and related data ingestion parameters based on results of analysis, deploy applications and tools, perform testing of deployed applications and tools, and communicate updates to Cybersecurity Lead and customers, as required.
Clearance Requirement:
oCurrently possess a DoD Secret security clearance with the ability to obtain and maintain a TS/SCI.
(US Citizenship required)Key
Responsibilities:
oEstablish and maintain configuration and technical support, assist in the technical design process, and provide guidance/direction to customer on how to best get value from Splunk products.
oMaintain, upgrade and troubleshoot SPLUNK servers, clusters and management systems.
oInstall, upgrade and maintain required SPLUNK applications and add-ons.
oProvide performance and license tuning for systems and troubleshoot SPLUNK components across multiple network environments.
oProvide solution engineering support to ensure systems and components meet current and future standards.
oDevelop, create, deploy, and manage custom SPLUNK monitors, alerts and dashboards.
oMonitor SPLUNK for cluster status, health status, and other issues, and resolve as needed.
oFollow approved DoD, STIG standards and DoD IAVA requirements.
oManage patching and updates of Splunk hosts and/or Splunk application software.
oMonitor and audit configurations and participate in the Change Management process to ensure that unauthorized changes do not occur.
oPerform data ingestion and visualization for Splunk.
oBuild and integrate contextual data into notable events.
oBuild dashboards highlighting data anomalies and key trends.
Design, develop, recommend, and implement Splunk dashboards and alerts in support of the Incident Response team.
oDevelop advanced scripts for the manipulation of data to support analyst requirements.
oProvide recommendations and implement changes to optimize Splunk in the environment.
oPerform integration activities to connect with 3rd party software APIs.
oRecommend innovative solutions to management and key stakeholders.
oManage automating Splunk deployments and orchestration.
Must have's:
oBachelor's degree and 8+years of relevant experience; additional years of experience may be substituted in lieu of a degree.
oAt least five (5) years of experience with Splunk implementing and administering Splunk and Splunk Enterprise Security.
oExperience developing in Bash, Perl, Shell, Powershell, SQL, D3, HTML, XML, CSS, Bash, JAVA and/or Python scripts.
oExperience writing Splunk queries in Splunk Programming Language (SPL).
oCertified Splunk Enterprise Administrator.
o8570 IAT-II certification.
o5
years hands-on experience implementing and administering security solutions, including developing related documentation and artifacts.
oAnalytical ability, problem-solving skills, and ability to break down complex problems into actionable steps.
oExperience must include a wide range of work in creating diagrams and documentation with all components that comprise IT systems including network topology.
oExcellent knowledge and experience with regard to IAM, NDR, EDR, SIEM, AI/ML, and other cybersecurity tools and related applications.
oExperience selecting effective methods, techniques, and evaluation criteria to achieve desired outcomes.
oUnderstanding of federal cybersecurity guidance such as FISMA NIST SP 800-37 - Guide for Applying the Risk Management Framework to Federal Information Systems:
a Security Life Cycle Approach and NIST 800-137 - Information Security Continuous Monitoring (ISCM) for Federal Information Systems and Organizations.
Nice to have'soRobotic Process Automation/Intelligent Automation experience.
oCertified Splunk Enterprise Security Administrator.
oCertified Splunk SOAR Automation developer.
oAdditional certifications demonstrating cybersecurity/technical mastery.
DISADESExternal Referral EligiblePay Range:
Pay Range $97,500.
00 - $150,000.
00 - $202,500.
00The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary.
Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Salary:
$64.
Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
