This listing was posted on The Resumator.
SPLUNK Administrator
Location:
Annapolis Junction, MD
Description:
Seeking a SPLUNK Administrator for a brand new program with the following locations available: 3 Site Locations: Annapolis Junction, MD Primary - JBAB Secondary - Landover, MD Third Position requires a current/active TS/SCI clearance. Summary: The Splunk Administrator will be responsible for managing and maintaining Splunk deployments. Responsibilities/Qualifications Implements, tests, and operates advanced software security techniques in compliance with technical reference architecture. Performs on-going security testing and code review to improve software security. Troubleshoots and debugs issues that arise. Provides engineering designs for new software solutions to help mitigate security vulnerabilities. Contributes to all levels of the architecture and maintains technical documentation. Consults team members on secure coding practices. Develops a familiarity with new tools and best practices. Designing, implementing, and maintaining SIEM and SOAR solutions. Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security-relevant devices. Utilize expertise in Splunk "Search" language, Splunk Dashboards, Reports, Lookup Tables, and Summary Indexes. Build Splunk dashboards that take inputs from various data sources such as application logs / operating system logs / middleware logs / network feeds etc. and identify / highlight anomalous activities on the dashboards by their severity levels. Perform troubleshooting and provide assistance with the creation of Splunk search queries and dashboards. Requires experience with importing data in Splunk from various sources: endpoint security, network security (Firewalls, IPS/IDS, DNS, Proxy, etc.), data and application security, cloud security and technologies. Requires experience with performing systems administration, including performing installation, configuration, monitoring system performance and availability, upgrades, and troubleshooting of Splunk. Requires experience with designing, implementing, configuring, operating, or testing IT systems or security infrastructure. Requires experience building dashboards highlighting the key trends of the data. Requires proficiency within a Windows and Linux environment, editing and maintaining Splunk configuration files and apps. Experience in working in a Splunk clustered environment supporting SOC or NOC environment required. Experience with virtualization technologies required. Splunk Architect, Splunk Admin DoD 8570 Level 3 Certification Systems Administration position on subcontract, willing to work with you on which one - Site System Admin-4 or Systems Administration - 4 (Lead System Administrator - Key ) – But it will not be a Key position. Level Degree/Years’ Experience 4 Requires 8 to 10 years with BS/BA or 6 to 8 years with MS/MA or 3 to 5 years with PhD. Powered by JazzHR
Company:
ESC
Posted:
September 18 on The Resumator
Visit Our Partner Website
This listing was posted on another website. Click here to open: Go to The Resumator
Important Safety Tips
- Always meet the employer in person.
- Avoid sharing sensitive personal and financial information.
- Avoid employment offers that require a deposit or investment.
To learn more, visit the Safety Center or click here to report this listing.
More About this Listing: SPLUNK Administrator
SPLUNK Administrator is a Clerical Administrator Job at ESC located in Annapolis Junction MD. Find other listings like SPLUNK Administrator by searching Oodle for Clerical Administrator Jobs.
SPLUNK Administrator is a Clerical Administrator Job at ESC located in Annapolis Junction MD. Find other listings like SPLUNK Administrator by searching Oodle for Clerical Administrator Jobs.