Splunk Engineer

Job Title: Splunk Engineer
Interview: Virtual
Job Duration: Full Time
Job Location: Annapolis Junction MD

Note: Candidates must have Top Secret/SCI Clearance with a Full Scope Polygraph.

Experience Required:

• Minimum 6 years of experience with Splunk software.
• 710 years of experience with scripting (e.g. Python) and pulling data from tools via RestAPI.

Responsibilities:

• Utilize Splunk software daily for searching monitoring and analyzing machinegenerated data.
• Administer and manage Splunk clusters.
• Perform upgrades on the Splunk tool as needed.
• Conduct API data calls.
• Support IAVA compliance.
• Upgrade systems from CentOS7 to RHEL8.
• Assist in the migration to AWS.
• Pull logs from servers.
• Create dashboards and briefing materials using Splunk data for CORT.

Technical Environment:

• Current Splunk version: 8.5 on MASH.
• Tools used: CASPORT LATTEART JIRA and CONFLUENCE.
• Splunk tool specifications include:
  • 3 search heads
  • 4 indexers
  • 1 master loader
  • 1 load balancer
  • 2 forwarders

Key Responsibilities:

• Establish a formal process to manage changes to requirements consider impacts gain stakeholder buyin eliminate ambiguity ensure traceability to source requirements and track and resolve open actions.
• Manage and maintain the technical integrity of the system baseline updating it throughout the lifecycle from development through deployment and operations & maintenance.
• Develop scenarios and an Operational Concept describing interactions between the system the user and the environment satisfying operational support maintenance and disposal needs.
• Coordinate system integration activities among multiple teams ensuring complete coverage of all interfaces.