Splunk Engineer

Job Title: Splunk Engineer

C2C Rate: $55 an hour C2C

Visa: All except H1B

Client: USAC

Location: Hybrid schedule working 2 days a week onsite in the Washington, DC office.

Duration: 6-month contract

Job Responsibilities:
Identification of business-critical systems within infrastructure
Identification of all systems within the infrastructure - percent known and previously unknown
Identification of current coverage (percentage) of business-critical systems with Splunk Forwarders
Develop plan of action to provide more comprehensive coverage
Identify required integrations (e.g. Nessus/Security Center, ServiceNow, Palo Alto)
Make recommendations for additional optional integrations
Identify current volume of audit data coming from business-critical systems
Assess gap in current indexing capability
Develop index clustering strategy
Assess current needs for search head deployment
Develop search head clustering strategy
Identify user community and required roles
Expand forwarder coverage to include non-critical endpoints and systems
Identify potential free Splunk apps that provide basic security intelligence and limited view of compliance
Identify potential dashboarding opportunities - simple to generate requirements for more complex alternatives or premium
Expand forwarder coverage to include non-critical endpoints and systems
Identify potential free Splunk apps that provide basic security intelligence and limited view of compliance
Identify potential dashboarding opportunities - simple to generate requirements for more complex alternatives or premium apps
Perform integrations with existing business and security applications as requested
Identify gaps to deploying Splunk ES and other premium applications
Identify opportunities for new dashboards and/or potential Splunk application development
Threat intelligence ingest (free sources, initially)
Investigate appetite for full security architecture assessment
Other IT security support

Job Requirements:
Experience with storage technologies, platform administration on Linux and Windows and experience with many of today's security tool sets (IPS/IDS, AV, Firewalls, Switches, etc).
Preparing and delivering information in a concise, professionally written format.
Preparing documentation on systems, processes, or procedures, including network and workflow documents.
Preparing and presenting information on staff in a formal and informal setting.
A Bachelor's Degree in Computer Science and/or Information Technology - relevant work experience (over 10 years) may be acceptable.