Splunk Engineer with Security Clearance

IF INTERESTED REACH OUT DIRECTLY TO OR CALL/TEXT Splunk Engineer/Admin (VA, MD, CO, CA)
Mid/Senior Level
Onsite Leidos Annapolis Junction, MD 20701 / Alexandria, VA / Aurora, CO / San Diego CA FS Poly within last 5 years (no CCAs). Splunk certification preferred but NOT required. Basic/Required Qualifications
At least 2 years of experience with one or more of the following: StealthWatch, TripWire, Zenoss, ArcSight, Splunk.
Splunk Certified Admin strongly preferred. If not Certified, must have extensive, in-depth experience in the engineering and administration of SPLUNK.
Experience in design, implementation, and support of Splunk core components, including: indexers, forwarders, search heads, and cluster managers.
Experience with configuration and administration of Splunk ingestion and forwarding for new and existing applications and data.
Experience with troubleshooting Splunk dataflow issues between the various Splunk core components.
Experience configuring and deploying data collection for a variety of operating systems and networking platforms.
Experience creating Dashboards and Analytics within SIEM tools.
Experience working with monitoring systems supporting auditing, incident response, and system health.
Must have a solid understanding of networking components and devices, ports, protocols, and basic networking troubleshooting steps.
Must have the ability to troubleshoot issues with log feeds, search time, and field extractions.
Must have the ability to troubleshoot problems related to data solutions.
If not located in Maryland, must be available to travel up to 25% of the time.? Preferred Qualifications
Bachelor's Degree in Computer Science, Engineering, Information Assurance, or a related discipline.
Network Security Operations Center (SOC) experience.
Experience and talent in data visualization.
Extensive experience creating workflows for Incident Response within a SIEM Tool.
Security+ Certification.
GIAC Certified Incident Handler Certification/GIAC Cyber Threat Intelligence Certification.
Cybersecurity certifications.
Formal SIEM training.
Experience working on an Agile team/program.