Splunk Engineer with Security Clearance

Splunk Solutions Expert (Splunk SME)
Location: Chantilly, VA
Clearance Requirements: TS/SCI Clearance with Counterintelligence (Cl) Polygraph Job Description:
Signature Federal Systems is seeking a highly motivated Splunk Engineer that has 5+ years of experience managing a Splunk Platform, creating Splunk applications. The Splunk engineer will build applications to help manage, search, analyze, and visualize data. The role includes troubleshooting and performing Splunk application development following a Scrum Agile approach. The role also includes integrating Splunk with other applications (e.g., ServiceNow) Responsibilities:

• Design, implement, and maintain Splunk solutions for IT service intelligence, operational insight, security, and business intelligence

• Maintain Splunk infrastructure (e.g., manage security updates, patch server vulnerabilities)

• Develop and maintain Splunk dashboards and alerts to ensure efficient monitoring and management of IT systems

• Collaborate with IT teams to identify, troubleshoot, and resolve IT issues using Splunk

• Work with other developers and the Scrum Master to communicate current development status and blockers

• Stay up-to-date with the latest Splunk releases and best practices

• Provide training and support to IT staff on Splunk usage and best practices Required Qualifications:

• 5 + years experience and demonstrated knowledge supporting IT Systems

• Bachelor's degree in Computer Science, Information Technology, or a related field.

• Current Security+ or DOD 8570 IAT Level II Certification

• Design, develop, and implement new features for Splunk products

• Proven experience in designing, implementing, and maintaining Splunk solutions including, but not limited to: Splunk Enterprise, Splunk IT Service Intelligence, Splunk Log Management

• Knowledge of Linux security best practices

• Excellent problem-solving and analytical skills

• Service-oriented mindset

• Strong communication and collaboration skills

• Splunk Certifications:

• Splunk Certified Enterprise Administrator (SCA) Desired Qualifications:

• ServiceNow Certified System Administrator (SCSA)

• AWS Certification

• ITIL v4 Certification

• Strong understanding of IT operations, security, and business intelligence.

• Good team player with a strong willingness to help others

• Experience scripting in the following preferred:

• Python, Perl, and JavaScript in relation to Splunk Apps/Add-ons

• SQL for querying structured data

• Knowledge of XML and JSON for data handling

• Splunk Search Processing Language (SPL) for data analysis in Splunk