Posted over 6 months ago
Intel Agency (NSA, CIA, FBI, etc)
Mid Level Career (5+ yrs experience)
$150,000
Occasional travel
IT - Support
Arlington, VA•Annapolis Jct, MD•Aurora, CO•San Diego, CA
IF INTERESTED REACH OUT DIRECTLY TO KSPICER@ALTAITS.COM OR CALL/TEXT 301-252-8762
Splunk Engineer/Admin (VA, MD, CO, CA)
Mid/Senior Level
Onsite
Leidos
Annapolis Junction, MD 20701 / Alexandria, VA / Aurora, CO / San Diego CA
FS Poly within last 5 years (no CCAs).
Splunk certification preferred but NOT required.
Basic/Required Qualifications
· At least 2 years of experience with one or more of the following: StealthWatch, TripWire, Zenoss, ArcSight, Splunk.
· Splunk Certified Admin strongly preferred. If not Certified, must have extensive, in-depth experience in the engineering and administration of SPLUNK.
· Experience in design, implementation, and support of Splunk core components, including: indexers, forwarders, search heads, and cluster managers.
· Experience with configuration and administration of Splunk ingestion and forwarding for new and existing applications and data.
· Experience with troubleshooting Splunk dataflow issues between the various Splunk core components.
· Experience configuring and deploying data collection for a variety of operating systems and networking platforms.
· Experience creating Dashboards and Analytics within SIEM tools.
· Experience working with monitoring systems supporting auditing, incident response, and system health.
· Must have a solid understanding of networking components and devices, ports, protocols, and basic networking troubleshooting steps.
· Must have the ability to troubleshoot issues with log feeds, search time, and field extractions.
· Must have the ability to troubleshoot problems related to data solutions.
· If not located in Maryland, must be available to travel up to 25% of the time.?
Preferred Qualifications
· Bachelor's Degree in Computer Science, Engineering, Information Assurance, or a related discipline.
· Network Security Operations Center (SOC) experience.
· Experience and talent in data visualization.
· Extensive experience creating workflows for Incident Response within a SIEM Tool.
· Security+ Certification.
· GIAC Certified Incident Handler Certification/GIAC Cyber Threat Intelligence Certification.
· Cybersecurity certifications.
· Formal SIEM training.
· Experience working on an Agile team/program.
Splunk Engineer/Admin (VA, MD, CO, CA)
Mid/Senior Level
Onsite
Leidos
Annapolis Junction, MD 20701 / Alexandria, VA / Aurora, CO / San Diego CA
FS Poly within last 5 years (no CCAs).
Splunk certification preferred but NOT required.
Basic/Required Qualifications
· At least 2 years of experience with one or more of the following: StealthWatch, TripWire, Zenoss, ArcSight, Splunk.
· Splunk Certified Admin strongly preferred. If not Certified, must have extensive, in-depth experience in the engineering and administration of SPLUNK.
· Experience in design, implementation, and support of Splunk core components, including: indexers, forwarders, search heads, and cluster managers.
· Experience with configuration and administration of Splunk ingestion and forwarding for new and existing applications and data.
· Experience with troubleshooting Splunk dataflow issues between the various Splunk core components.
· Experience configuring and deploying data collection for a variety of operating systems and networking platforms.
· Experience creating Dashboards and Analytics within SIEM tools.
· Experience working with monitoring systems supporting auditing, incident response, and system health.
· Must have a solid understanding of networking components and devices, ports, protocols, and basic networking troubleshooting steps.
· Must have the ability to troubleshoot issues with log feeds, search time, and field extractions.
· Must have the ability to troubleshoot problems related to data solutions.
· If not located in Maryland, must be available to travel up to 25% of the time.?
Preferred Qualifications
· Bachelor's Degree in Computer Science, Engineering, Information Assurance, or a related discipline.
· Network Security Operations Center (SOC) experience.
· Experience and talent in data visualization.
· Extensive experience creating workflows for Incident Response within a SIEM Tool.
· Security+ Certification.
· GIAC Certified Incident Handler Certification/GIAC Cyber Threat Intelligence Certification.
· Cybersecurity certifications.
· Formal SIEM training.
· Experience working on an Agile team/program.
group id: COMPHLP
