Splunk Engineer

Advance how our customers operate while you advance your career. Join GDIT as a Splunk Engineer and build an impactful career in enterprise IT, collaborating with people who are driven and resourceful like you.

MEANINGFUL WORK AND PERSONAL IMPACT:
As a Splunk Engineer, the work you'll do at GDIT will be impactful to the mission of USCENTCOM. You will play a crucial role by working with a high-performing team to deploy, configure, and optimize Splunk for data analysis, security monitoring, and operational insights. The Splunk Engineer will play a key role in building, maintaining, and supporting Splunk infrastructure across a large enterprise environment. This includes configuring data inputs, creating and managing dashboards, reports, and alerts, as well as optimizing Splunk performance.

Duties and Responsibilities:

• Design, implement, and maintain Splunk Enterprise infrastructure, including deployment, configuration, and performance tuning.
• Collect, index, and monitor machine data across a large-scale environment, ensuring high availability and security.
• Develop and configure Splunk dashboards, alerts, and reports to support operational, security, and performance monitoring.
• Develop and optimize SPL (Search Processing Language) queries to analyze logs and provide valuable insights.
• Collaborate with security and operations teams to create use cases, improve data ingestion, and enhance event correlation.
• Troubleshoot and resolve performance, security, and scalability issues within Splunk environments.
• Integrate third-party systems and data sources with Splunk to enhance the visibility of network traffic and security incidents.
• Provide technical support and training to junior administrators and other staff members to optimize the usage of Splunk.
• Monitor and report on the health of Splunk infrastructure, ensuring it is operating within defined SLAs.
• Perform regular updates and maintenance on Splunk instances, including upgrading to the latest releases.
• Provide incident response analysis and participate in the development of security-related queries and monitoring rules.
• Document processes, configurations, and best practices for future reference

WHAT YOU'LL NEED TO SUCCEED:
Bring your technology expertise and drive for innovation to GDIT. The Systems Engineer SME must have:

• Certification: DoD 8140 or DoD 8570 Certification
• Experience: 15+ years of related experience
• Required Skills:
  
  • Proven experience in Splunk configuration, administration, and optimization.
  • Strong understanding of data ingestion, search queries, indexing, and reporting in Splunk.
  • Proficiency in Splunk SPL for querying and analyzing machine data.
  • Experience in setting up and managing Splunk enterprise-wide alerts, reports, and dashboards.
  • Knowledge of security monitoring, SIEM integration, and log management best practices.
  • Ability to analyze and troubleshoot Splunk performance issues and security incidents.
  • Familiarity with scripting languages (e.g., Python, Bash) for automating Splunk-related tasks.
• Desired Skills:
  
  • Splunk Certified Power User or Splunk Certified Admin
  • ITIL 4 Foundation Certification
  • Experience working with large-scale environments (5,000+ users, 1,000+ servers).
  • Familiarity with SIEM, PKI, or other security-related technologies.
  • Experience with cloud-based Splunk implementations (e.g., Splunk Cloud).
  • Prior experience working in cross-functional IT teams and supporting security operations.
• Required Security clearance level: a current/active TS/SCI clearance is required.
• US citizenship required due to the TS/SCI clearance requirement.

GDIT IS YOUR PLACE:
At GDIT, the mission is our purpose, and our people are at the center of everything we do.

• Growth: AI-powered career tool that identifies career steps and learning opportunities
• Support: An internal mobility team focused on helping you achieve your career goals
• Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
• Community: Award-winning culture of innovation and a military-friendly workplace

#ARMA

#CENTCOMCITS

#GDITPRIORITY

Work Requirements