Splunk Engineer L3 - TS/SCI Poly required

Annapolis Junction, MD · Information Technology

The Splunk Engineer shall have the following tasks:

● Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
● Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
● Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
● Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and Tier 2/3 Help Desk technicians.

Requirements: 

• TS/SCI with Poly
• Bachelor's Degree plus 20 years technical experience (five years technical experience can be substituted for degree).
• CompTIA Security+ CE
• Experience managing user authentication within Splunk including RBAC/ABAC
• Experience reviewing network, host, and firewall security logs
• Strong organizational, communication, and collaboration skills
      

Desired Skills:    

• Experience with Splunk Machine Learning Toolkit (MLTK)
• Experience with scripting languages such as CSS, HTML, JavaScript, and Python
• Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning
• ServiceNow Ticketing System
• Shell scripting to automate tasks and manipulate data

Salary is determined by various factors, including but not limited to location, the individual’s particular combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability and organizational requirements. The projected compensation range for this position is $150,000 – $240,000 (annualized USD).