Computer Systems Security Analyst (Splunk)

12 May 2024

Vacancy expired!

Please Note:

  • Client wants Local MD candidates only
Description of Work:
  • Write complex SPL to develop advanced Splunk dashboards and queries
  • Perform on-boarding of data via Splunk tools and automation method.
  • Work with customers to development custom content, maintaining consistently high quality communications with the client
  • Create Splunk dashboards and queries.
  • Familiar with automating tasks in Splunk
  • Develop scripts and code with security tools
  • Develop processes and schedule to review existing methodologies and queries for all divisional metrics.
  • Become knowledgeable on the CDM technical requirements for client's CDM program. Understand your role in CDM activities.
  • Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.
  • Design, manage, and maintain agency SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data.
  • Maintenance, configuration and implementing products, appliances and devices on the clients network.

RequirementsBasic Qualifications: Minimum knowledge, skills, abilities needed.
  • Bachelors degree and 7 years of experience, Master's degree and 5 years of experience, or 11 years of experience in lieu of a degree
  • At least 6 years experience using:
  • Splunk, specifically Splunk scripting and on-boarding of large collection of meta data from different sources into Splunk
  • At least 4 years of experience with:
  • In-depth knowledge of designing, upgrading, maintaining and implementing network devices on a large scale enterprise
  • Coordination and communication with other remotely deployed team members
  • Developing documentation with processes and procedures
  • Proposing, implementing automation features in a large enterprise environment
  • At least 2 years of experience with:
  • Splunk Enterprise Security product and tools
  • Risk-based Alerting
  • Analytics-driven Security
  • Hold active Splunk Core Certifications of User, Power User and Admin
  • Minimum of 3 year of experience in developing and tailoring reporting from network security tools.
  • Must be able to obtain and maintain a US Public Trust clearance
Preferred Qualifications:
  • Candidates with these skills will be given preferential consideration.
  • Experience with Splunk Common Information Model (CIM) and Enterprise Analytic
  • Experience with Cribl for load balancing data
  • Experience using Elastic for cloud storage
  • Prior experience supporting the government agencies a plus
  • Understanding of business processes supporting IT programs, networks, and/or cybersecurity programs
  • Understanding of network technologies, work flows, IT reporting, etc.
  • Must be a self-starter, position is remote from the other team members.
  • Must communicate clearly to team members, be comfortable with coordination, collaboration and communication when performing network activities

  • ID: #40721539
  • State: Maryland Baltimore 21207 Baltimore USA
  • City: Baltimore
  • Salary: annie@ommincorp.com
  • Job type: Contract
  • Showed: 2022-05-12
  • Deadline: 2022-07-10
  • Category: Et cetera