Splunk Analyst

RTL Networks, Inc
Alexandria, VA
19 Feb 2025

Vacancy expired!

Job title: Splunk Analyst

Location: Arlington , VA

Status : Full-time

Clearance: Top Secret

Travel: 10%

Shift: Day

About Us: RTL Networks, Inc. is a rapidly growing company primarily focused on providing information technology (IT) support services and personnel to a variety of commercial and government customers for long term contracts. By providing a wide array of professional services and products, we help our customers leverage technology and operate with total confidence in the predictability, security, and reliability of their technology resources to meet business objectives.

RTL Networks is seeking a

Splunk Analyst on our GSMO II IDIQ contract's Joint Service Provider (JSP) Cyber Security Task Order in Arlington, VA. JSP provides a full range of IT products, services, and solutions and customer services to the Office of the Secretary of Defense (OSD), Chairman of the Joint Chiefs of Staff (CJCS) and the Joint Staff (JS), Director of Administration (DA), Pentagon Force Protection Agency (PFPA), Washington Headquarters Services (WHS), and other OSD offices for them to meet mission and business requirements. Through the JSP Cyber Security program, JSP performs various services and functions required to secure the information security posture for DoD services.

An active Top Secret security clearance (with SCI eligibility) is required prior to start and this role will be based onsite in the Arlington, VA area.

Primary Responsibilities :
  • Design efficient and reusable reports and dashboards to integrate multiple mission applications' health, performance and operational data systems into Splunk.
  • Direct and monitor reporting in Splunk dashboards to reflect compliance status of DISA JSP with all directed information assurance vulnerability alerts and bulletins, Computer Tasking Orders, and other compulsory cyber security directives.
  • Create front-end automated data visualization services using Splunk.
  • Create viewable Splunk dashboards to provide visibility into ingested log data .
  • Create alerts that trigger/activate on configured setting to deploy or sends anote/email/attachments to a particulate destination email or groups .
  • Create security rules (alerts) that trigger on anomalous activities or threat detections.
  • Utilize Qmulos, Splunk, Assured Compliance Assessment Solution (ACAS), Host Based Security System (HBSS), and Tanium toassess/validate/monitor the security controls and security posture of the enterprise and system level in order to support on-going authorization.

Basic Qualifications:

  • Bachelor's degree and 4+ years of prior relevant experience. Additional experience may be considered in lieu of degree.
  • Active Top Secret security clearance (with ability to hold TS/SCI) is required prior to start.
  • DoD 8570 IAM II certification
  • Splunk Core Certified Power User. Equivalent certification or higher
  • Excellent written and oral communications skills and be able to appropriately present highly technical material to both technical and non-technical audiences

Preferred Qualifications:

  • Prior experience as a network intrusion analyst or Security Operations Center analyst.
  • Experience configuring and maintaining the tool in a multi-tenant environment.
  • Experience with one or more Security tools:
o Qmulos

o ACAS

o HBSS

o Tanium

We are an Equal Opportunity Employer, Females/Minority/Veterans/Disabled/Sexual Orientation/Gender Identity/Religion/National Origin

# cj

#Dice
  • ID: #49301806
  • State: Virginia Alexandria 22301 Alexandria USA
  • City: Alexandria
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2023-02-19
  • Deadline: 2023-04-19
  • Category: Et cetera