Splunk Admin/Engineer - Secret Partial Remote

Splunk, WebInspect, DBProtect, Nessus, AWS, Linux, Splunk Enterprise Security, cloud computing
Full Time
Depends on Experience
Work from home available

Job Description

Duties and Responsibilities:

  • Administer, monitor and maintain Splunk deployment and applications within Splunk.  Ensure logs are being ingested and parsed correctly. Conduct data normalization on current and new data.  Create alerts, reports and dashboards, as requested.
  • Splunk backend administration on Linux experience. Splunk basic data ingestion required, data normalization preferred.  Securing Splunk experience (i.e. Use of SSO, Certificates, etc.)
  • Architect a Splunk solution that meets customer demands while optimizing the platform with most efficient use of resources across the environment at the same time curtailing unnecessary data
  • Evolving the client's data within Splunk into a superior state via field extractions, data transformations, event parsing, data previewing, etc.
  • Creating and implementing configuration standards, policies, and/or procedures for improved Splunk operations and management
  • Review designs to ensure business requirements and solution mapping
  • Drive leading practices across the Splunk solution
  • Experience with designing, building, and maintaining large scale Splunk solutions
  • Deep understanding of Splunk scalability, Splunk capacity planning, Splunk distributed setup, and Splunk indexer and search head clustering

Desired skills:

  • 5+ years of experience with Splunk
  • 2+ vulnerability management, running scans, analyzing scans, re-scanning for remediation, configuring and troubleshooting scanner tools
  • 1+ years of experience managing Splunk App development, scripting and log management solution design
  • 1+ years of experience integrating data input from Splunk from other tools such as WebInspect, DBProtect, Nessus, AWS
  • Fundamental understanding of software, computer, cloud computing, and network architectures

Certifications needed: Splunk Certified Architect, Splunk Enterprise Security Certified Architec

Dice Id : RTX1c0541
Position Id : 7533517
Originally Posted : 4 days ago
Have a Job? Post it

Similar Positions

Splunk Administrator (HYBRID- Washington, DC)
  • Prism, Inc.
  • Washington, DC, USA
Splunk Administrator
  • Summit Technologies
  • Washington, DC, USA
Splunk SIEM Security Engineer III
  • Tecnics Consulting Inc
  • Houston, TX, USA
Sr. Splunk Engineer
  • Early Warning Services, LLC
  • Scottsdale, AZ, USA
Cloud Security Engineer - Remote
  • Vings Technologies
  • Santa Barbara, CA, USA