Splunk Engineer

Splunk, ITSI, Enterprise Security, Linux
Full Time
Work from home not available Travel not required

Job Description

Do you want to work for a company that is passionate about security and has a fun, start-up culture with large company perks? Do you want to be in an environment where you will continuously learn new skills, grow and take on new opportunities due to the abundance of new projects on the horizon?

If you answered yes to these questions, this opportunity could be for you!  

DPS is currently seeking a candidate to fulfill a role as a Splunk Engineer in the Washington, DC metro area.

Splunk Engineer Responsibilities:

  • Provide overall engineering and design support for a very large distributed Splunk environment consisting of heavy forwarders, indexers, and search head servers, spanning security, performance
  • Ability to obtain a Secret Security Clearance (an active secret clearance is preferred)
  • Work with other Cybersecurity Engineering team members and will be required to interact with end users to gather requirements, perform troubleshooting, and provide assistance with the creation of Splunk search queries and dashboards
  • The Splunk engineer will be required interact with senior management, as necessary
  • Designing, engineering, configuring and administering Splunk content
  • Assisting in the proper operation and performance of Splunk, plug-ins, loggers and connectors
  • Building Splunk reports
  • Developing dashboards with visual metrics for stakeholders
  • Defining strategy and design around data collection, aggregations, and summarization processes
  • Integrating external data sources into Splunk
  • Enforcing best practices related to summarizing and querying data
  • Developing advanced scripts for the manipulation of multiple data repositories to support analyst requirements
  • Partnering with other enterprise teams to support data capture and advanced data analytics and forecasting efforts to support proactive identification of issues
  • Providing recommendations and implement changes to optimize Splunk products in the customer environment
  • Designing the Splunk system solution to meet growth while maintaining a balance between performance, stability, scalability and agility
  • SIEM content management
  • Ability to develop use cases, search and reporting scripts
  • Create, optimize, and continuously evaluate security monitoring content (correlated searches/alerts) on Splunk ES.

Splunk Engineer Job Qualifications:

  • This position requires U.S. Citizenship due to our Federal contractual obligation
  • Bachelors Degree
  • 6 years knowledge and hands-on experience in security with an emphasis in engineering design, system analytics, operations and maintenance of a variety of security technologies used for security defense areas such as: network, storage/back, platforms (Windows/Linux Servers and desktops)
  • 2 years of experience with Splunk, network security, system security, and supporting security information and event management (SIEM)
  • Strong understanding of root causes of malware infections and proactive mitigation
  • Strong understanding of lateral movement and footholds
  • Strong understanding of data exfiltration techniques. Demonstrated ability in critical thinking, problem solving, and analytics
  • Have real world experience analyzing complex attacks and understand TTPs of threat actors
  • Define relationships between seemingly unrelated events through deductive reasoning
  • Experience in network/host based intrusion analysis, malware analysis, forensics, and cyber threat intel
  • Knowledge of advanced threat actors and complex attacks
  • Knowledge and experience with Splunk and other cyber tools
  • You should be familiar with Windows and Linux environments, editing and maintaining Splunk configuration files and apps.

Splunk Engineer Preferred Qualifications:

  • Demonstrated experience in the implementation of information engineering projects; systems analysis, design and programming using standard tools and methods
  • Create complex detection and alerting logic and log source onboarding for security focused content in our enterprise Splunk deployment
    Ingest sources include: Networking (Load-Balancers, IPS, Firewalls), Operating Systems (Linux, Windows, UNIX), security tools, infrastructure, and
  • Engineer, configure, and deploy enterprise SIEM and log management solutions, develop automation for security tools management, and create customized searches and applications using programming and development expertise, including Java, Python, Shell scripting, and regular expression
    Create and optimize Big Data correlations as a Splunk search language (SPL)

Defense Point Security is an IT Security Consulting firm specializing in public and private sector security solutions.  Our goal is to provide expert IT security services to our clients while cultivating information security knowledge among all employees for the advancement of cyber security.  Defense Point Security offers a competitive employment package including medical, vision, and dental insurance (among others).

Defense Point Security offers a competitive benefits package to include:

  • Medical, Dental, Vision Insurance Premiums are 100% paid by DPS for employee and eligible dependents
  • Personal Accident Insurance paid by DPS
  • Life Insurance paid by DPS
  • Short and Long Term Disability Insurance paid by DPS
  • 401k Contribution Matching and 100% vested after 90 days
  • Flexible Spending Accounts 
  • Commuter Assistance
  • Paid Time Off starting at 3 weeks a year (15 days)
  • 10 paid Federal Holidays
  • Capital BikeShare Membership for DC Metro Area
  • Reimbursement for qualifying training expenses
  • Flexible / Alternative Work Schedules

Posted By

Chrissie Usher

800 N. Glebe Arlington, VA, 22203

Dice Id : 80104617
Position Id : 2018-285
Have a Job? Post it

Similar Positions

Splunk Administrator
  • NTT DATA, Inc.
  • Washington, DC
Splunk Engineer
  • AMS Staffing Inc.
  • Washington, DC
Splunk Principal Engineer
  • Rockhammer Talent Solutions
  • Bowie, MD
Splunk Engineer
  • Take2 Consulting
  • Mclean, VA
Splunk Architect
  • Windward Consulting
  • Gainesville, VA
Certified Splunk Developer
  • Convergenz
  • Reston, VA
splunk Developer
  • MWIDM Inc.
  • Reston, VA
Splunk Subject Matter Expert
  • CyberData Technologies
  • Rockville, MD
Splunk Developer IV
  • Kforce Technology Staffing
  • Reston, VA
Splunk Architect
  • Mindlance
  • Washington, DC
Sr Splunk Consultant with ITSI experience
  • Purple Drive Technologies LLC
  • Reston, VA