SIEM Team - Splunk Systems Engineer - TS/SCI w/Poly
- Job ID Number
- RQ176354
- Annapolis Junction, MD, US
- Category
- Information Technology
- Employment Type
- Full Time
- Business Unit
- GDIT
Responsibilities for this Position
Location: USA MD Annapolis JunctionFull Part/Time: Full time
Job Req: RQ176354
Type of Requisition:
Regular
Clearance Level Must Currently Possess:
Top Secret SCI + Polygraph
Clearance Level Must Be Able to Obtain:
Top Secret SCI + Polygraph
Public Trust/Other Required:
Job Family:
Systems Engineering
Job Qualifications:
Skills:
Enterprise Technologies, SIEM Tools, Splunk (Inactive)
Certifications:
Comp TIA Security - CompTIA
Experience:
2 + years of related experience
US Citizenship Required:
Yes
Job Description:
SIEM Team - Splunk Systems Engineer
Deliver simple solutions to complex problems as a SIEM Team - Splunk Systems Engineer at GDIT. Here, you'll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you'll make the end user's experience your priority and we'll make your career growth ours.
At GDIT, people are our differentiator. As a SIEM Team - Splunk Systems Engineer you will help ensure today is safe and tomorrow is smarter. Our work depends on Systems Engineer joining our team.
The Digital Services SIEM Team requires an experienced Splunk System Administrator to system engineer to perform all aspects of Splunk Enterprise and ITSI administration, maintenance, and operation of global enterprise solution used for complex Splunk applications, dashboards and reports. Duties include: monitoring Splunk infrastructure system health and data feeds; install, and configuration of Splunk Indexers, Forwarders, Deployment Servers and Search-Heads; onboarding new data; supporting cybersecurity and operations teams and driving complex Splunk dashboard deployments/reports and working side by side with the customers to solve their unique problems across a variety of use cases
HOW A SYSTEMS ENGINEER WILL MAKE AN IMPACT
Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop and Information System Security teams, and Tier 2/3 Help Desk technicians.
WHAT YOU'LL NEED TO SUCCEED:
Education: Bachelor of Arts/Bachelor of Science
Required Experience: 2+ years of related experience
Security Clearance Level: TS/SCI w/Poly
Required Skills and Abilities: Experience managing user authentication within Splunk to include Role and Attribute Based Access Controls (RBAC\ABAC), authentication with Lightweight Directory Access Protocol and Active Directory (LDAP\AD), and managing access via HEC tokens is highly preferred. Experience implementing and managing Apps within Splunk is highly preferred.
Preferred Skills: Experience reviewing network, host and firewall security logs, experience with using scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data, experience managing integrations with technical add-ons with a relevant experience integrating DBConnect, Experience with Splunk Machine Learning Toolkit (MLTK), solid knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning is highly preferred, expert understanding in data analytics, Hadoop, MapReduce, visualization is a plus, programming experience PowerShell or Python is a plus, Experience using ServiceNow ticketing system, broad operations or development experience is a plus, Strong organization, communication, and collaboration skills and be customer-focused and results oriented.
Location: On Site
US Citizenship Required
40 hours/week; Day-shift, M-F work hours; available for after hours on call.
DoD 8750 Minimum: Security+ OR Network+ Certification
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional growth opportunities including paid education and certifications
Cutting-edge technology you can learn from
#GREENWAY
#ITPolyMD
The likely salary range for this position is $102,000 - $138,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Scheduled Weekly Hours:
40
Travel Required:
Less than 10%
Telecommuting Options:
Onsite
Work Location:
USA MD Annapolis Junction
Additional Work Locations:
Total Rewards at GDIT:
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.
We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology.
We connect people with the most impactful client missions, creating an unparalleled work experience that allows them to see their impact every day. We create opportunities for our people to lead and learn simultaneously. From securing our nation's most sensitive systems, to enabling digital transformation and cloud adoption, our people are the ones who make change real.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.
PI241466479