SPLUNK Cyber Software Engineer

Job Description

VMR Strategic Solutions is seeking an SPLUNK Cyber Software Engineer to add to our team.

The ideal engineer will maintain and enhance the existing Splunk infrastructure in the enterprise. The engineer will also further projects will involve the implementation of Splunk Enterprise Security (ES) and Security Orchestration, Automation, and Response (SOAR) and other vendor solutions.

Duties

Monitor the health, performance, and capacity utilization of Splunk infrastructure.

Implement best practices for Splunk deployment, configuration, and optimization.

Design and manage Splunk data models, indexes, and search heads.

Develop and maintain Splunk alerts, dashboards, and reports to meet client needs.

Troubleshoot and resolve issues related to Splunk configuration, data ingestion, and search performance.

Collaborate with client stakeholders and cross-functional teams to integrate Splunk with other systems and applications.

Provide training and support to client teams on Splunk usage and best practices.

Proven experience as a Splunk Administrator or similarly named Splunk focused role.

Strong understanding of Splunk architecture, components, and deployment options.

Proficiency in Splunk Search Processing Language (SPL) for creating complex search queries and reports.

Qualifications

Required education and experience:

Requires experience with importing data in Splunk from various sources: endpoint security, network security (Firewalls, IPS/IDS, DNS, Proxy, etc.), data and application security, cloud security and technologies.

Experience in working in a Splunk clustered environment supporting SOC or NOC environment required.

Experience with virtualization technologies required.

Splunk Architect, Splunk Admin

DoD 8570 Level 3 Certification

Required Clearance

TS/SCI

Working Environment

Onsite