Sr. Splunk Engineer/Compliant Event Logging Implementation w/ Federal exp. (Remote)

job
  • General Dynamics Information Technology
Sorry the Job you are looking for is no Longer available

Job Summary
Location
Fairfax ,VA
Job Type
Contract
Visa
Any Valid Visa
Salary
PayRate
Qualification
BCA
Experience
2Years - 10Years
Posted
11 Dec 2024
Share
Job Description
Req ID: RQ190426 Type of Requisition: Regular Clearance Level Must Be Able to Obtain: None Public Trust/Other Required: NACI (T1) Job Family: Functional Experts Skills: Event Logging Federal Agencies Log Management Splunk Enterprise Security Certifications: Splunk Enterprise Security Certified Admin - Splunk Splunk Enterprise Certified Architect - Splunk Experience: 15 years of related experience US Citizenship Required: Yes Job Description: GDIT is seeking a remote Senior Splunk Engineer/Log Manager with proven experience in application, database, and end-point event and log centralization/management. The resource will support a federal customer with the design and implementation of their compliant event logging implementation. Duties and responsibilities include: Design and implement comprehensive logging solutions, in alignment with M-21-31 and EO 14028 requirements leveraging Splunk Enterprise and other enterprise event-driven tool suites. Work closely with government stakeholders to understand security requirements, interpret directives, and support the technical application to the operating environment. Implement log standards and data integrity processes to ensure events are logged in alignment with federal requirements. Verify logging compliance, ensuring application and system logs are generated and captured with the centralized logging solution. Candidate will be “hands-on” with the solution deployment and implementation of the following Splunk elements: Log data ingestion from applications, databases, infrastructure endpoints, and monitoring tools. Development of Saved and Scheduled Searches. Report and Dashboard/Data Visualization development. Establish Logging Event Alerting and assist with event correlation duties. Establish interfaces and data sharing with other Splunk instances to integrate data feeds. Provide strategic and technical recommendations to sponsor, occasionally writing short whitepapers and/or building executive briefs. Collaborate with stakeholders to identify, implement, and prioritize new potential risk indicators into Splunk UBA. Develop and publish the following solution documentation: Document modifications to the current Splunk configuration baseline to include architecture diagrams. Publish Splunk Job-Aids/User Documentation and Splunk Training Materials. Develop and deliver training to the stakeholder community, providing operational guidance to include the following elements: Deployed searches. Reports and dashboards. Alerts. Event Correlation. Required Qualifications: A master’s degree in computer science, Cybersecurity, Software Engineering, or a closely related technical field, 12 years of IT experience and at least 10 years of experience in developing and implementing Splunk Enterprise logging solutions. In lieu of a master’s degree, candidates with a bachelor’s degree in computer science, Cybersecurity, Software Engineering, or a closely related technical field, 14 years of IT experience and at least 10 years of experience in developing and implementing Splunk Enterprise logging solutions. In lieu of a bachelor’s degree, candidates with a HS diploma require at least 16-18 years of extensive, directly relevant experience in Cybersecurity and at least 10 years of experience in developing and implementing Splunk Enterprise logging solutions. Splunk Certifications: Splunk Enterprise Security Certified Admin, Splunk Enterprise Certified Architect. Advanced SPL search construction and optimization with a focus on security and detection engineering. Thorough understanding of Splunk User Behavior Analytics to support the development of a UBA strategy and technical implementation. In-depth understanding of White House Memorandum on Federal System Logging Requirements (M-21-31), data integrity principles, log analysis, logging best practices, and rigorous auditing standards as they relate to government record-keeping requirements. Strong understanding of web application, database, networking, and compute infrastructure log data formats, event correlation, and data retention policies. In-depth knowledge of cybersecurity frameworks (NIST, ISO, etc.), risk assessment methodologies, and federal compliance standards. Ability to translate technical security requirements into actionable plans for development teams and clearly articulate risks to non-technical stakeholders. Proven track record in designing and implementing robust Splunk-based log aggregation solutions in alignment with federal government-mandated compliance framework requirements. Exceptional written and verbal communication to support the development and delivery of solution training. US Citizenship Required GDIT IS YOUR PLACE: 401K with company match Comprehensive health and wellness packages Internal mobility team dedicated to helping you own your career Professional growth opportunities including paid education and certifications Cutting-edge technology you can learn from Rest and recharge with paid vacation and holidays The likely salary range for this position is $136,000 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location, and possibly contractual requirements and could fall outside of this range. We are GDIT. A global technology and professional services company that delivers consulting, technology, and mission services to every major agency across the U.S. government, defense, and intelligence community. Our 30,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 30 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber, and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class. J-18808-Ljbffr
Other Smiliar Jobs
 
Test Engineer - TS/SCI w. Polygraph
  • Elkridge, MD
  • 13 Days ago
Systems Engineer - TS/SCI w. Polygraph
  • Elkridge, MD
  • 13 Days ago
Software Engineer- TS/SCI with Polygraph
  • Elkridge, MD
  • 13 Days ago
Computer Operator/Analyst- TS/SCI w. Polygraph
  • Elkridge, MD
  • 13 Days ago
Helpdesk Technician - Tier II - TS/SCI w. Polygraph
  • Elkridge, MD
  • 13 Days ago
Helpdesk Technician - Tier III - TS/SCI w. Polygraph
  • Elkridge, MD
  • 13 Days ago
Configuration Manager- TS/SCI with Polygraph
  • Elkridge, MD
  • 13 Days ago
Contracts Administrator
  • Falls Church, VA
  • 7 Days ago
Contracts Administrator Advisor
  • Falls Church, VA
  • 6 Days ago
East Coast Training Operations Lead
  • Cherry Point, NC
  • 4 Days ago
Information Systems Security Officer (ISSO) II - Ramstein, Germany
  • Independence, KS
  • 1 Days ago
Intelligence Electronic Warfare Tactical Proficiency Trainer Operator/ Senior Technician
  • Independence, KS
  • 1 Days ago
Program Analyst - Secret required
  • Arlington, VA
  • 1 Days ago
Cerner Technical Training Supervisor
  • Fairfax, VA
  • 1 Days ago
Health Program Specialist
  • Fairfax, VA
  • 4 Hours ago