SIEM Team – Splunk Systems Engineer - TS/SCI w/Poly

Type of Requisition: Regular

Clearance Level Must Currently Possess: Top Secret SCI + Polygraph

Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph

Suitability:

Job Family: Systems Engineering

Job Qualifications:

Skills: Enterprise Technologies, SIEM Tools, Splunk (Inactive)

Certifications: Comp TIA Security - CompTIA

Experience: 2 + years of related experience

US Citizenship Required: Yes

Job Description:

Deliver simple solutions to complex problems as a SIEM Team – Splunk Systems Engineer at GDIT. Here, you’ll tailor cutting-edge solutions to the unique requirements of our clients. With a career in application development, you’ll make the end user’s experience your priority and we’ll make your career growth ours.

The Digital Services SIEM Team requires an experienced Splunk System Administrator to perform all aspects of Splunk Enterprise and ITSI administration, maintenance, and operation of a global enterprise solution used for complex Splunk applications, dashboards, and reports. Duties include: monitoring Splunk infrastructure system health and data feeds; installation and configuration of Splunk Indexers, Forwarders, Deployment Servers, and Search-Heads; onboarding new data; supporting cybersecurity and operations teams; and driving complex Splunk dashboard deployments/reports.

HOW A SYSTEMS ENGINEER WILL MAKE AN IMPACT:

• Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
• Contribute to development and ongoing improvement of industry best practices and standards for maintaining data analytics enterprise technologies.
• Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
• Assist with development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop, and Information System Security teams, and Tier 2/3 Help Desk technicians.

WHAT YOU’LL NEED TO SUCCEED:

• Education: Bachelor of Arts/Bachelor of Science
• Required Experience: 2+ years of related experience
• Security Clearance Level: TS/SCI w/Poly
• Required Skills and Abilities: Experience managing user authentication within Splunk, including Role and Attribute Based Access Controls (RBAC/ABAC), authentication with LDAP/AD, and managing access via HEC tokens is highly preferred. Experience implementing and managing Apps within Splunk is highly preferred.

Preferred Skills:

• Experience reviewing network, host, and firewall security logs
• Experience with scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data
• Experience managing integrations with technical add-ons, integrating DBConnect
• Experience with Splunk Machine Learning Toolkit (MLTK)
• Expert understanding in data analytics, Hadoop, MapReduce, visualization is a plus
• Programming experience in PowerShell or Python is a plus
• Experience using ServiceNow ticketing system
• Strong organization, communication, and collaboration skills, and be customer-focused and results-oriented.

Location: On Site

US Citizenship Required

Hours: 40 hours/week; Day-shift, M-F work hours; available for after hours on call.

DoD 8750 Minimum: Security+ OR Network+ Certification

Travel Required: Less than 10%

Telecommuting Options: Onsite

Work Location: USA MD Annapolis Junction

Additional Work Locations:

Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match.

We are GDIT. A global technology and professional services company that delivers consulting, technology, and mission services to every major agency across the U.S. government, defense, and intelligence community.

#GREENWAY

#ITPolyMD