Senior Splunk Engineer

Chickasaw Nation Industries
Rockville, MD
Jul 02, 2022
Jul 08, 2022
Engineer, IT, QA Engineer
Full Time
It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.Please note that CNI is closely monitoring Executive Orders and will be following any final decisions or mandatesregarding the COVID-19 Vaccination as a federal contract provider.SUMMARYThe Senior Splunk Engineer supports the federal client by engineering, developing, deploying and maintaining the organization's SIEM implementation and its minor applications, integration, apps and interfaces. This position possesses mastery of the Splunk tool in a Linux environment, with technical expertise including hands-on solution development and implementation experience, and analytical skills for evaluating and optimizing capabilities of securing application solutions. The qualified candidate will be critical team member with proven leadership, communication, critical thinking, problem solving, organizational and interpersonal skills. This position provides technical consulting support as well as advance technical design and specifications and planning process assistance and must have the ability to multitask and solve complex technical problems.ESSENTIAL DUTIES AND RESPONSIBILITIESEssential duties and responsibilities include the following. Other duties may be assigned.Implements, optimizes and maintains the SIEM infrastructure (Splunk), and deploys products, apps, reports, alerts and dashboards utilizing system development life cycle (SDLC) methodologies and business best practices.Increases the efficiency of the infrastructure to connect more enterprise data sources to Splunk Enterprise.Develops change management plans to be adaptable to the changing needs of the program. Leads prototyping and testing of new features and solutions.Manages and monitors Linux based on-prem server infrastructure for configuration and software upgrades.Develops, maintains and optimizes installation of internal and external SIEM components.Oversees the optimization, operation and health of Splunk components and connections to data sources. (Cluster management of search head and index servers, query scheduling, performance tuning, Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts, etc.).Provides mentoring to Tier II technicians for problem resolution and lead technical discussions with technical engineers of SIEM and SIEM data connections.Shares and provides knowledge to junior security architects and engineers and recommends training as needed.Brings industry best practices and innovative ideas leading to continuous improvement of the Splunk environment.Communicates as required with many different teams across a geographically dispersed organization.Responsible for aiding in own self-development by being available and receptive to all training made available by the company.Plans daily activities within the guidelines of company policy, job description and supervisor's instruction in such a way as to maximize personal output.Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability.Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge/quality of work, supporting financial goals of the company, initiative/motivation, cooperation/relationships, problem analysis/discretion, accomplishing goals through organization, positive oral/written communication skills, leadership abilities, commitment to Affirmative Action, reliability/dependability, flexibility and ownership/accountability of actions taken.Promotes and encourages a culture of compliance with all applicable rules (federal, state, local, Federal Acquisition Regulations, Code of Federal Regulations, Prime Contract requirements, etc.) for themselves and the company as a whole. Fosters an environment in which they will reportanyviolations or reasonably suspected violation of CNI policy, FAR, and/or CFR and are comfortable discussing the myriad compliance, conflict, FAR, CFR, etc. issues that arise during the performance of a government contract.EDUCATION / EXPERIENCEBachelor's degree in Computer Science, Management of Information Systems, Cybersecurity or a related Math or Science discipline, and a minimum of six (6) years in IT infrastructure, networking, architecture, administration or security. Six (6) years of Splunk expertise, with at least three (3) years of experience in large scale enterprise-level solutions. Requires experience with Splunk premium apps, such as Enterprise Security, and with architecting, developing, deploying and configuring customized technical add-ons.Extensive experience with SIEM (Security Information and Event Management) systems, and security event correlation is required; PERL/Linux shell scripting/Regex experience is highly preferable.CERTIFICATES / LICENSES / REGISTRATIONSplunk training and/or certifications would be a major plus, particularly Certified Splunk Architect.Able and willing to acquire required certifications to meet customer requirements.U.S. Citizens / Green Card only due to government or federal requirement.JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIESSenior level mastery of SIEM front and backend operations and configurations in addition to the interoperability with other security tools.Extensive knowledge of system back-end engineer and administration with heavy focus on Linux.Analytical skills for evaluating and optimizing capabilities of securing application solutions.Systematic approach to remediate system issues/problems and making recommendations to improve the efficiency of system operations and data availability utilizing current and future technologies.Must demonstrate capability to operate autonomously in a diverse environment with minimal supervision and provide accurate and precise documentation.Must demonstrate excellent troubleshooting skills, and be self-motivated, results-driven, and well organized.Must have excellent communication skills (written and verbal) with experience communicating effectively with all levels of staff and management.MATHEMATICAL SKILLSAbility to work with mathematical concepts such as probability and statistical inference, and fundamentals of plane and solid geometry and trigonometry. Ability to apply concepts such as fractions, percentages, ratios, and proportions to practical situations.REASONING ABILITYAbility to solve practical problems and deal with a variety of concrete variables in situations where only limited standardization exists. Ability to interpret a variety of instructions furnished in written, oral, diagram, or schedule form.LANGUAGE SKILLSAbility to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.PHYSICAL DEMANDS:The physical demands described here are representative of those that must be met by an employee to perform successfully the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status.*For Colorado candidates - In compliance with Colorado's Equal Pay for Equal Work Act, the salary range for this role is $115,000 to 140,000; however, CNI considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidate's work experience, education/training, and key skills.#indcniIf you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!