SPLUNK Architect

Location
Tampa, FL
Posted
Jul 17, 2017
Closes
Jul 26, 2017
Function
IT, IT Architect
Hours
Full Time
The Splunk Architect will concentrate on developing a performance-optimized, scalable, distributed Splunk architecture to support a mission oriented, global enterprise. The Splunk Architect will define best-practice aligned solutions to ensure consistent Splunk installations, data ingestion processes, and secure and reliable operations while keeping configuration management and application orchestration methods in mind. The Splunk Architect will be responsible for applying these methods to the existing Splunk implementation. In addition, the Splunk Architect will support day-to-day operations as it relates to administration, data on-boarding, troubleshooting, and functional enhancements such as dashboards, query and application modifications.

 

Duties

    Architect, design, support, and document a reliable, secure, and scalable Splunk solutionInstitute logging policies, mechanisms, and filters to optimize data reception and data ingestion for SplunkImplement automation tools to increase system administrator productivity and ensure consistency throughout the Red Hat Enterprise Linux (RHEL)/Splunk application infrastructure and across security enclaves.Ensure security controls are in place that meet enterprise information assurance requirements.Develop Splunk queries, panels, and dashboard's on request to enhance overall functionality and boost the end-user experienceProduce Splunk workflows that integrate with external systems and applications to increase user efficiencyResearch security related event signatures relevant to data indexed in Splunk and implement triggers, alerts, and reports that will reduce analyst response time to actionable eventsMentor users, administrators, and others on the use of SplunkDeploy and tune Splunk applications as requiredWork with external data managers to define requirements, document plans, and implement solutions with regards to forwarding, ingesting, and visualizing their data within SplunkSupport Splunk on Unix, Linux and Windows-based platformsTroubleshoot any issues that may arise within the Splunk infrastructure from end-points to indexersCommunicate the state of Splunk in the enterprise to leadership and peersAdvise leadership on the use of Splunk in the enterprise
Education 1. Bachelor's Degree in Computer Science, Engineering or a related technical discipline.

 2. Master's Degree preferred.

Qualifications Required Qualifications

    Splunk experience - minimum 2 to 5 years' experience architecting, configuring, deploying, and customizing the toolStrong understanding of Splunk configuration files and architectureKnowledge of advanced search and reporting commandsAbility to create complex dashboards, forms, and visualizationsBachelor’s degree in Computer Science, Information Security or related technical field; or 10 - 12 years of relevant work experienceUnderstanding of machine data (structured and non-structured data)Expert level understanding of Unix/LinuxIntermediate level understanding of Windows operating systemsSecurity+ certificationCurrent TS-SCI Clearance requiredEffective verbal and written communication skills (must be able to communicate highly-technical concepts in non-technical terms)
Desired Qualifications

    Ability to teach Splunk concepts and best practices to team membersStrong knowledge of application monitoring and event managementKnowledge in the Common Information Model (CIM), Understand the relationship between the CIM and knowledge objects, ability to create a lookup file and create a lookup definition& field aliases and calculated fieldsIn depth understanding of Splunk license management preferred
Required experience:

    Architecting, configuring, deploying and customizing SplunkUnix/Linux system administration
Required licenses or certifications:

    Splunk Certified ArchitectDoD Secret ClearanceCompTIA Security+
 

20 or more years of related systems engineering experience.

  As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.