Splunk Subject Matter expert with Security Clearance

Employer
Red River Technology
Location
Chantilly, VA
Posted
Feb 22, 2021
Closes
Feb 24, 2021
Ref
1750699248
Function
IT, Security Engineer
Hours
Full Time
RED RIVER is seeking a SPLUNK Subject Matter Expert to help support our milCloud 2.0 contract from either our Durham, NC or Chantilly, VA office. This position has some ability to work remote, HOWEVER due to the classified environments this role will support, the candidate MUST live within driving distance to either office to report in occasionally, as needed. Residency Services position to be teamed with Red River's FSI partner who will be supporting various DOD customers and missions. Chantilly OfficeDC OfficeRemote - DCProject End Date: 01/31/2022 Job Description Red River is seeking a Splunk Subject Matter Expert to help support our milCloud 2.0 contract from either our Durham, NC or Chantilly, VA office. This position has some ability to work remote, However, due to the classified environments this role will support, the candidate MUST live within driving distance to either office to report in occasionally, as needed.The Splunk SME will be to help support the ARC-P and milCloud2.0 Cyber Security Team at the Research Triangle Park location in Raleigh/Durham, NC. ARC-P is Red River's FedRAMP HIGH, JAB authorized, IaaS, cloud environment. While milCloud2.0 is architected as an ARC-P DoD dedicated region with two availability zones deployed on site at DISA data center locations. REQUIRED QUALIFICATIONS: Active Top-Secret security clearance (T5 Investigation) Splunk certification (ie Splunk Power User, Splunk Enterprise Admin, Splunk Enterprise Architect, Splunk Enterprise Security Admin, etc.) IAT Level II certification or higher. 5 years of hands-on experience in the development and deployment of Splunk Hands-on Splunk Enterprise Security experience Designing and customizing complex search queries and promoting advance searching, forensics, and analytics. Developing and documenting configuration standards, policies, and procedures for operating, managing and ensuring the security of a Splunk infrastructure. Developing dashboards, data models, reports and performance optimization. Developing documentation on new or existing systems. Ability to mentor / teach Security Engineers the ins and outs of Splunk. Communicating with customers and teammates clearly and concisely. Self Motivated / Self Starter Must be willing to commute to the Durham, NC or Chantilly, VA site to support classified environments. DESIRED QUALIFICATIONS: Active TS/SCI security clearance Splunk Certified Enterprise Security Admin Certification