Splunk Engineer

True Zero Technologies
Rockville, MD
Sep 20, 2021
Sep 22, 2021
Engineer, IT, QA Engineer
Full Time
True Zero Technologies is seeking a qualified candidate to join their team as a Splunk Engineer.Duties:The candidate will be part of a team of Splunk Engineers maintaining a purpose built Splunk instance with a heavy emphasis on content development, reporting, and visualizations. The team will manage all day to day administration of the Splunk environment, work with components to on-board new data sources, and apply custom Data Model configurations to the data for reporting requirements and standardization.As a TZT consultant, the candidate will receive access to the full knowledge base which is driven by the TZT community as well as the technical backing of the entire PS team. TZT encourages collaboration and growth through information sharing and knowledge workshops. The candidate will also have access to our internal Slack channel to stay connected with the team as well as the necessary tools to train, demo, test and grow their professional skills.Required Skills:Splunk Architect CertificationExperience designing and implementing ground up distributed Splunk installations including all Splunk server roles (Search Head, Indexers, Heavy Forwarders and Universal Forwarders, etc.)Experience with advanced configuration of Splunk including Indexer Clustering and Search Head Clustering.Experience maintaining and administering enterprise Splunk implementations.Experience developing custom Splunk content including scheduled searches, reports, dashboards, etc.Proficient at data on-boarding activities including custom parsing rules, custom Technology Add-On building according to Splunk's Common Information Model (CIM).Experience configuring indexes, index routing, retention policies, etc.Experience working in linux and windows environments, ability to configure:Storage subsystems (Ie partitioning, Volume Groups, Logical Volumes, etc.)SELinuxFamiliarity with different flavors of Linux distros (RedHat, CentOS, Ubuntu, etc.)File Permission Settings (linux/windows)Excellent written and oral skills, ability to work closely with multiple customers, manage expectations, and track engagement scope. Ideal Skills:Splunk Core Consultant CertificationSplunk Enterprise Security Implementation CertificationSplunk IT Service Intelligence certificationUnderstanding of Syslog daemon configuration principles, ideally in Syslog-NG and RSyslog configurations.Cloud experience (AWS, Azure, etc.)Development and API experience (Python, Perl, XML)SaltStack, Ansible, and other enterprise automation tool experience.Hardware experience and storage experience (SAN, NAS, etc.)U.S. Citizenship is required as this is in support of a Federal Customer.Job Posted by ApplicantPro

Similar jobs