Computer Systems Security Analyst (Splunk) - Ref.: Sssi.Es18.NS

Employer
Scientific Systems and Software International Corporation
Location
Catonsville, MD
Posted
Jan 25, 2022
Closes
Jan 27, 2022
Ref
330884276
Hours
Full Time
Description of Work: Write complex SPL to develop advanced Splunk dashboards and queriesPerform on-boarding of data via Splunk tools and automation method.Work with customers to development custom content, maintaining consistently high quality communications with the clientCreate Splunk dashboards and queries.Familiar with automating tasks in SplunkDevelop scripts and code with security toolsDevelop processes and schedule to review existing methodologies and queries for all divisional metrics.Become knowledgeable on the CDM technical requirements for SSA's CDM program. Understand your role in CDM activities.Involved in a wide range of security issues including architectures, firewalls, electronic data traffic, and network access.Design, manage, and maintain agency SIEM infrastructure to improve data ingestion processes, including architectural work on data pipelines to ensure optimal flow of data.Maintenance, configuration and implementing products, appliances and devices on the SSA's networkBasic Qualifications: Minimum knowledge, skills, abilities needed.Bachelor's degree and 10 years of experience, Master's degree and 8 years of experience, or 15 years of experience in lieu of a degreeAt least 6 years' experience using: Splunk, specifically Splunk scripting and on-boarding of large collection of meta data from different sources into SplunkAt least 4 years of experience with:o In-depth knowledge of designing, upgrading, maintaining and implementing network devices on a large scale enterpriseo Coordination and communication with other remotely deployed team memberso Developing documentation with processes and procedureso Proposing, implementing automation features in a large enterprise environmentAt least 2 years of experience with:o Splunk Enterprise Security product and toolso Risk-based Alertingo Analytics-driven SecurityHold active Splunk Core Certifications of User, Power User and AdminMinimum of 3 year of experience in developing and tailoring reporting from network security tools.Must be able to obtain and maintain a US Public Trust clearancePreferred Qualifications: Candidates with these skills will be given preferential consideration.Experience with Splunk Common Information Model (CIM) and Enterprise AnalyticExperience with Cribl for load balancing dataExperience using Elastic for cloud storagePrior experience supporting the Social Security Administration or similar government agencies a plusUnderstanding of business processes supporting IT programs, networks, and/or cybersecurity programsUnderstanding of network technologies, work flows, IT reporting, etc.Must be a self-starter, position is remote from the other team members.Must communicate clearly to team members, be comfortable with coordination, collaboration and communication when performing network activitiesJob Type: Full-timePay: $60,000.00 - $75,000.00 per yearBenefits:401(k)401(k) matchingDental insuranceHealth insuranceLife insurancePaid time offProfessional development assistanceReferral programVision insuranceSchedule:Monday to FridayWork Location: One location