| Splunk Admin,Engineer at Remote, Remote, USA |
| Email: arbab@vizoninc.com |
|
From: Arbab Ahmed, Vizon Inc arbab@vizoninc.com Reply to: arbab@vizoninc.com Hello, Hope you are doing well. Job Description - Need Candidate with Ability to acquire a Public Trust Background investigation Role: Splunk Admin/Engineer Location: Remote Duration: Long Term DESCRIPTION OF PROJECT AND TASKS: Statement of Work: The Splunk Admin/Engineer will support a large team of infrastructure, security, and application teams during the migration of on-prem and cloud applications to the client's Azure Government enclave. The Splunk Admin/Engineer will configure, operate, and maintain the Splunk environment across data sources and user needs in a multi-cloud environment. In addition, they will be responsible for data ingestions, search query writing, scripting, data visualization, Splunk architecture changes, and deployment. This role will also support the security assessment and authorization/ATO team and provide input for security audits. They will work closely with the SOC and incident response teams to investigate incidents. Required Skills: 5+ years of experience configuring, deploying, maintaining, and optimizing Splunk Administer and manage the day-to-day operations of the Splunk Environment Oversee Splunk indexers, search heads, and forwarders to ensure optimal performance Implement and manage federated queries, Splunk dashboards, alerts, and reports Integrate Splunk with various data sources and external platforms (including other SIEM tools) in a multi-cloud environment Develop and maintain Splunk Knowledge objects, queries, and advanced data visualization Perform Splunk upgrades, patching, and routine maintenance tasks Troubleshoot and resolve issues related to Splunk installation, data inputs, and log parsing Work closely with the SOC team to monitor and analyze logs, reports, and alerts Strong knowledge of Search Processing Language (SPL) to query and manipulate data Experience in Operating System administration for the platforms Splunk runs on (RHEL, Linux, Windows) Familiarity with commands and scripting for automation Design, implement, and maintain Splunk apps and add-ons Required Qualifications: Bachelors degree in a related field Ability to acquire a Public Trust Background investigation Preferred Skills: Splunk Enterprise Certified Administrator (SECA) Familiarity with cloud platforms and integration with Splunk Knowledge of other security tools Experience with automation tools (e.g., Ansible, Puppet, or Chef) Certified in industry-recognized areas such as CISSP, CISA, or CISM Excellent organization, collaboration, project management, and team leadership skills Strong communication skills and experience creating and delivering compliance status and metrics briefings to senior leadership Keywords: Splunk Admin,Engineer arbab@vizoninc.com https://jobs.nvoids.com/job_details.jsp?id=2197617 |
| arbab@vizoninc.com View All |
| 12:33 AM 22-Feb-25 |