Splunk SME with Security Clearance

Makes recommendations to purchase hardware and software, coordinates installation and provides backup recovery.Creates, maintains, and implements detailed documentation and maintains standard operating procedures.Provides coaching and reviewing the work of lower level technical staff.The candidate works independently to maintain the smooth operation of a multi-user computer systems, including coordination with network and System teracts with users and evaluates vendor products.Will be the specialist for issues dealing with Splunk Security Incident Event Management (SIEM).Troubleshoot and correct issues within Splunk to include issues with Indexers, Heavy Forwarder, Search Head Clusters, etc...Application of security settings and other commercial best practices such as DISA STIGS.Support the deployment and implementation of cyber engineering strategies, tools and techniques which contribute to enhancing the cybersecurity posture.Analyze recommended improvements to engineering requirements and specificationsProvide engineering and deployment support for distributed Splunk environments consisting of heavy forwarders, indexers, and search heads, spanning security, performance, and operational rolesSupport the full system engineering life cycle, including requirements analysis, design, development, integration, test, documentation, and implementationPerform data analysis for anomalies and trends and analyze dashboards highlighting key data trendsSupport Splunk deployments in Windows and Linux environments and edit and maintain Splunk configuration files and appsFamiliar with VMware Horizon View, vSphere, VDI to troubleshoot and resolve complex problemsProvides support on a M-F business hours schedule, also responsible for on-call, extended hour, and weekend support as required by mission or emergencies. BASIC QUALIFICATIONS:Bachelor''s degree and 8 years of overall related experience with a Windows/Linux server environment. Specific experience, education and training may be considered in lieu of degree.Splunk DashboardsSPL LanguagesSplunk ReportingFamiliarity with Windows/Linux OSShell scripting (e.g. bash) and experience in other languages like Perl, Python, and Java.Currently possess an active Secret security clearance with the ability to obtain a Top Secret is required for this position.Currently possess DoD 8750 certification at least IAT level II, e.g. Security+ce. PREFERRED QUALIFICATIONS:Current Splunk Enterprise Certified AdministratorIntrusion Detection/Prevention Systems (such as FireEye and McAfee sensors and sandboxes)Integration of cyber security tools and systems with network performance, GTMS trouble ticketing, and security subsystems highly desired.

Created: 2025-09-06