Sr. Splunk / SIEM Engineer (Secret Required) jobs in United States
cer-icon
Apply on Employer Site
company-logo

August Schell · 3 weeks ago

Sr. Splunk / SIEM Engineer (Secret Required)

positionAlexandria, VA
timeFull-time
remoteHybrid
senioritySenior Level
date5+ years exp

August Schell is seeking a Senior Splunk / SIEM Engineer with advanced hands-on experience in designing, deploying, and maintaining large-scale Splunk environments. The role involves troubleshooting complex system issues, creating custom dashboards, and managing Splunk clusters for a Department of Defense customer.

Cyber SecurityInformation TechnologySecuritySoftware
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Deploy, configure, and maintain complex Splunk clusters across varied hardware platforms
Develop and optimize advanced Splunk dashboards and queries to support mission-critical operations
Troubleshoot and resolve issues within large-scale, complex Splunk environments
Implement best practices for indexing, data transformation, and system architecture
Collaborate with cybersecurity and network teams to integrate Splunk with enterprise monitoring solutions
Support vulnerability and STIG scanning operations and interpret outputs for system compliance
Manage virtual environments including VRFs and VLAN
Perform system updates, patching, and ensure compliance with DoD cybersecurity requirements
Document configurations and operational procedures for audit and continuity purposes

Qualification

Splunk administrationCybersecurity experienceSIEM experienceSplunk Administrator CertificationVulnerability scanningCustom dashboardsDoD 8570 IAT-II certificationCompliance frameworksLinux familiarityWindows server familiarityProblem-solving skillsCommunication skillsTeamwork

Required

Bachelor's degree in computer science, Information Systems, Information Assurance or other relevant field
At least five (5) years of experience in Splunk administration or engineering roles
Knowledge of Splunk architecture, deployment models, and indexing best practices
At least ten (10) years of overall Cybersecurity experience
At least five (5) years of SIEM experience
Experience with vulnerability scanning, STIGs, database tuning, and network virtualization technologies
Proficiency in creating custom dashboards and advanced queries
Must hold a current Splunk Administrator Certification
Must possess a valid DoD 8570 IAT-II certification (ex. Security+)
Active Secret clearance required; must be willing and able to obtain Top Secret clearance
Strong problem-solving skills and ability to work independently or within a team
Excellent written and verbal communication skills

Preferred

DoD 8570 CSSP Analyst Certification desired
Familiarity with DevOps and automation tools such as Ansible or Terraform
Knowledge of compliance frameworks and reporting (RMF, NIST 800-53)
Experience with Enterprise Security (ES) and/or ITSI modules within Splunk
Experience with Elastic
Familiarity with Linux and Windows server environments

Company

August Schell

twittertwittertwitter
company-logo
August Schell is dedicated to delivering agile and innovative cybersecurity solutions to proactively defend and protect organization’s data against cyber attacks.
dateFounded in 1991
location
Rockville, Maryland, USA
people-size51-200 employees
web-link
http://augustschell.com

Funding

Current Stage
Growth Stage

Recent News

Air Force BES (.mil)
Atlassian Toolset License Renewals Awarded
2024-02-17
AF BES
Atlassian Toolset License Renewals Awarded > Air Force BES ...
2023-12-24
Company data provided by crunchbase