Be an early applicantLess than 25 applicants

Company

Valiant Solutions, LLC · 4 hours ago

Splunk Engineer

United States

Full-time

Remote

Mid, Senior Level

$120K/yr - $150K/yr

5+ years exp

Maximize your interview chances

Cyber SecurityInformation Technology

Comp. & Benefits

No H1B

Security Clearance Required

Insider Connection @Valiant Solutions, LLC

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Develop and implement processes for ingesting data from various sources into Splunk, ensuring seamless integration and minimal data loss

Configure and manage data inputs to accommodate different types of data sources, including logs, metrics, and events

Establish and maintain secure and reliable connections between Splunk and external systems or data sources

Ensure proper authentication and authorization mechanisms are in place for data transfer and system communication

Oversee the configuration and maintenance of Splunk infrastructure, ensuring optimal performance and security of the Splunk environment

Collaborate with cross-functional teams to troubleshoot and resolve issues related to Splunk functionality

Conduct root cause analysis for incidents and implement preventive measures

Utilize Linux skills to manage and maintain the underlying operating system of Splunk servers and other security applications

Monitor tool health and performance to identify issues, bugs, or potential improvements

Develop, review, and update existing operational documentation (SOPs, Job Aids, application checklists, playbooks, etc)

Support system access controls, including Account Management, Access Enforcement, Information Flow Enforcement, Least Privilege, and workflow for all user account requests and account recertifications

Collaborate with the Security Operations Center (SOC) teams for process optimization, tool tuning, tool integration, information sharing, playbook development, and incident response

Perform implementation, administration, operations and maintenance , optimization, & integration of cybersecurity tools, technologies, and services

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Splunk administrationData ingestion pipelinesSearch Processing Language (SPL)Data parsing techniquesRegular expressionsData pipeline optimizationCyber threat analysisSplunk certificationsSyslogLogStashLinux environmentService Test Tools

Required

5+ years of Splunk administration or engineering experience

Proficiency in configuring and managing Splunk inputs, setting up data ingestion pipelines, and establishing system connections

Knowledge of Splunk's Search Processing Language (SPL), data parsing techniques, and the use of regular expressions for data extraction and transformation

Skilled in optimizing data pipelines for performance and efficiency, handling large data volumes, and implementing best practices for data integrity and consistency

Knowledge of cyber threat, cyber intelligence analysis, and vulnerability management practices