Splunk is a powerful log aggregation and data analysis tool used widely by the Defense Health Agency (DHA) to monitor IT assets across the military health system. Core4ce is seeking a Splunk administrator capable of installing, configuring, troubleshooting, and sustaining an enterprise Splunk instance used by 5,000+ end users.

 RESPONSIBILITIES

• Demonstrated experience using Splunk Search Processing Language to assist customers in creating queries, setting alerts, identifying event conditions, and building dashboards
• Installing, configuring, and deploying Splunk infrastructure, to include search heads, indexers, forwarders, and other Splunk components
• Monitor and maintain Splunk performance, availability, and capacity.
• Test and deploy new versions of Splunk to all enterprise servers as they are made available by the relevant DHA organization
• Grow and improve the enterprise Splunk environment to a mature implementation by creating forwarder apps to ingest data
• Support large-scale deployments with data feeds from multiple locations worldwide
• Develop reliable, efficient, and re-usable queries that will feed custom alerts and dashboards
• Assist users in accessing and identifying relevant audit logs, both for troubleshooting and cybersecurity compliance purposes
• Assisting customers in configuring dashboards to facilitate their own audit log analysis, and generally assisting customers in developing Splunk solutions for their use cases
• Splunk account creation and role-based access control / permissioning
• Act as the Splunk liaison for Splunk technical questions, issues or escalations. This will include working with Splunk Support, Product Management or others as needed.
• Administration of the servers on which Splunk infrastructure is deployed is not a direct responsibility, but the successful candidate must be familiar enough with both Splunk and server administration to participate in server troubleshooting affecting Splunk performance.

REQUIREMENTS

• High school graduation or GED. High-level education, such as a technical bachelor’s degree, is highly valued but not required.
• At least 8 years of IT experience, of which at least 3 must have involved working directly with Splunk, either as a power user or system administrator.
• Experience with the Department of Defense or other federal agencies is preferred but not required.
• Hold an industry certification related to any of the following technologies: Windows OS, Red Hat Enterprise Linux, Microsoft Azure, Amazon Web Services, or VMWare. Other industry certifications may also be applicable for this position and will be considered upon request.
• Splunk Enterprise Certified Admin certification strongly preferred. If the successful candidate does not already hold this certification at the time of hire, he/she will be expected to obtain it within 6 months of starting. Splunk Core Certified Power User certification may be acceptable in combination with other industry experience/certifications/education.
• CompTIA Security+ certification required, either at the time of hire or within 6 months of starting if not already held.
• Secret security clearance or the ability to obtain a clearance

All qualified applicants will receive consideration for employment without regard to race, color, sex, sexual orientation, gender identity, religion, national origin, disability, veteran status, age, marital status, pregnancy, genetic information, or other legally protected status

Required Skills Required Experience

KNOWLEDGE, SKILLS & ABILITIES

• INTRAPERSONAL SKILLS: Self-motivated and able to identify, examine, and resolve issues independently from others, however, understands when to ask for assistance. Holds a strong regard for guidelines, procedures and integrity.
• VERBAL & WRITTEN COMMUNICATION SKILLS: This position requires intermediate skills with the ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or government regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.
• CRITICAL THINKING — Using logic and reasoning to identify the strengths and weaknesses of alternative solutions, conclusions or approaches to problems.
• ACTIVE LISTENING — Giving full attention to what other people are saying, taking time to understand the points being made, asking questions as appropriate, and not interrupting at inappropriate times.
• JUDGMENT AND DECISION MAKING — Considering the relative costs and benefits of potential actions to choose the most appropriate one.
• MANAGEMENT OF FINANCIAL RESOURCES — Determining how money will be spent to get the work done, and accounting for these expenditures.
• READING COMPREHENSION — Understanding written sentences and paragraphs in work related documents.
• COMPLEX PROBLEM SOLVING — Identifying complex problems and reviewing related information to develop and evaluate options and implement solutions.
• SYSTEMS ANALYSIS — Determining how a system should work and how changes in conditions, operations, and the environment will affect outcomes.
• MATHEMATICS— This position requires intermediate math skills (i.e. calculate figures/discounts, proportions, kilowatts, amps, etc.).
• ELECTRICAL DESIGN SKILLS — This position requires the ability to interpret electrical one-line drawings, client specifications and industry standards to select the required types, sizes, ratings and quantities of the material to be included in the equipment offered.
• COMPUTERS AND ELECTRONICS — Knowledge of computer hardware and software, including applications and programming such as Microsoft Office Business Suite Excel, Word, Access, Adobe Acrobat software, knowledge of Saleslogix or other Client Relations Management software, and accounting software such as AS400.