• 10 years of relevant professional experience
• 2+ years' experience with Splunk Enterprise, including:
• Search Processing Language and the basics of writing Reports, Alerts, and Dashboards
• Management of infrastructure components (e.g., Indexers/Index Clusters, Search Heads, Universal Forwarders)
• Capability in ingesting and indexing new data sources
• Familiarity with app folders, editing configuration files (e.g., inputs.conf, props.conf), and resolving common configuration issues on both the GUI and terminal.
• 1+ years of experience with Linux/Windows OS system administration
• 1+ years of experience with drafting architectural and infrastructural diagrams
• Proficient in SharePoint, Jira, Confluence, and/or other ticket tracking software
• Ability to work closely with scrum teams and provide update/presentations on progress
• Top Secret SCI
• Available 2-3 days a week onsite in the Crystal City/Alexandria, VA region

Additional Qualifications:

• Experience with Splunk Enterprise Security, User Behavior Analytics, and other security analytics tools

• Ability to use automation tools and Infrastructure-as-code to manage installations, pipelines, and scripting

• Experience with writing scripts and glue to tie together services, functionalities, and tools using technologies, including Python, Bash, Boto3, JSON, and YML and XML templates

• Experience with Amazon Web Services (AWS)

• Experience with additional tools, including Docker, Kubernetes, and Ansible

• Possession of excellent time management skills

• Possession of excellent verbal and written communication skills

• BS degree in CS, Computer Engineering, Mathematics, Statistics, or a related technical engineering field

• One of the following certifications and/or courses: Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect Certification, Splunk User Behavior Analytics, Splunk Enterprise Security