SPLUNK ENGINEER/ARCHITECT

f you are a professional who thrives when working on the leading edge of technology, enjoys being challenged to greater heights, and want to leave your thumb print where it matters and is valued. We have an outstanding client with a fantastic reputation and track record, currently looking to hire a senior level SPLUNK ENGINEER/ARCHITECT.

In this role you will serve as a LEAD DESIGN AND IMPLEMENTATION engineer for a multi-disciplined team supporting a DOD CLIENT. This role’s focus is primarily on implementation, engineering, architecting, maintaining, and monitoring a large Splunk deployment in a distributed and clustered environment. A key aspect of this job will be to help build and direct the Splunk technical capability. The successful candidate will have experience in architecting, implementing, and using Splunk solutions and applications to integrate data feeds and create content in a distributed computing environment. The candidate must have robust Splunk experience and be able to work collaboratively with diverse end users and a geographically distributed team.

LOCATIONS NEEDED: MONTGOMERY, AL OR SAN ANTONIO, TX

RESPONSIBILITIES / DUTIES:

• Designs new Splunk deployments based on customer requirements; refine existing Splunk deployments while applying Splunk best practices
• Deploys Splunk in clustered and non-clustered environments (includes indexer clusters and search head clusters)
• Manages Splunk knowledge objects (Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts)
• Deploys Splunk Enterprise Security in support of Security Operations Center activities at customer sites
• Develops custom Splunk apps to meet customer needs in a variety of domains: IT security, IT ops, physical security, etc.
• Required Skills:
• Must have strong Linux system administration and engineering skills; must be very comfortable administering servers from the command line and working with configuration files. (RHEL 7)
• Strong skills with a scripting language; Python preferred, JavaScript and/or Perl also valuable
• Comfortable working with bash, PowerShell, and batch scripts; ability to develop scripts in these languages to support Splunk deployments
• Strong experience and expertise engineering Splunk solutions
• Experience in building Splunk Technology Add-ons and configuring field extractions for various data sources
• Experience deploying/managing Splunk indexer clusters and search head clusters
• Deployment experience with Splunk Enterprise Security and/or Splunk IT Service Intelligence premium solutions
• Strong understanding of the underlying Splunk infrastructure and components (lookups, modular inputs, standard inputs, relationships between varying configuration files, etc.)
• Experience working with other big data analytics solutions (HP ArcSight, etc.) is a plus
• Ability to work collaboratively with a globally distributed team
• Strong sense of self-motivation; ability to identify problems and develop solutions
• Ability and willingness to learn new things
• Willingness to travel up to 25% throughout the year to customer locations

EDUCATION / CERTIFICATION REQUIREMENTS:

• Current Splunk Certified Architect Certification required; Splunk Accredited Engineer (formerly Splunk Certified Consultant II) highly desired
• DoD 8570 certification in the IAT Level III and/or CNDSP tier (CISSP or CASP, and CEH) or obtain within six months of employment
• 3+ years experience with Splunk in a distributed, enterprise environment
• 7+ years experience in a technical IT position involving systems administration and/or systems engineering
• Bachelor’s degree in related IT field, or equivalent experience
• MUST HAVE AT MININUM A SECRET SECURITY CLEARANCE