Cyber Security / Splunk Engineer

Company: Ennoble First
Location: Chantilly
Posted on: January 20, 2023

Job Description:

Title Cyber Security/Splunk Engineer



Location: Chantilly, VA

Required Clearance: TS/SCI CI Poly

Employment Type: Full-Time Regular

Shift: Day

Travel: No

Relocation Assistance: Yes
We are Ennoble First. The people supporting and securing some of the most complex government, defense, and intelligence projects across the country. We ensure today is safe and tomorrow is smarter. Our work has meaning and impact on the world around us, but also on us, and that's important. Ennoble First is your place. You make it your own by embracing autonomy, seizing opportunity, and being trusted to deliver your best every day. We think, we act and we deliver. There is no challenge we can't turn into an opportunity. Our work depends on a TS/SCI CI Poly cleared Cyber Security/Splunk Engineer to support our NRO customer in Chantilly, VA!



Primary Responsibilities:

• 
  
• Responsible for day-day operation of large Splunk environment.
  
• Troubleshooting new and current data collection issues
  
• Troubleshooting system issues that make the system unstable or unusable.
  
• Deployment and Managing supported and unsupported Splunk Add-ons that are required for specific data sources
  
• Responsible for Splunk Upgrades to all Splunk Enterprise servers
  
• Integrations with other systems via API or other similar methods
  
• Provide documentation such as body of evidence documents (as needed), engineering documents, change management documents, system security plans, and accreditation documents
  
• Deliver a comprehensive Splunk deployment document to detail the specifications, deployment methods, and other architectural considerations to the production environment.
  
• Maintain a strict role-based access control solution around the data collected, to provide a need-to-know ability
  
• Forwarder Configurations and Deployments: Design and deploy forwarders rapidly with centralized configuration management (Splunk Deployment Server).
  
• Oversee Knowledge Object Management such as CIM management and tuning
  
• Oversee Enterprise Security configurations and tuning
  
• Experience in the use of network monitoring tools with a strong understanding of network protocols
  
• Ability to perform security analysis, development and implementation of security policies, standards and guidelines
  
• Ability to work collaboratively
  
• Strong Organizational skills are required
  
  Minimum Education/Experience Requirements:
  
  
  • 
    
  • 3+ years working in an Enterprise environment as a system administrator or other security personnel
    
  • Requires Bachelor's degree or equivalent and seven to nine years of related experience
    
  • 1+ years of Splunk experience
    
  • 1+ years of Splunk Enterprise Security experience, and other security tools
    
  • Experience with both the Unix and Windows operating systems
    
  • Have a minimum of a DoD 8570 IAT Level II
    
    Desired Skills:
    
    
    • 
      
    • Hold the following Splunk certifications: Architect, Consultant I, Consultant II, Admin, Power User
      
    • 2+ years of experience with scripting languages (bash), application development (Java, Perl, Python, .NET), databases and analytical tools
      
    • Experience with security and operational related use cases is desired
      
      Physical Requirements:
      
      
      • 
        
      • Must be able to remain in a stationary position 75% of the time
        
      • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
        
      • The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations
        
      • Must be able to detect information on a computer screen
        
        
        
        
        
        
        
        
        
        
        Ennoble First is committed to providing a diverse and inclusive work environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
        
        
        
        Ennoble First participates in E-Verify.
        
        
        
        
        
        The information below will be listed on our website's careers landing page.
        
        
        
        
        
        
        
        E-Verify is a registered trademark of the U.S. Department of Homeland Security. This business uses E-Verify in its hiring practices to achieve a lawful workforce.
        
        
        

        
        

Keywords: Ennoble First, Chantilly , Cyber Security / Splunk Engineer, Engineering , Chantilly, Virginia