• Splunk Engineer

    Job Locations US-VA-Fairfax
    Job ID 2018-3729
    Type
    Regular Full-Time
  • Position Description

    Valiant Solutions is seeking a Splunk Engineer/SME to join our growing team supporting a large Government client in Fairfax, VA!

     

    This Splunk SME will enhance the cyber security posture of multiple civilian government agencies through improved visibility into user credential management. You will actively identify and mitigate a wide range of cyber risks and will also work closely with a wide variety of agencies, learning their mission, priorities, organization and unique challenges. This opportunity will support a dynamic, fast-paced and energetic project running multiple concurrent implementations.

     

    Valiant Solutions is a Cybersecurity company delivering cutting-edge security solutions to our Government clients specializing in Cloud Security, Security Engineering, and Federal GRC.  This is your chance to work with a wide range of security technologies for a company that cares about its employees Valiant has been named one of the Best Places to Work in the DC area FOUR years in a row!

     

    Salaries will be based on qualifications and education. All candidates must be US citizens with the ability to successfully pass Federal background and credit checks.

     

    Position Description:

    • The Splunk Engineer SME will be supporting a strategic federal cybersecurity client.
    • Primary Mission of the project will be in implementing a proactive risk management solution to enhance the customer’s defense posture.
    • Candidate will work with a highly skilled and experienced team focusing on next generation security solutions.
    • Additionally, this individual will serve as a trusted advisor, technical leader and cyber security expert for the organization and drive future growth capabilities from existing engagements.
    • This candidate will function as a security advisor and consultant for customers on people, policy, processes and technology issues surrounding security engagements while helping scope and design multi-vendor security solutions for large networks and supporting customers in their risk and threat mitigation solutions.
    • Additionally, the Splunk Engineer SME will play a role in the development of additional cyber security offerings to support both emerging and next generation cyber security technologies.

     

    Responsibilities:

    • Ability to work with a diverse team on security tools and applications providing custom and tailored software changes as required on Splunk to monitor and detect cyber security threats in an environment for various clients within large program.
    • Experienced in working with other cyber security experts to develop use cases, data models and connectors within Splunk to meet overall program objectives.
    • Act as the Splunk Search Language (SPL) expert in developing network or endpoint-based anomaly detection alerting logic in SPL and building dashboards to visualize results.
    • Able to conduct research in security principles, host and network based security technologies, industrial controls system devices, machine language learning algorithms and attack and mitigation methods.
    • Experienced in the design, analysis, evaluation, installation, testing, debugging and installation of Splunk.
    • Day-to-day activities include working with customer teams and supporting current tasks and activities.
    • Responsibilities include leading customer engineering teams.
    • Work closely with customer delivery managers to prioritize daily tasks.
    • Participate in technical meetings with customers’ technical specialists.
    • Provide tier 3 support for incidents relating to Splunk infrastructure operations.
    • Continuously improve customers’ Splunk deployments and integrate new technologies and services.

     

    Required qualifications to be successful in this role:

    • Due to the nature of the government contract requirements and/or clearance requirements, US citizenship is required
    • Bachelor's degree in Computer Science or a related field
    • 5+ years of experience with Splunk, network security and system security supporting security event management tools, including SIEMs
    • 2+ years of experience with rule and advanced logic creation in Splunk
    • Thorough understanding and operational experience with Splunk Search Language
    • Development of automated searches and applications using Python, shell scripting, HTML, CSS and regular expressions.
    • Thorough understanding of Splunk’s Common Information Model (CIM)
    • Understanding of Splunk’s advanced capabilities to include: Splunk Enterprise Security (ES), Splunk User Behavior Analytics (UBA), Splunk Machine Learning Toolkit, Splunk Cloud, Advanced Threat Analytics

     

    Technical skills:

    • Experience in using scripting languages to automate tasks and manipulate data
    • Knowledge of enterprise logging, with a focus on application logging
    • Education and/or formal training may substitute for experience requirement
    • Ability to develop and integrate solutions across a diverse and heterogeneous IT environments.
    • Experienced in providing technical integration advice that includes evaluating inputs, WMI issues, crash logs, and alert scripts with the ability to identify and correct vulnerability findings experienced with Splunk migrations and implementations.
    • Previous experience with expert knowledge of data normalization and data modeling specifically within the Splunk environment
    • Articulate and convey advanced technical concepts in presentations and client meetings
    • Development of documentation, architecture diagrams, and process and procedures for end users
    • Ability to produce high-quality technical documentation
    • Excellent troubleshooting skills and strong technical learning aptitude required.
    • At least 5 years of experience with a scripting language (Bash, Perl, Python)
    • Expertise with Linux and command-line interface
    • Experience working with security technologies to include end point security tools, boundary protection technologies, network security tools, and vulnerability management technologies.
    • Knowledge of network technology and common internet protocols
    • Experience deploying apps within Splunk or administrating the Splunk platform

     

    Desired:

    • Detailed understanding and strong skill set in operating and working with the Splunk tool set
    • Currently hold Splunk specific certifications: Splunk Administrator
    • Security relevant certifications: CISSP, CISM, CISA, Security+

    About Valiant Solutions:

    Valiant Solutions is a security-focused IT solutions provider with both public and private sector clients nationwide. Named one of the fastest growing privately held companies by Inc. 5000, Washington Technology’s Fast 50, and Washington Business Journal’s Best Places to Work in the D.C. area, Valiant Solutions prides itself on providing its employees with great benefits and career development opportunities. As a company, we are just as committed to growing careers as we are to building world-class IT solutions, all while enjoying an unparalleled work-life balance. We are in a phase of tremendous growth and building the team that will take us to the next level. We seek people whose talents and accomplishments will contribute to a thriving company, who have the character to support their capacity, and can make a positive impact on our culture. Alongside our talented team, you’ll learn to think quickly on your feet and expand your own personal and professional skillset. Our management team will inspire you to consider new perspectives and challenge you to become a better practitioner in the fast-paced industry of IT security. We hire people we respect – and we trust them to deliver results leveraging their expertise. If you would enjoy working in a dynamic environment as part of a stellar team of professionals, then we invite you to apply online today. 

     

    Benefits Snapshot (includes, but not limited to):

    Valiant pays 99% of the Medical, Dental, and Vision Coverage for FTE

    Valiant contributes 25% towards Health Coverage for Family and Dependents

    100% Paid Short Term Disability and Life Insurance Policy for FTE

    100% Paid Certifications

    401K Matching up to 4%

    Paid Time On – 40 hours to pursue innovation

    Valiant University – Online Education and Training Portal

    Reimbursement for Public Transit and Parking

    FSA programs for: Medical Costs, Dependent Care, Transit, and Parking

    Referral Bonuses

     

    Equal Opportunity Employer:

    Valiant Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, national origin, sex/gender, pregnancy, religion, age, marital status, sexual orientation, military/veteran status, disability, genetic information/history or any other personal characteristic protected by law.

     

    Physical Demands

    Must be able to remain in a stationary position 50% of the time and also be able to occasionally move about inside the office to access file cabinets, office machinery, etc.

    Must be able to constantly operate a computer and other office productivity machinery, such as a copy machine, and computer printer.

    Must be able to communicate, detect, converse with, discern, convey, express one self, and exchange information visually and verbally.

    Must be able to occasionally bend and lift files and papers up to 10 pounds throughout the office space for events and meetings.

     

    Work Environment:

    Individual's primary workstation is located in an office area

    The noise level in this environment is low to moderate

     

    Authorization to Share Resume and Personal Information:

    By submitting your resume for this position, you authorize Valiant Solutions to share your resume, as well as personal information included on the resume, with its subsidiaries, affiliates and teaming partners for the purpose of considering you for this position and other available positions requiring comparable skills, education and experience. Should Valiant Solutions or its affiliates and teaming partners wish to initiate pre-employment discussions, you will be asked to complete an employment application and related employment documents.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed