Responsibilities
- Design and set up large-scale Splunk environments with custom configurations.
- Oversee clustered indexers across multiple locations, search head clusters, and forwarder deployments.
- Administer distributed Splunk systems, including cluster master setup and deployment server operations.
- Integrate new data inputs and apply advanced parsing techniques using regex and processing rules.
- Develop tailored Splunk applications featuring searches, alerts, dashboards, custom visualizations, and reports.
- Establish consistent standards for knowledge objects and user access controls across the platform.
- Diagnose and fix issues within the Splunk infrastructure using diagnostic tools such as btool.
- Handle SSL certificate lifecycle management for secure Splunk communications.
- Use advanced Splunk query language to extract and correlate data from diverse sources.
- Deploy and configure premium Splunk applications including Enterprise Security and User Behavior Analytics.
- Transition current workflows into Splunk to enable automation and improve operational efficiency.
- Maintain comprehensive documentation and develop standard operating procedures for system management.
- Partner with security personnel to enhance monitoring and incident response capabilities using Splunk.
Benefits
- Medical Insurance
- Vision Insurance
- Dental Insurance
- Life and AD&D Insurance
- 401(k) Savings Plan
- Education and Professional Training
- Flexible Spending Accounts (FSA)
- Employee Referral and Merit Recognition Programs
- Employee Assistance and Identity Theft Protection
- Paid Holidays: 11 per year
- Paid Time Off (PTO)
- Disability Insurance
Work Arrangement
On-site — Washington, DC
Other
Public Trust - Level 5 Investigation required