Splunk Systems Engineer, Senior

Perform all aspects of Splunk Enterprise and ITSI administration, maintenance, and operation of global enterprise solutions. Monitor Splunk infrastructure system health and data feeds, install and configure Splunk Indexers, Forwarders, Deployment Servers, and Search-Heads. Drive complex Splunk dashboard deployments/reports and support cybersecurity and operations teams.

Requirements

• Ensure the Splunk infrastructure functions properly with PKI-based authentication, corporate authorization services, firewalls, and SSL/TLS communications.
• Contribute to developing and improving industry best practices and standards for maintaining data analytics enterprise technologies.
• Assist with installing, testing, and deploying hotfixes/patches for Splunk app/product releases to manage enterprise vulnerabilities.
• Assist with the development of knowledge articles, documentation, and work instructions used by the Splunk, server, desktop, and Information System Security teams, and Tier 2/3 Help Desk technicians.
• Mon-Fri Dayshift, Available for after hours on-call
• Experience with Splunk Machine Learning Toolkit (MLTK)
• Experience with scripting languages such as CSS, HTML, JavaScript, and Python
• Knowledge of RMF, Trellix ePO, NESSUS, SCAP, and vulnerability scanning
• ServiceNow Ticketing System
• Shell scripting to automate tasks and manipulate data
• Experience managing user authentication within Splunk to include Role and Attribute Based Access Controls (RBACABAC), authentication with Lightweight Directory Access Protocol and Active Directory (LDAPAD), and managing access via HEC tokens is highly preferred. Experience implementing and managing Apps within Splunk is highly preferred.