Intellectt INC
Location
Chicago, IL | United States
Job description
Role: Splunk Engineer
Location: Chicago, IL - Onsite
Duration: Long Term
NOTE: Looking for consultants who reside only Local to Chicago, IL.
Skills : Splunk, Python, Dynatrace
Description : We are seeking a highly skilled Splunk Engineer to join our team at the Federal Home in Chicago, IL. The Splunk Engineer will be responsible for the design, implementation, and maintenance of Splunk solutions to support our federal agency's security and operational needs. The ideal candidate will have extensive experience with Splunk architecture, configuration, customization, and optimization, as well as a deep understanding of federal security requirements and regulations.
Key Responsibilities:
Design, implement, and maintain Splunk infrastructure to support security monitoring, log management, and operational intelligence for federal agency systems.
Configure and customize Splunk deployments to meet specific security and operational requirements, including developing search queries, dashboards, and alerts.
Collaborate with federal agency stakeholders to understand security and operational needs, and translate requirements into effective Splunk solutions.
Conduct performance tuning and optimization of Splunk infrastructure to ensure efficient data ingestion, search, and reporting capabilities.
Develop and maintain documentation for Splunk deployments, including architecture diagrams, configuration details, and standard operating procedures.
Provide technical support and troubleshooting for Splunk-related issues, including investigating and resolving security incidents and operational anomalies.
Stay current with Splunk technology advancements, best practices, and federal security regulations, and make recommendations for continuous improvement.
Participate in federal agency security audits, assessments, and compliance efforts related to Splunk deployments.
Collaborate with cross-functional teams to integrate Splunk solutions with other security and operational tools and systems.
Mentor junior team members and provide training on Splunk best practices and procedures.
Required Skills and Qualifications:
Bachelor's degree in Computer Science, Information Systems, or related field.
5+ years of experience in designing, implementing, and managing Splunk deployments in federal government environments.
Strong understanding of Splunk architecture, including deployment server, indexer clustering, search head clustering, and forwarder management.
Experience with Splunk data ingestion, parsing, and normalization techniques for diverse log sources and formats.
Proficiency in SPL (Search Processing Language) for developing complex search queries and correlation rules.
Knowledge of federal security regulations and frameworks, such as NIST SP 800-53, FISMA, and FedRAMP.
Experience with scripting languages such as Python or PowerShell for task automation and integration with Splunk.
Excellent analytical and problem-solving skills, with the ability to troubleshoot complex Splunk issues.
Strong communication and interpersonal skills, with the ability to effectively interact with federal agency stakeholders and team members.
Splunk certifications such as Splunk Certified Power User or Splunk Certified Admin are preferred.
Job tags
Salary
