Splunk Administrator Level 4

Duties :

• Implements, tests, and operates advanced software security techniques in compliance with technical reference architecture.
• Performs on-going security testing and code review to improve software security.
• Troubleshoots and debugs issues that arise.
• Provides engineering designs for new software solutions to help mitigate security vulnerabilities.
• Contributes to all levels of the architecture and maintains technical documentation.
• Consults team members on secure coding practices. Develops a familiarity with new tools and best practices.
• Designing, implementing, and maintaining SIEM and SOAR solutions.
• Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs
• Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security-relevant devices.
• Utilize expertise in Splunk "Search" language, Splunk Dashboards, Reports, Lookup Tables, and Summary Indexes. Build Splunk dashboards that take inputs from various data sources such as application logs / operating system logs / middleware logs / network feeds etc. and identify / highlight anomalous activities on the dashboards by their severity levels.
• Perform troubleshooting and provide assistance with the creation of Splunk search queries and dashboards.
• Systems Administration position on subcontract, willing to work with you on which one - Site System Admin-4 or Systems Administration - 4 (Lead System Administrator)

Location : Annapolis Junction, MD

Qualifications :

Salary Range : The salary range for this position is $80,000 - $160,000. Final salary is commensurate upon education and applicable years of experience.

Salary : $80,000 - $160,000