Senior Splunk Engineer (TS SCI required) with Security Clearance

---

Job description

Senior Splunk Engineer (Security / DevOps)
Location: Richardson, TX 75082 , on-site Duration: This project is anticipated to be at least one year in duration, starting in September 2024. The Senior Splunk Engineer will be working with a federal integrator, supporting the enterprise development and sustainment program to support application development for a federal customer. This will involve designing, building, delivering, and operating new cyber capabilities to address emerging threats. The Senior Splunk Engineer will be part of an Agile development team, developing the application and supporting it in a cleared facility. This work is done on-site. Responsibilities Include: Providing cybersecurity engineering support on systems, system elements, interfacing systems, components, security tools, devices and/or processes for developmental and operational cyber tools Working independently or as a team member to solve cybersecurity engineering problems Developing and analyzing available cyber protection tools that will improve security posture and provide recommendations that support the remediation and protection of systems Perform cyber criticality, mission impact, and risk analysis of recommended tools Translating analytical findings into security "use cases" that can be implemented within available surveillance capabilities Operations and management of multiple cloud and on-prem network security devices. Providing technical support to include troubleshooting performance issues with the application components Implementing new application versions when they are released Creating application documentation, drawings, and other deliverables for tool maintenance. Prepare technical designs with Visio diagrams and detailed descriptions. Required Skills:
• Must be a US Citizen
• Must have a TS/SCI clearance
• 6+ years of software development experience
• 2+ years of experience with Agile software development
• Possess in-depth technical and theoretical knowledge of cyber defensive operations and technologies
• Experience in the installation and configuration of Splunk
• Advanced experience securing network traffic via AWS API Gateway and AWS Application Load Balancers, cloud-security technologies (e.g., VPC, Security Groups) and Access Control (IAM)
• Familiarity with intrusion detection and prevention systems (IDS/IPS), RSA Security Analytics (NetWitness), Symantec Bluecoat, Cisco FirePower (SourceFire), Splunk, PKI, chain of trust, and certificates. etc. Desired Skills:
• 5+ years of Cloud DevOps Administrative or Engineering experience
• 3+ years of related Network Security Identity Management tools engineering experience, including installing, configuring and troubleshooting experience with Splunk Enterprise
• Experience with Splunk ITSI desired
• Experience is an AWS Cloud environment
• Symantec Bluecoat
• Cisco FirePower (SourceFire) Required Education:
• Bachelor's degree in Software Engineering, Computer Science or a related discipline is highly desired.
• 8 years of software engineering and cybersecurity experience, some of which in a federal environment Desired Certifications:
- One or more of the following certifications in good, current standing: CISA, GCIH, GCED, CISSP, CASP, or Security+
- AWS certifications such as Cloud DevOps Developer Assoc, SysOps Administrator Assoc, Advanced Networking Spec, Security Spec.
-Splunk Certified Core Consultant or Splunk Certified Architect

<!– job description page –>