Cyber Security Splunk Engineer
Job Category: Engineering
Time Type: Full time
Minimum Clearance Required to Start: TS/SCI with Polygraph
Employee Type: Regular
Percentage of Travel Required: None
Type of Travel: None
Currently, CACI is seeking a motivated, career and customer-oriented Cyber Security Engineer to join our team in Chantilly, Virginia.
Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At CACI, you’ll help protect our national security while working on innovative projects that offer opportunities for advancement.
What You’ll Get to Do:
Responsible for day-day operation of large Splunk environment
Troubleshooting new and current data collection issues
Troubleshooting system issues that make the system unstable or unusable
Deployment and Managing supported and unsupported Splunk Add-ons that are required for specific data sources
Responsible for Splunk Upgrades to all Splunk Enterprise servers
Integrations with other systems via API or other similar methods
Provide documentation such as body of evidence documents (as needed), engineering documents, change management documents, system security plans, and accreditation documents
Deliver a comprehensive Splunk deployment document to detail the specifications, deployment methods, and other architectural considerations to the production environment
Maintain a strict role-based access control solution around the data collected, to provide a need-to-know ability
Forwarder Configurations and Deployments: Design and deploy forwarders rapidly with centralized configuration management (Splunk Deployment Server)
Oversee Knowledge Object Management such as CIM management and tuning
Oversee Enterprise Security configurations and tuning
Experience in the use of network monitoring tools with a strong understanding of network protocols
Ability to perform security analysis, development and implementation of security policies, standards and guidelines
Ability to work collaboratively
Strong Organizational skills are required
You’ll Bring These Qualifications:
Bachelor’s degree or equivalent and Seven (7) years of related experience
Three (3) years experience working in an Enterprise environment as system administrator or other security personnel
One (1) or more years of experience working with Splunk; to include Splunk Enterprise Security, and other security tools
Experience with both the Unix and Windows operating systems
DoD 857 IAT Level II
These Qualifications Would be Nice to Have:
Splunk certifications: Architect, Consultant I, Consultant II, Admin, Power User
Experience with scripting languages (bash), application development (Java, Perl, Python, .NET), databases and analytical tools
Experience with security and operational related use cases
What We Can Offer You:
– We’ve been named a Best Place to Work by the Washington Post.
– Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
– We offer competitive benefits and learning and development opportunities.
– We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
– For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer – Females/Minorities/Protected Veterans/Individuals with Disabilities.
As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.
TS/SCI with Polygraph
CACI / Equal Opportunity Employer
JBCAC 271299 2023.05.23
Top Secret with Polygraph Required, CLZTS, CLZCI, SKINT, SKCYB, — SKUUU, Chantilly, Virginia Chantilly, Virginia ZC ZCCX