Work hard and make a difference

Grindstone PBC is a cybersecurity public benefit corporation with a mission to protect and educate the world. We take on large challenges through collaboration, innovation, and talent. We seek out a diverse workforce to take on the challenges of the nation with character, integrity, determination, commitment, and accountability. Our client is looking for a Senior Splunk Admin-Onsite. If interested after reviewing the description below, please apply and someone from the Grindstone team will reach out to you.

Work Location: Pensacola, FL

Job Description:

The successful Splunk Admin applies current analytical and logical thinking to the design, architecture, development, evaluation, testing, and integration of computer systems, appliances, and networks involving the architecture and implementation of the Splunk product. Attention to detail, honesty, out-of-the-box thinking with a problem-solving mindset, being ability to work under pressure, and being able to deliver on tight delivery schedules are recommended soft skills. The Senior Splunk Engineer must display superb understanding and be knowledgeable with a multitude of technologies including firewalls, web application firewalls, VPNs, DNS, Data Loss Prevention, IDS/IPS, and proxies, to name a few. Develops security systems for any manual or automated systems environments. Responsible for ensuring the logging of mission and organizational data against unauthorized disclosure, accidental or intentional loss of data, or unauthorized modification. The successful Senior Splunk Engineer will be comfortable working with a variety of different tools and appliances, security problems, and troubleshooting various complex issues.

Required Skills and/or Experience:

• An active Secret security clearance is required with the eligibility to obtain a TS/SCI.
• Must be able to obtain DHS suitability prior to starting employment
• Administer the management of all Splunk components, software, hardware, licensing, and all other aspects of the information system, as well as, Operations and Maintenance (O&M) of the system
• Provide Splunk administration, management, troubleshooting, and testing
• Experience and/or familiarity with the following network protection devices: Firewalls, intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow, and packet analysis
• Support Projects and Project management personnel throughout the full software development lifecycle
• Manage technology roadmaps with each product and propose briefs and reports to elaborate on recommended actions based on best practices
• Perform full product testing to the length of the product's capabilities as required by the customer and the program
• Develop capabilities according to customer requirements and NIST, DHS, and Government guidelines and regulations

Desired types of Skills, Knowledge, and Experience:

• Troubleshooting, networking, Windows, and Linux in-depth knowledge is very important as the basis of understanding the network for NetFlow and DataFlow.
• Understanding of Cloud technologies, methodologies, and processes such as AWS or Azure.
• Managing and administering Splunk Enterprise Security, Splunk Cloud, and Splunk in the Cloud environments.
• Familiarity with one or more of the following: RSA Security Analytics (NetWitness), Symantec Bluecoat, CyberArk, ForeScout CounterAct, McAfee ePO, FireEye, Cisco FirePower (SourceFire), RedSeal, SecureSphere Imperva, Tenable Nessus, Splunk, Cloud technologies, Splunk Cloud, DevSecOps processes, Project Management processes to include SAFe and Agile, SDLC, monitoring and analysis, PKI, a chain of trust, and certificates.

Desired Certification(s):

Splunk Administrator, Splunk Enterprise Security, Splunk Architect, Splunk Consultation, Splunk Cloud, etc.

Licod2MuQ8