Splunk Engineer - SIEM

Job Description

ASRC Federal, is seeking a Splunk SIEM Engineer to support the Defense Information Systems Agency's (DISA) Unified Cyber Situational Awareness (UCSA) program. The ideal candidate for this role possesses solid Splunk knowledge, experience, and problem-solving skills to quickly analyze, identify, and resolve complicated issues. Further, the candidate must be able to work in a fast-paced environment, with the ability to collaborate in the development and implementation of new/other solutions not previously considered. You will get in on the ground floor working directly with the customer to establish this new capability.

Responsibilities:

Perform administrative, advisory, and support duties for the SIEM services platform, providing critical services for the protection and defense of the DODIN. Collaborate with an experienced team of Defensive Cyber Operations (DCO) analysts and Service Owners to improve the usability and capabilities of the existing platform.

Support the delivery of complex deployments of Splunk.

• Collaborate across the UCSA user community to deliver the ideal solution and drive feature innovations.
• Leverage previous experiences and share best practices to develop innovative solutions to maximum user experience and value.

Requirements

• Active TS/SCI level security clearance and a DoD 8570 approved certification.
• Bachelor's degree in Computer Science or a related field and eight (8) years ofdirect experience in technical consulting, with working knowledge or recent hands-on experience with scripting languages (bash), application development (java, python, .NET), databases and analytical tools
• Ability to quickly explore, examine and understand complex problems.
• Experience with both the Unix and Windows operating systems; comfortable on the command line interface
• Ability to collaborate and listen with technical and non-technical users from IT administrators to executive level stakeholders.
• Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and fellow Splunk engineers.
• Ability to communicate and prioritize work to meet aggressive deadlines.
• Demonstrable understanding of common enterprise applications (especially in the areas of security)
• Occasional travel required CONUS/OCONUS

Preferred Qualifications

• Splunk Power User or Splunk Admin certified
• Experience/knowledge in statistical and analytical modeling

**COVID-19 Vaccination Requirement Statement

The COVID-19 vaccination requirement in Executive Order 14042 and FAR 52.223-99 is currently not effective. But please note that if those or other related requirements become effective, positions will require successful candidates to obtain and show proof of COVID-19 vaccination(s). ASRC Federal is an equal opportunity employer and will provide reasonable accommodation to those individuals who are unable to be vaccinated consistent with federal, state, and local law.

EEO Statement

ASRC Federal and its Subsidiaries are Equal Opportunity / Affirmative Action employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.