Job details

SPLUNK Engineer/ Architect (S-NET)

Get a free resume review

Overview

Abile Group has an exciting and challenging opportunity for a Splunk Cyber Software Engineer supporting an Intelligence Community Customer.

The right candidate will possess the below skills and qualifications and be ready to handle all responsibilities independently and professionally.

Responsibilities

Implements, tests, and operates advanced software security techniques in compliance with technical reference architecture.
Performs on-going security testing and code review to improve software security.
Troubleshoots and debugs issues that arise.
Provides engineering designs for new software solutions to help mitigate security vulnerabilities.
Contributes to all levels of the architecture and maintains technical documentation.
Consults team members on secure coding practices. Develops a familiarity with new tools and best practices.
Designing, implementing, and maintaining SIEM and SOAR solutions.
Design and implement threat detection, automate incident response processes, integration of various security tools with SIEM and SOAR platforms via APIs.
Maintain SIEM applications to collect and aggregate IDS and IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements, and other security-relevant devices.
Utilize expertise in Splunk "Search" language, Splunk Dashboards, Reports, Lookup Tables, and Summary Indexes. Build Splunk dashboards that take inputs from various data sources such as application logs / operating system logs / middleware logs / network feeds etc. and identify / highlight anomalous activities on the dashboards by their severity levels.
Perform troubleshooting and provide assistance with the creation of Splunk search queries and dashboards.

Qualifications

Clearance Required: TS/SCI.

Degree and Years of Experience: 5 to 8 years with BS/BA or 3 to 5 years with MS/MA or 0 to 2 years with PhD.

Required Certification:

8140/8570 IAT Level III certification.

Desired Certification:

Splunk Architect.
Splunk Certified Administrator certification.

Required Skills:

Proven experience as a Splunk Administrator or similarly named Splunk focused role.
Strong understanding of Splunk architecture, components, and deployment options.
Proficiency in Splunk Search Processing Language (SPL) for creating complex search queries and reports.
Experience with Splunk data ingestion methods, including forwarders, HTTP Event Collector (HEC), and scripted inputs.
Familiarity with Splunk Enterprise Security (ES), Qumolos, and Splunk SOAR is a plus.
Solid understanding of IT infrastructure, including networking, operating systems, and security principles.
Excellent problem-solving skills and attention to detail.
Strong communication and collaboration abilities.

About Abile Group, Inc.

Abile Group, Inc. was formed in July 2004 to partner with the Intelligence Community and their Contractors in the areas of Enterprise Analytics & Performance Management, IT & Systems Engineering and Program & Project Management. We have significant experience with the Federal Government and are an EDWOSB dedicated to our employees and clients. We are looking for high performing employees who enjoy providing advice and guidance along with solutions development and implementation support, crafted by combining industry best practices with the clients’ subject matter experience and Abile’s breadth of expertise.

Hiring Statement

Abile is committed to hiring the most qualified and best fit person for the job - always has, always will. Anyone requiring reasonable accommodations should email careers@abilegroup.com with requested details. A member of the HR team will respond to your request within 2 business days.

Please review our current job openings and apply for the positions you believe may be a fit. If you are not an immediate fit, we will also keep your resume in our database for future opportunities.

Average salary estimate

$100000 / YEARLY (est.)

min

max

$80000K

$120000K

If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.

What You Should Know About SPLUNK Engineer/ Architect (S-NET), Abile Group

Join Abile Group as a Splunk Engineer/Architect, where you'll be at the forefront of enhancing cybersecurity for the Intelligence Community! Located in Annapolis Junction, this opportunity is ideal for skilled professionals who are passionate about implementing and operating advanced software security techniques. As a Splunk Engineer/Architect, you will be responsible for a variety of exciting tasks, including performing ongoing security testing and code review, troubleshooting issues, and providing innovative engineering designs for new software solutions aimed at mitigating security vulnerabilities. Your expertise will be essential in designing, implementing, and maintaining SIEM and SOAR solutions. You'll also be creating dynamic Splunk dashboards that monitor data from various sources to identify anomalous activities effectively. With your strong communication and collaboration skills, you'll also have the chance to consult with team members on secure coding practices. If you have a knack for tackling complex problems with a keen attention to detail and a desire to develop your skills within a supportive environment, we would love to hear from you. Join us at Abile Group, where your contributions will be valued and your career will flourish!

Frequently Asked Questions (FAQs) for SPLUNK Engineer/ Architect (S-NET) Role at Abile Group

What are the key responsibilities of a Splunk Engineer/Architect at Abile Group?

As a Splunk Engineer/Architect at Abile Group, your primary responsibilities will include implementing advanced software security techniques, performing ongoing security testing, troubleshooting and debugging issues, and providing engineering designs for new software solutions. You will also maintain SIEM applications, develop Splunk dashboards, and consult with team members on secure coding practices.