Splunk Administrator

Ready to Ignite your career and work alongside some of the most innovative and brightest professionals in technology? Join us and unleash your potential working in a dynamic environment enhancing and securing enterprise systems and applications.

You will perform the following:

• Architecture and Design – you will be responsible for establishing the architecture and design of a scalable Splunk Environment for the operational environment to include but not limited to: distributed Splunk installation across multiple sites, multi-site index clustering, search head peers, and Universal/Heavy Forwarder deployments.
• Implementation, Operations, and Maintenance – you will be responsible for deploying and maintaining a distributed Splunk installation running on both Microsoft Windows and Linux operating systems; configuration of the Splunk clusters, deployment servers, and Search Head peer configurations; and troubleshooting, resolving incidents/errors, and running diagnostics to identify root cause analysis.
• Event Log Management – You will be responsible for identifying and implementing new data sources to connect to the Splunk environment and implementing index-time and search-time data processing, scripted inputs, database connections, and Syslog data management.
• Custom Splunk Application Development – you will be responsible for the development of Splunk applications that provide: Base and post-process searches, alerts, dashboards with custom JavaScript visualizations, custom views and configurations, and reports
• Security and Compliance – you will be responsible for managing SSL certificates for all Splunk traffic, including creation, management, and renewal
• Reporting – you will be responsible for submitting monthly status reports that identify work that has been accomplished, planned work and activities, and any issues/risk that is blocking progress.

• US citizenship and either an active Public Trust clearance or ability to obtain a High Public Trust (T4 BI) level.
• Two+ years hands on experience architecting, configuring, deploying, and customizing an enterprise Splunk environment.
• Splunk certified Administrator
• Splunk certified Power User
• Experience leading the design and architecture of a scalable Splunk environment to support the operational and security needs of a federated environment.
• Experience implementing and maintaining a distributed Splunk installation to include multi-site index clustering, multiple Search head peers, universal and heavy forwarder deployment, cluster master configuration, deployment server management in both Microsoft Windows and a Linux environment.
• Expertise in event log management and collection including Adding new data sources, complex data parsing using regular expressions, index-time and search-time data processing, scripted inputs, database connections, and syslog data management.
• Experience creating custom Splunk apps to include Base and post process searches, alerts, dashboards with custom JavaScript visualizations, custom views and configurations, and reports.
• Experience designing and implementing knowledge object and access control standards across an entire distributed Splunk environment.
• Experience running Splunk diagnostics and resolving errors in any part of the Splunk stack.
• Troubleshooting using btool.
• SSL Certificate creation, management, and renewal for all Splunk traffic.
• Advanced use of Splunk search language.
• Experience planning, implementing, and configuring Splunk premium apps including Splunk Enterprise Security (ES), Splunk app for Exchange, Splunk User Behavior Analytics.
• Experience correlating multiple data sources to improve visibility, incident response, and understanding of complex events within the environment.
• Experience migrating existing operational processes into Splunk to achieve automation and higher efficiency.
• Experience writing Splunk Standard Operating Procedures (SOP).
• Experience with computer programming languages such as Powershell, Python, Visual Basic, C++, etc.

• 401(k) with matching and 100% Vested
• Health Insurance - 3 plans to select from
• Dental insurance
• Vision Insurance
• Health savings account
• Life insurance
• Short Term Disability
• Long Term Disability
• AD&D
• Paid time off
• Professional development assistance
• Training
• Tuition reimbursement
• Flexible schedule
• Flexible spending account
• Referral program
• Paid Legal Plan
• and more....

Ignite IT is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, Veteran status, sexual orientation, or other protected characteristic. In accordance with EO 13665 Final Rule, Ignite IT will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Applicants selected must be able to possess and maintain a government clearance

US CITIZENSHIP REQUIRED'