ManTech International Corporation.
Quantico, VA, United States
Nov 18, 2020
Mar 03, 2021
Secure our Nation, Ignite your Future
ManTech is seeking a Splunk Engineer to join our MCIA team supporting our growing Marine Corps programs in Quantico, VA.
In this role the successful candidate will provide Splunk Enterprise, Enterprise Security and Phantom engineering support to include but not limited to instance administration, data ingestion configuration, dashboard and visualization creation, and Universal Forwarder management across all MCISRE Splunk instances.
ManTech International Corporation provides innovative engineering and systems integration services that help our customers solve their toughest, most intractable problems. National defense and homeland security clients depend on our rapid, cost-effective development of adaptable, interoperable, integrated solutions that provide high performance in quick-response scenarios.
This position requires an active DoD TS/SCI clearance
Manage existing Splunk and equivalent hardware infrastructure and oversee production support in a clustered environment.
Work with other technology support areas to bring new datasets into the Splunk Environment.
Work with other Engineering teams to ensure complete asset identification and coverage across all network enclaves.
Work with key stakeholders to draft and develop Phantom Playbooks in an effort to automate certain tasks.
Support migration plan to shift aspects of the deployment from on-prem to a Cloud environment.
Assist with the development of advanced reports and dashboards to meet the requirements of key stakeholders.
Provide onboarding, configuration and optimization of the Splunk instances.
Provide expertise in the deployment, configuration and operations the Splunk instances.
Perform advanced search and reporting as required by key stakeholders.
Troubleshoot and debug issues as they occur within the Splunk deployments.
Work to ensure all system SOPs are updated accordingly.
Provided support to other key stakeholders during network inquiries and incident response reporting.
Other duties as required
Solid understanding of UNIX/Linux operating system administration (3-5 years).
Solid understanding of Splunk Engineering best practices (Splunk Enterprise Certified Admin or Equivalent training).
DoD 8570 Certified IAT Tier III and IAM Tier II.
Solid understanding of Cyber Threat Analysis Tools, Tactics, and Techniques (3-5 years).
Knowledge of RegEx and SPL.
Solid understanding of Network Infrastructure and Security Requirements.
Splunk Enterprise Certified Architect or Equivalent training.
Demonstrated knowledge of Python, PowerShell, and other scripting languages.
Previous experience creating Phantom Playbooks for automated Cyber Response capabilities.
Must be able to remain in a stationary position 50%
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.
If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click email@example.com and provide your name and contact information.
ManTech International Corporation.
Website : http://www.mantech.com/