Splunk Product Domain Expert in Fort Belvoir, VA at General Dynamics Information Technology

Date Posted: 11/16/2019

Job Snapshot

  • Employee Type:
  • Job Type:
  • Experience:
    Not Specified
  • Date Posted:
  • Job ID:

Job Description

GDIT is seeking a Splunk Product Domain Expert for the PEO EIS contract in Fort Belvoir, VA. Candidate will be supporting the Program Management Support Services to the U.S. Army Program Executive Office Enterprise Information Systems, Chief Information Officer Office & Information Technology Systems Project Office.

Responsibilities include but are not limited to:

*        Act as a Splunk product domain expert.

*        Provides strategic support of and training for Splunk integration and deployment, configuration and maintenance

*        Responsible for the design and implementation of Splunk infrastructure, deployment, products, apps, reports, alerts, and dashboards.

*        Monitor Splunk internal logs to identify and resolve potential performance issue.

*        Troubleshoot technical issues to determine root cause and resolve or implement workaround as necessary.

*        Design, engineer, configure and administer Splunk content

*        Provide engineering support for Threat Intelligence, Security Operations, Incident Response and Inspection Services for the client.

*        Provide data ingestion, normalization and presentation focusing on confidentiality, integrity and availability of multi-sourced data for a >3TB/day event traffic flow, which is anticipated to grow to >10TB/day in the coming year.

*        Create customized dashboard panels for specific urgent requests regarding active threats.

*        Assist in the proper operation and performance of Splunk, loggers and connectors

*        Integrate data feeds (logs) into Splunk

*        Perform Content Development to properly identify data feeding SIEM's and correlation of events

*        Develop filters to assist in the identification of significant events

*        Provide recommendations and implement changes to optimize Splunk products in the customer environment

*        Write and develop custom scripts, programs as needed

*        Maintain Splunk systems internal documentation, including SOPs and design documents.

*        Assist in identifying use cases and data needs within assigned areas.

*        Help create/coordinate tasks for the Splunk team to meet mission-driven requirements.

*        Assist in creating the build-out for the client's Splunk CoE.

*        Mentor and guide team members in the accomplishment of the above. Requirements

Bachelor's Degree in Computer Science or a related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience

*        5-8 years of directly related experience in systems administration.

*       Splunk product expert.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.