environments including user access, network design, and cost analysis. Collaborate with multiple vendors and customer organizations to support federal intelligence initiatives. Build monitoring and logging solutions using tools like Splunk, Tenable, and CloudTrail. Maintain and optimize environments running technologies such as Kubernetes, Hadoop, Spark, Jupyter, and RedShift. Implement secure authentication systems using FreeIPA, Active Directory, and domain services. Manage and More ❯
best practices Deep knowledge and skill with database (SQL Server, MySQL, PostgreSQL, or Oracle) systems including data architecting for enterprise use cases. Experience with data collection tools (ELK Stack, Splunk) for setup, configuration, and utilization for analysis, monitoring, and various other data repository use cases. Strong experience with Infrastructure as Code (IaC) languages with advanced/expert use (Terraform, Ansible More ❯
platforms (Amazon Web Services, Microsoft Azure) DevOps automation tools (Ansible, Chef, Puppet) Source control and Agile development tools (Git, Maven, Jenkins, Bitbucket, Jira, Confluence) Analytics and search engines (Elasticsearch, Splunk, Apache Solr) Excellent communication skills (written and verbal) Experience as a member of an agile software development team Knowledge of software design patterns Proficiency with MS Office Products (Word, Excel More ❯
platforms (Amazon Web Services, Microsoft Azure) DevOps automation tools (Ansible, Chef, Puppet) Source control and Agile development tools (Git, Maven, Jenkins, Bitbucket, Jira, Confluence) Analytics and search engines (Elasticsearch, Splunk, Apache Solr) Excellent communication skills (written and verbal) Experience as a member of an agile software development team Knowledge of software design patterns Proficiency with MS Office Products (Word, Excel More ❯
strategic planning, concept of operations, performance attributes, system architecture and design, evolving methodologies, and statutory and regulatory requirements Experience with Security Information and Event Management ( SIEM ) systems such as Splunk, Elastic, Logstash, and Kibana Experience with data broker technologies such as Cribl or Confluent, operating systems security events such as Windows or Linux, and networking protocols such as TCP/ More ❯
Red Hat OpenStack, OpenShift, and Satellite Experience working with container technologies to include Docker, Podman, or Kubernetes tools Experience implementing and leveraging system monitoring tools, to include log aggregation (Splunk), and data gathering (Nagios, Sensu, etc.) You have experience in designing, developing, and integrating a complete satellite ground system to include infrastructure, processing frameworks, and software components. You have familiarity More ❯
Reston, Virginia, United States Hybrid / WFH Options
CGI
Docker, and artifact repositories. Proficient in at least one programming or scripting languagePython, Java, Node.js, Bash, or PowerShell are all great. Familiar with monitoring and observability tools like CloudWatch, Splunk, Dynatrace, or OpenTelemetry. Understands and applies security best practices, including IAM, RBAC, and vulnerability management. Experience designing and supporting microservices and APIs, with a focus on resilience and fault tolerance. More ❯
Domain Controller, Red Hat IdM, Keycloak, Multi-Factor Authentication • Contrast, JFrog Xray • End Point Protection (includes virus scanning) • McAfee (DISA HBSS), Carbon Black • Audit Logs • VMWare vRealize Operations (vROps), Splunk, ArcSight • STEM Degree Salary Range: $85,400.00 - $128,000.00Salary Range 2: $105,400.00 - $158,000.00 The above salary range represents a general guideline; however, Northrop Grumman considers a number of More ❯
Job Description: AT&T Global Public Sector is a trusted provider of secure, IP enabled, cloud-based, network solutions and professional services to the Federal Government. We are dedicated to recruiting, developing and empowering a diverse, high-performing workforce that More ❯
Splunk Engineer - TS/SCI with CI Poly Chantilly, Va A Senior Engineer is an individual who operates independently without direct supervision who is responsible for leading the delivery of an engagement with the sole intent of providing immense value for customers. To be successful in this role, a Senior Engineer will be expected to not only maintain a mastery … opportunities with the account team across services. What we're looking for (Required) Active TS/SCI clearance with CI Poly required. Security Certification (i.e, Security+, CISSP, etc) required. Splunk Certified Admin required. Bachelor's degree in a related area or at least 8 years of related work experience. Experience with, or interest in, learning, deploying, and maintaining Splunk SOAR. … Experience operating in classified environments. Robust understanding of identity, SIEM, cybersecurity, and infrastructure concepts. Strong Linux and scripting (Python, Ansible, Teraform, JSON, others.) experience. Ability to troubleshoot Splunk instances. Create custom Splunk reports, dashboards, and content per customer requirements. Experience working in a Security Operations Center (SOC) Strong understanding of governance and compliance, specifically with FAR, DFARs, CUI and CMMC. More ❯
dedication to harnessing the power of diversity, knowledge, innovation, and commitment. What we are looking for August Schell is seeking a candidate for an exciting opportunity to use their Splunk talents and experience in our Splunk Cleared Engineer role. This candidate will ensure the smooth deployment of their enterprise technologies to customers. The ideal candidate for this role has sharp … Splunk knowledge and keen problem-solving skills who can quickly analyze, identify and resolve complicated issues, as well as bring to light other solutions not previously considered. August Schell Splunk engineers are self-motivated, have an insatiable thirst to learn new technologies, thrive in a fast-paced environment and drive for customer success. This position will be a combination of … work in the DMV area and provide the opportunity to travel in the United States. What you will do - Drive complex deployments of Splunk while working side-by-side with our customers. - Solve unique challenges across a variety of use cases. - Collaborate across customer organizations to identify limiting parameters and determine the best way to overcome environmental challenges. - Leverage your More ❯
Herndon, Virginia, United States Hybrid / WFH Options
Optiv+ClearShark
Identify and communicate cross-sell and up-sell opportunities with the account team across services. What we're looking for Active TS/SCI clearance with CI poly required. Splunk Core certification required. Splunk IT Service Intelligence (ITSI) certification preferred. Splunk Certified Architect/Consultant preferred. Experience with, or interest in, learning, deploying, and maintaining Splunk SOAR. Security Certification (i.e … least 8 years of related work experience. Robust understanding of identity, SIEM, cybersecurity, and infrastructure concepts. Strong Linux and scripting (Python, Ansible, Teraform, JSON, others.) experience. Ability to troubleshoot Splunk instances. Create custom Splunk reports, dashboards, and content per customer requirements. Experience working in a Security Operations Center (SOC) Strong understanding of governance and compliance, specifically with FAR, DFARs, CUI More ❯
Herndon, Virginia, United States Hybrid / WFH Options
Optiv+ClearShark
A Splunk SOAR Engineer is an individual who can operate independently and will be entrusted with delivering success for Optiv + ClearShark's customers to achieve predetermined goals aligned with a statement of work. To be successful in this role, a Level I/III Engineer will be expected to specialize in a capability aligned with Optiv + ClearShark's … security operations center tier I and tier II incident response incidents. Automate issue resolution and compliance reporting to lower time on detection, time on mitigation for security organizations. Integrate Splunk Mission Control, Splunk Security Orchestration, Automation Response (SOAR), and/or other customer approved security product applications utilizing Enterprise Security. Utilize data thresholds, trend-based conditions and behavioral pattern recognition. … sell and up-sell opportunities with the account team across services. What we're looking for Active TS/SCI clearance with Full Scope polygraph required. Proven experience with Splunk SOAR (formerly Phantom) or similar security orchestration, automation, and response (SOAR) platforms. Strong background in developing and maintaining automation playbooks and scripts. Security Certification (i.e, Security+, CISSP, etc) required. Experience More ❯
Job Number: R Splunk Administrator The Opportunity: Are you looking for an opportunity to combine your te chn ical skills with big picture thi nk ing to make an impact with Booz Allen Hamilton? You understand your customer's environment and how to develop the right systems for their mission. Your ability to translate real-world needs into te chn More ❯
of our enterprise network infrastructure. This includes utilizing tools such as Nagios for network monitoring, Cisco Prime for network management, Cisco Identity Services Engine (ISE) for access control, and Splunk for network logging and analysis. The ideal candidate will have a deep understanding of network technologies and security protocols, along with hands-on experience with the aforementioned tools to ensure … tools to provide centralized authentication, authorization, and accounting (AAA). • Troubleshoot and optimize Cisco ISE configurations to ensure smooth and secure access for end-users and devices. • Develop custom Splunk dashboards and alerts for network-related incidents, performance issues, and security events. • Maintain up-to-date documentation of network configurations, processes, troubleshooting procedures, and incident resolutions. • Identify areas of the … Cisco Prime for network management, configuration, and automation. • In-depth knowledge of Cisco Identity Services Engine (ISE) for access control, network security, and user/device authentication. • Proficiency with Splunk for network log management, analysis, and creating custom dashboards and reports. • Advanced knowledge of networking protocols (e.g., OSPF, BGP, MPLS, VLANs, QoS, IPSec). • Hands-on experience with Cisco network More ❯
troubleshoot, and maintain all security platforms and their associated software, such as firewalls (Security Groups), intrusion detection/intrusion prevention, anti-virus/malware (HBSS), cryptography systems (Vormetric), SIEM (Splunk), and MDM; Formulate systems and methodologies as well as respond to security related events and assist in remediation efforts of cyber security incidents (system and/or network breaches, malware … and monitor log analysis for our managed services offerings, to ensure customer policy and security requirements are met. Basic Qualifications: Expert with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7; Expert with implementing and managing \SIEM (e.g., Splunk), end-point security (IDS/IPS and HBSS); Expert knowledge of networking protocols, such as TCP/IP More ❯
troubleshoot, and maintain all security platforms and their associated software, such as firewalls (Security Groups), intrusion detection/intrusion prevention, anti-virus/malware (HBSS), cryptography systems (Vormetric), SIEM (Splunk), and MDM Formulate systems and methodologies as well as respond to security related events and assist in remediation efforts of cyber security incidents (system and/or network breaches, malware … and monitor log analysis for our managed services offerings, to ensure customer policy and security requirements are met Basic Qualifications: Expert with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7 Expert with implementing and managing SIEM (e.g., Splunk), end-point security (IDS/IPS and HBSS) Expert knowledge of networking protocols, such as TCP/IP More ❯
troubleshoot, and maintain all security platforms and their associated software, such as firewalls (Security Groups), intrusion detection/intrusion prevention, anti-virus/malware (HBSS), cryptography systems (Vormetric), SIEM (Splunk), and MDM Formulate systems and methodologies as well as respond to security related events and assist in remediation efforts of cyber security incidents (system and/or network breaches, malware … and monitor log analysis for our managed services offerings, to ensure customer policy and security requirements are met Basic Qualifications Expert with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7 Expert with implementing and managing \SIEM (e.g., Splunk), end-point security (IDS/IPS and HBSS) Expert knowledge of networking protocols, such as TCP/IP More ❯
systems and sensitive data. Monitor network traffic, system logs, and security alerts to identify potential threats, anomalies, or suspicious activities. Use Security Information and Event Management (SIEM) tools (e.g., Splunk, Elastic) to correlate and analyze security events. Investigate and escalate security incidents, including malware infections, phishing attempts, and unauthorized access. Respond to and mitigate cybersecurity incidents following established incident response … prior relevant experience in order to operate within the scope contemplated by the level. Experience may be considered in lieu of degree. Proficiency with cybersecurity tools, such as SIEM (Splunk, EDR/XDR, etc.). Understanding of the Incident Response lifecycle and Attack lifecycle (e.g., Cyber Kill Chain/ATT&CK) Understanding of OS (Windows/Linux) operations and system More ❯
e.g., CloudFormation, Terraform, Ansible, Python, Bash) 3) DevOps pipelines, CI/CD tooling, and containerization (e.g., GitLab, Jenkins, Docker, Kubernetes) 4) Monitoring and observability in production environments (e.g., CloudWatch, Splunk, Prometheus) 5) Security, cost optimization, and disaster recovery in cloud environments Ideal Experience: 1) Experience in managing live production workloads in AWS 5) Experience deploying and managing containerized applications, with More ❯
Burke, Virginia, United States Hybrid / WFH Options
ALTA IT Services
as AWS GovCloud or Azure Government. Preferred Qualifications: • Elastic Certified Engineer or Elastic Certified Analyst. • Experience with Elasticsearch Service (Elastic Cloud). • Familiarity with other observability tools (e.g., Grafana, Splunk, Prometheus). • Experience with NIST RMF, DoD 8570 compliance, or CDM initiatives. • Prior experience supporting DoD, IC, or civilian agencies. More ❯
Reston, Virginia, United States Hybrid / WFH Options
RedKey Solutions
process. • Coordinate and monitor log analysis for managed services to ensure compliance with customer policies and security requirements. Basic Qualifications: • Expertise with at least one of the following tools: Splunk, HBSS/McAfee, Rapid7. • Proficiency in implementing and managing SIEM, end-point security (IDS/IPS, HBSS). • Strong knowledge of networking protocols (TCP/IP, LAN/WAN concepts More ❯
network security tools (e.g., Metasploit, Netcat, Nmap, iptables, BurpSuite, IDS, SELinux, etc.). • Experience monitoring threats via a SIEM console such as Solarwinds, Cisco Network Analysis Module (LogRhythm/Splunk preferred). • Experience performing analysis of log files from a variety of sources, to include individual host logs, network traffic logs, firewall logs and IPS logs. • Well-versed in leveraging More ❯
Salt, or Ansible in production environments. Experience with revision control source code repositories (Git, SVN, Mercurial, Perforce). Experience working with and delivering using Agile practices. Monitoring experience with Splunk, Elk, Kibana, Grafana, etc. Extensive knowledge of Cloud computing i.e. AWS, GovCloud, or similar. Experience with infrastructure development, or development and operations. Experience with automated testing. Strong interpersonal skills and More ❯
