Splunk Administrator
Gray Tier’s Defense Group is seeking a Splunk Administrator to install and maintain Splunk infrastructure, gather requirements from customers, onboard data, and assist end users with search, dashboards, reports, and knowledge objects in support of the Compartmented Enterprise Services Office (CESO) NOC.
With the CESO program, the Defense Information System Agency (DISA) is looking to transform the existing Secure Web Services (SWS) environment, which provides secure information sharing to the community, into a more mature service offering to meet the DoD and intelligence communities. As part of this mission, our team will manage the commercial cloud migration and disestablishment of legacy systems, fully automate the continuous development & continuous integration environment, fourth estate consolidation, professionalize services – ITIL/DevSecOps based processes, improve the customer experience 1st call resolution, and achieve development of a service catalog for Defense Working Capital Fund (DWCF) Model.
Primary Responsibilities
- Administer Splunk in Windows and Linux environments
- Work with existing and custom Splunk applications and add-ons to fulfill customer needs
- Provide operations and maintenance support for a distributed Splunk environment consisting of heavy forwarders, indexers, and search head servers, spanning security, performance, and operational roles
- Editing and maintaining Splunk configuration files and apps
- Onboard data to Splunk via forwarder, scripted inputs, TCP/UDP, and modular inputs from a variety of sources.
- Provider operational support for Splunk Universal Forwarder on Linux and Windows endpoints.
- Manage, and support automation solutions for Splunk deployment and orchestration in on-premises and cloud environments
Basic Qualifications
- Bachelor’s degree in Computer Science or IT and 4+ years of experience; Additional experience may substitute for degree
- Current Splunk Enterprise Certified Admin certification
- Ability to work in a 24/7 operation.
- Candidate must possess an active DoD TS/SCI security clearance and be able to obtain and maintain CI Poly.
- IAT Level II Baseline Certification (e.g. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP)
Preferred Qualifications
- Prior experience with DISA and DISA’s support to mission partners
- TS/SCI w/CI Poly Preferred
Top Skills
What We Do
Gray Tier Technolgies is a privately held company providing full cyclic cybersecurity services and products. Gray Tier is headquartered in Alexandria, VA with offices in Orlando, FL and Denver Co. Our vision is to be the premier security services and solutions provider for our Enterprise, Government, and military customers. To prepare our customers to defend their systems against global cyber threats. By leveraging our many years of defending mission-critical systems for the US military we are here to help you safeguard your corporate data from attackers. Gray Tier’s experts use techniques and tactics from world-wide cyber threats to provide a realistic evaluation of your network defenses against today’s adversaries.
