This is a hybrid position allowing 50% remote work after a brief ramp-up period (first 2-3 weeks will be 100% onsite during on boarding, then time will be split 50/50 onsite/remote).
Primary Responsibilities:
- Design efficient and reusable reports and dashboards to integrate multiple mission applications’ health, performance and operational data systems into Splunk
- Direct and monitor reporting in Splunk dashboards to reflect compliance status of DISA JSP with all directed information assurance vulnerability alerts and bulletins, Computer Tasking Orders, and other compulsory cyber security directives.
- Create front-end automated data visualization services using Splunk
- Create viewable Splunk dashboards to provide visibility into ingested log data
- Create alerts that trigger/activate on configured setting to deploy or sends a note/email/attachments to a particulate destination email or groups
- Create security rules (alerts) that trigger on anomalous activities or threat detections
- Utilize Qmulos, Splunk, Assured Compliance Assessment Solution (ACAS), Host Based Security System (HBSS), and Tanium to assess/validate/monitor the security controls and security posture of the enterprise and system level in order to support on-going authorization.
Basic Qualifications:
- Bachelor's degree and 8+ years of prior relevant experience. Additional experience may be considered in lieu of degree.
- DoD 8570 IAM II certification
- Understanding of Splunk's KV Stores
- Splunk Core Certified Power User. Equivalent certification or higher
- Excellent written and oral communications skills and be able to appropriately present highly technical material to both technical and non-technical audiences
- An active Secret security clearance (with ability to hold TS/SCI) is required prior to start.
Preferred Qualifications:
- Prior experience as a network intrusion analyst or Security Operations Center analyst.
- Experience configuring and maintaining the tool in a multi-tenant environment
- Experience with one or more Security tools:
- Qmulos
- ACAS
- HBSS
- Tanium
Top Skills
What We Do
Gray Tier Technolgies is a privately held company providing full cyclic cybersecurity services and products. Gray Tier is headquartered in Alexandria, VA with offices in Orlando, FL and Denver Co. Our vision is to be the premier security services and solutions provider for our Enterprise, Government, and military customers. To prepare our customers to defend their systems against global cyber threats. By leveraging our many years of defending mission-critical systems for the US military we are here to help you safeguard your corporate data from attackers. Gray Tier’s experts use techniques and tactics from world-wide cyber threats to provide a realistic evaluation of your network defenses against today’s adversaries.
