Splunk Administrator

Overview ActioNet has an immediate opportunity for a n Splunk Administrator requiring a Public Trust - Level 5 Investigation , located in Washington, DC . ActioNet is an IT service provider and solutions integrator headquartered in Vienna, VA that works with the Federal Government and Department of Defense We are seeking an experienced Splunk Administrator to manage and maintain a distributed Splunk installation. The ideal candidate will have a strong background in event log management, custom app creation, and diagnostics, with hands-on expertise in deploying and optimizing Splunk in both Microsoft Windows and Linux environments. The role will involve resolving technical issues, improving system performance, and ensuring the integrity and efficiency of the Splunk environment. Roles and Responsibilities Architect, configure, deploy, and customize an enterprise-level Splunk environment. Manage multi-site index clustering, search head peers, and universal and heavy forwarder deployments. Implement and maintain distributed Splunk installations, including cluster master configuration and deployment server management. Add new data sources and perform complex data parsing, including regular expressions, index-time, and search-time processing. Design and implement knowledge object and access control standards across the Splunk environment. Troubleshoot and resolve errors in the Splunk stack, utilizing tools like btool . Manage SSL certificates for Splunk traffic, including creation, renewal, and configuration. Leverage advanced Splunk search language to query and correlate data from multiple sources. Plan and implement Splunk premium apps, such as Splunk ES, app for Exchange, and User Behavior Analytics. Migrate existing operational processes to Splunk for automation and efficiency. Document procedures and create Standard Operating Procedures (SOPs) for Splunk operations. Collaborate with the security team to improve visibility and incident response through effective Splunk integration. Qualifications 2+ years of hands-on experience in designing, configuring, and deploying Splunk in an enterprise environment. Splunk Certified Administrator and Power User. Experience with multi-site index clustering, search head peers, and forwarder deployments. Expertise in event log management, data parsing, and syslog data management. Skilled in creating custom Splunk apps, dashboards, and reports. Experience in managing SSL certificates for Splunk traffic. Proficient in using Splunk’s search language and troubleshooting tools like btool . Experience with programming languages such as PowerShell, Python, Visual Basic, or C++. Strong understanding of security controls, particularly in a federated environment. The position aligns with 8140 compliance standards, ensuring the candidate has the necessary expertise in security assessment and authorization, federal information processing standards (FIPS), and risk management frameworks (RMF). ActioNet is a CMMI-DEV Level 4, CMMI-SVC Level 4, ISO 20000, ISO 27001, ISO 9001, HDI-certified, woman-owned IT Solutions Provider with strong qualifications and expertise in Agile Software Engineering, Cloud Solutions, Cyber Security, and IT Managed Services. With 25+ years of stellar past performance, ActioNet is the premier Trusted Innogrator ! Advanced and Managed IT Services Agile Software Development DevSecOps Cybersecurity Health IT

C4ISR & SIGINT

Data Center Engineering & Operations Why ActioNet? At ActioNet, our Passion for Quality is at the heart of everything we do: Commitment to Employees : We are committed to making ActioNet a great place to work and continue to invest in our ActioNeters . Commitment to Customers : We are committed to our customers by driving and sustaining Service Delivery Excellence. Commitment to Community : We are committed to giving back to our community, helping others, and making the world a better place for our next generation. ActioNet is proud to be named a Top Workplace for the eleventh year in a row (2014 - 2024). We have a 98% customer retention rate. We are passionate about the inspirational missions of our customers, and we entrust our employees and teams to deliver exceptional performance to enable the safety, security, health, and well-being of our nation. What's in It For You? As an ActioNeter, you get to be part of an exceptional team and a corporate culture that nurtures mutual success for our customers, employees, and communities. We give you the tools to be successful; all you need to do is bring your best ideas, your energy, and a desire to develop your skills, experience, and career. Are you ready to make a difference? ActioNet is an equal-opportunity employer and values diversity at our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Benefits Full-Time Employees are eligible to participate in our ActioNet’s Benefits Program: Medical Insurance Vision Insurance Life and AD&D Insurance 401(k) Savings Plan Education and Professional Training Flexible Spending Accounts (FSA) Employee Referral and Merit Recognition Programs Employee Assistance and Identity Theft Protection ActioNet Core Value #1 - Instill Integrity In Everything We Do #J-18808-Ljbffr ActioNet