Splunk Engineer - Active TS/SCI Required

Overview You will work with an expert team focused on implementing and operating next-generation security solutions for government and commercial clients. You\'ll use Splunk and integrate it with other state-of-the-art tools like HBSS, Enterprise Security Manager (ESM), Network Security Manager (NSM), NetFlow, and/or Intrusion Detection Systems (IDS) to monitor, detect, and analyze threats. You\'ll perform hands-on evaluation, implementation, and operation of leading security cyber defense tools and technologies and apply in-depth defense strategies for large and complex networks to rapidly identify vulnerabilities and threats, prioritizing response actions, including developing effective countermeasures. You\'ll support risk management and security compliance of specified cyber security tools. You\'ll apply thought leadership to solving complex security challenges in a highly collaborative and innovative work environment. Responsibilities Collaborate with an expert team to implement and operate next-generation security solutions for government and commercial clients. Use Splunk and integrate it with tools like HBSS, ESM, NSM, NetFlow, and IDS to monitor, detect, and analyze threats. Perform hands-on evaluation, implementation, and operation of leading cyber defense tools and technologies and apply defense strategies for large, complex networks to rapidly identify vulnerabilities and threats, prioritizing response actions and developing effective countermeasures. Support risk management and security compliance of specified cyber security tools. Apply thought leadership to solving complex security challenges in a collaborative and innovative work environment. Qualifications 3+ years of experience utilizing Splunk Enterprise. Experience deploying, configuring, and performing functional testing and data validation in a Splunk environment. Experience with Splunk administration, including installation, configuration, monitoring system performance and availability, upgrades, and troubleshooting in Windows and Linux Server environments. Experience creating custom dashboards, writing queries, generating reports, and setting up alerts and notifications. Familiarity with DoD Risk Management Framework. Top Secret/SCI clearance with the ability to obtain a Counter-Intelligence polygraph. Educational requirements with IT project experience: HS diploma or GED with 7+ years, Associate\'s degree with 5+ years, or Bachelor\'s degree with 3+ years of experience in supporting IT projects and activities. DoD 8570 IAT Level II Certification, including CCNA-Security, CySA+, GICSP, GSEC, Security+ CE, CND, or SSCP. Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification, including CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND Certification prior to start date. Optional Qualifications Ability to ingest and parse logs within Splunk. Experience with fields abstraction. Experience with data modeling using Splunk. Experience with workflows and drilldown queries. Experience administering Splunk in distributed deployments. Experience with site surveys, data gathering, and research/analysis regarding deploying and implementing security tools. Splunk Certified Power User or other advanced Splunk Certification. Experience with DevSecOps and Elasticsearch, Logstash & Kibana (ELK). Excellent oral and written communication skills, including presenting complex ideas to clients and internal staff. Excellent problem-solving skills. Benefits Essential Network Security (ENS) Solutions, LLC is a service-disabled veteran owned, highly regarded IT consulting and management firm. ENS consults for the Department of Defense (DoD) and Intelligence Community (IC) providing innovative solutions in the core competency area of Identity, Credential and Access Management (ICAM), Software Development, Cyber and Network Security, System Engineering, Program/Project Management, IT support, Solutions, and Services that yield enduring results. Our strong technical and management experts have been able to maintain a standard of excellence in their relationships while delivering innovative, scalable and collaborative infrastructure to our clients. Why ENS? Free Platinum-Level Medical/Dental/Vision coverage, 100% paid for by ENS 401k Contribution from Day 1 PTO + 11 Paid Federal Holidays Long & Short Term Disability Insurance Group Term Life Insurance Tuition, Certification & Professional Development Assistance Workers' Compensation Relocation Assistance #J-18808-Ljbffr ENS Solutions, LLC