Get new jobs for this search by email

Description The Junior Splunk Engineer plays a critical role in maintaining the security of the Department of Homeland Security (DHS). Working within the Customs and Border Protection (CBP) Security Operations Center (SOC), this position directly contributes to the prevention, identification, containment, and eradication of cyber threats targeting CBP networks. Edge security is paramount and encompasses local area networks/wide area networks (LAN/WAN), cloud services, security devices, servers, and workstations. The SOC ensures robust security across the CBP enterprise, collecting, investigating, and reporting any suspected or confirmed security breaches. Leidos is excited to welcome a Junior Splunk Engineer to our team, focused on supporting this essential cyber security program. The ideal candidate will engage in the full systems engineering lifecycle, including requirements analysis, design, development, implementation, integration, testing, and documentation. You will adhere to established best practices and operational workflows while collaborating effectively with various teams. Primary Responsibilities: Administer a large, distributed clustered Splunk environment comprising search heads, indexers, and various forwarders. Expertly recognize and onboard new data sources into Splunk, as well as build dashboards, searches, and reports. Proficiently navigate a Linux environment to edit and maintain Splunk configuration files and applications. Utilize automation tools like Ansible to streamline workflows. Collaborate with end-users to gather requirements, troubleshoot issues, and assist in creating effective Splunk queries and dashboards. Basic Qualifications: Bachelor's degree with 3-8 years of experience in IT. 3+ years in Linux, Splunk, Ansible, with app interface development or related Cybersecurity technologies. Understanding of Change & Configuration Management and experience using Git. Experience operating within a clustered Splunk environment, managing premium Splunk apps like Enterprise Security and ITSI. Strong analytical problem-solving abilities, particularly under pressure. Self-starter capable of independently managing tasks and priorities. Familiarity with cloud services such as AWS and Office365. Basic knowledge and usage of Regex. Experience with scripting languages like Python, Bash, Visual Basic, or PowerShell. Baseline security certification to meet DoD 8570 IAT II requirements, such as Security +. Understanding of networking principles and enterprise network design. Must be a U.S. Citizen. Certifications Required: Splunk Enterprise Security Certified Admin Splunk IT Service Intelligence Certified Admin Splunk Cloud Certified Admin Splunk SOAR Certified Automation Developer Splunk Certified Developer Splunk Enterprise Certified Admin Splunk Enterprise Certified Architect Splunk Core Certified Consultant Applicants must also clear a 5-year Background Investigation to join the program. Preferred Qualifications: Experience automating Splunk deployments and orchestration in a cloud environment. Familiarity with FISMA Systems requirements. Experience with tools like Confluence, JIRA, and ServiceNow. Possession of Splunk Certified Developer certification. Pay Range:

$85,150.00 - $153,925.00. This range is a general guideline and not a guarantee of compensation. Factors considered in extending an offer include responsibilities of the job, education, experience, skills, and internal equity.