Gray Tier Technologies

Splunk Architect/Engineer Subject Matter Expert

Full-Time in Lanham, MD - Senior

Gray Tier is seeking a Splunk Architect/Engineer SME to support our Internal Revenue Service (IRS) client in New Carrollton MD to provide cyber-focused Splunk subject matter expertise in supporting security enablement and accountability through Splunk architecture, development, dashboarding and data visualization. The Splunk Enterprise SME will work closely with government personnel and other professionals in a team environment. The selected candidate must be flexible and available to attend meetings or perform other activities in New Carrollton as required.

job responsibilities/duties

The Splunk Architect/Engineer SME will have the following responsibilities:

  • Provide technical expertise in enhancement of the Splunk architecture to meet user demand.
  • Operate and maintain infrastructure and Splunk application monitoring tools as part of the IRS Cybersecurity, network, and application audit and monitoring program
  • Administer the Splunk application infrastructure, including implementing the access control, data segmentation, and general Splunk infrastructure
  • Build design documentation for deploying advanced network access control given a baseline understanding of current tools deployed and the implementation status of each tool.
  • Provide Splunk support for design, architecture, development, unit test, deployment, installation, configuration, integration, operation, and maintenance
  • Support the expansion of both the cloud and on-prem environments to include architecting search head, indexer, and forwarder instances needed to service the expanding enterprise demand expected on the Splunk System as cross organizational use cases emerge
  • Perform on-boarding of new data sources in Splunk through analysis of anomalies and trends.
  • Build and integrate contextual data into notable events and provide reports on the data usage.
  • Perform tuning of data streams, use cases, and data onboarding and normalization.
  • Deploy and maintain dashboards, reports, alerts, as well as Splunk applications, technology add-ons, and Common Information Model.
  • Work to solve unique problems across a variety of use cases within Splunk.
  • Provide technical and administrative direction relative to the problem.
  • Share best practices and create innovative solutions to push user adoption and maximize the value of Splunk.
  • Recommend innovative solutions to management and key stakeholders.
  • Provide insights with respect to the availability and applicability of new products and features.

QUALIFICATIONS:

  • Bachelor's Degree from an accredited college or university required, an additional four (4) years of related work experience can substitute for a degree
  • Possess advanced Splunk certifications
  • Experience in implementing Splunk applications, tools, and add-ons, including ES, ITSI, Qmulos and UBA
  • At least three or more years of professional working experience with Splunk analytics and experience in the design, development, integration, testing, and implementation of large-scale analytical data sets in Splunk.
  • Proven ability to work on and with teams comprised of the primary client and other client stakeholders dispersed across geographical sites.
  • Knowledge of federal information security policies, standards, procedures, directives, and risk management processes.
  • Excellent verbal and written communication skills.
  • Ability to work in a fast-paced, dynamic environment.
  • Ability to work well independently or in a team setting.

Physical Requirements:

  • Work is performed in a general office environment.

Additional Requirements as per contract/client:

  • Candidates must meet requirements to obtain and maintain an IRS Minimum Background Investigation (MBI) clearance (active IRS Moderate Risk MBI clearance is a plus).
  • Candidates must be a US Citizen or a Legal Permanent Resident (Green Card status) for 3 years and be Federal Tax compliant.