Duration – 4+ Months

*local candidates strongly preferred

*mgr may elect to conduct an initial phone screen for candidatesoutside VA. However, ALL candidates will be required to attend a personalinterview, NO exceptions. If your candidate cannot attend a personal interview,please do not submit them.

We are looking for an experienced Splunk architect to lead theimplementation of Splunk for the Enterprise Logging & Analytics project.The ideal candidate will be Splunk Certified and have prior experienceimplementing an operational Splunk environment.

-Review, recommend changes and improve upon the current SplunkEnterprise deployment to include indexer and search head architecture

-Partner with IT stakeholders to develop requirements and createexecution plan to utilize Splunk for centralized enterprise log analysis

-Set up forwarders, logging inputs and Splunk apps on a variety ofsystem sources (Linux, Windows, Weblogic, Tomcat, Oracle, SQL Server)

-Create alerts and monitoring for key security and application events

-Develop dashboards and reports for monitoring of real-time log data

-Train users on utilizing Splunk and performing routine activities, toinclude creating dashboards and alerts

-Advise regarding prioritization of data collection and data retentionto achieve maximum results for security and event monitoring.

-Assist with development of Splunk system lifecycle process forcontinuous improvement and expansion of enterprise logging and data collection

-Provide advice and consulting to identity opportunities for additionalSplunk use cases within the enterprise environment

Required Experience:

-6+ years of experience in an enterprise IT role

-2+ years of experience as a Splunk administrator, architect, orconsultant

-Experience in interacting with other IT stakeholders gatheringrequirements, onboarding, configuration, and optimization of the Splunk suiteof tools

-Preferred experience with Linux systems and using scripting languages(Shell, Python, SQL) to automate tasks and manipulate data 

-Knowledge of enterprise logging, including application, OS, andsecurity technology logging

Certifications (preferred):

Splunk Certified Admin, Splunk Certified Architect, or Splunk CertifiedConsultant Highly Preferred

ؠؠؠ 

·        

··        

··        

··        

· 

·         

·        BachelorsDegree