Systems Administrator - Splunk

Systems Administrator – Splunk

5+ years experience in systems administration
HS diploma or GED
Must be Security+ certified
Must hold one of the following certifications: Splunk Enterprise Certified Administrator or Splunk Enterprise Security Certified Administrator
Experience with Splunk performing systems administration, including installations, configurations, monitoring system performance and availability, upgrades, troubleshooting, and dashboard design in a Red Hat Enterprise Linux environment (RHEL)
Strong familiarity with Red Hat Enterprise Linux (RHEL) administration
Strong understanding of network protocols, security frameworks, and compliance standards
Excellent communication skills, both oral and written
Analytical skills to troubleshoot issues
Ability to conceptualize server infrastructures and configurations
Must be a US citizen and hold a current Top Secret clearance with SCI access (TS/SCI)

Design, deploy, configure, and manage Splunk clustered infrastructure on RHEL, including Splunk indexers, search heads, forwarders, and deployment servers
Administer Splunk Apps to include developing new or extending existing apps to perform specialized functionality
Develop and implement strategies for efficient data ingestion, parsing, and indexing, ensuring availability and optimal performance of Splunk data repositories
Consulting with teams to customize searches, reports, dashboards and configure Splunk to meet their requirements
Create and maintain documentation detailing architecture components, configurations, monitoring and alerting setup, troubleshooting guides, and checklists
Implement and maintain security controls, and data protection measures in line with best practices and DISA STIG requirements

No preferred qualifications provided.