Post a Job

Job Detail

Splunk Administrator

Splunk Administrator

Johns Hopkins Applied Physics Laboratory (APL)

Laurel, MD

Job ID : 374f2f71563068396b4146312f64433446773d3d

Job Description :

Description

We are seeking a Splunk Administrator for APL 's Classified IT Services team. We provide technical expertise to meet compliance and security objectives in environments that require Audit & Logging Operations, Incident Identification, and Incident Response Coordination.

The Splunk Administrator will be a valued member of a team responsible for the overall engineering, operations, and maintenance of a Splunk environment spanning five classified security enclaves. The environments consist of forwarders, indexers, search heads, centralized log servers, and varying data ingests. You will coordinate operational responsibilities to include security and performance.

As a Splunk Administrator, you will...
  • Participate in developing security-focused content for our Splunk implementations across five classified Department of Defense (DoD) networks. Coordinate with the APL security operations teams and customers to build threat detection logic and dynamic operational dashboards. Assist with architecting log management, and data ingest solutions to ensure they are scalable and efficient. Analyze and make recommendations for Risk Management Framework (RMF) compliance requirements.
  • Leverage automation techniques and develop scripts to manipulate data repositories to support data and threat analysis. Develop documentation supporting management procedures and implementation guides for Splunk-based solutions.
  • Implement and manage Splunk add-ons to enhance capabilities, such as machine learning and advanced threat detection.
  • Assist with the Assessment and Authorization (A&A) of the Splunk environment. Perform risk assessments and Security Test & Evaluations (ST&E) of Splunk components and equipment under the IAVM and vulnerability management program.
  • Review systems to identify potential security weaknesses, recommend improvements, and implement changes. Work with the Vulnerability Management team to remediate findings from Assured Compliance Assessment Solution (ACAS)/Nessus and Host-Based Security Solution (HBSS) scans and other automated and manual assessment tools such as DoD Security Technical Implementation Guides (STIGs).
  • Work with existing and custom Splunk applications and add-ons to fulfill compliance requirements. Implement and administer Splunk in Windows and Linux environments.
  • Leverage programming skills (e.g., CSS, HTML, JavaScript, Python, shell scripting) to automate security tools management. Build customized applications within Splunk such as searches, audit scripting, and visualization.
  • Track and help implement responses and actions to address operational and communication orders from governing organizations. Provide expert analysis of records to prevent or detect anomalies or possible adverse events. Identify data accessed, destination and source addresses, timestamps, user login information, and specific sequence of activities to formulate courses of action and/or responses.

Qualifications

You will meet the minimum requirements if you have...
  • A BS degree in Computer Science, Management Information Systems, Computer Information Systems, Information Assurance, or comparable field or equivalent years of professional experience.
  • 1+ years of Security Engineering experience working with DoD IT enclaves, systems, and solutions.
  • 1+ years of experience with application and OS enterprise logging, managing Splunk and SIEM systems, creating rule sets and threat detection logic in Splunk.
  • Ability to demonstrate Splunk Search Processing Language (SPL) and Regular Expression expertise.
  • Splunk Power User Certification.
  • Hold an active Secret security clearance with the ability to obtain a Top Secret clearance. If selected, you will be subject to a government security investigation and must meet the requirements for access to classified information. Eligibility requirements include U.S. citizenship.
  • Are able to work occasional weekends and other after-hours to handle and/or complete critical project/work-related business needs.
  • Can demonstrate that you are fully vaccinated against COVID-19. To ensure the safety and well-being of the community, APL has established a policy requiring that all staff be vaccinated against COVID-19. All staff members must provide proof of full vaccination or have an approved medical or religious accommodation by their start date.
You will go above and beyond our minimum requirements if you have...
  • Intermediate expertise with Red Hat Enterprise Linux (RHEL).
  • 1+ years of experience leveraging Splunk or audit logs for incident response and user behavior analytics.
  • Experience with security tool data, including Network & Host Firewall, Tenable, Tanium, Forescout.
  • Experience with using scripting languages such as CSS, HTML, JavaScript, Python, and shell scripting to automate tasks and manipulate data.
  • Experience with Splunk Machine Learning Toolkit (MLTK).
  • Splunk Administrator or Architect Certification.
  • Current industry certification aligned to DoD Manual 8570, 01-M for IAT II.
  • Strong communication and presentation skills.
Why work at APL?

The Johns Hopkins University Applied Physics Laboratory (APL) brings world-class expertise to our nation's most critical defense, security, space, and science challenges. While we are dedicated to solving complex challenges and pioneering new technologies, what makes us truly outstanding is our culture. We offer a vibrant, welcoming atmosphere where you can bring your authentic self to work, continue to grow, and build strong connections with inspiring teammates.
At APL, we celebrate our differences and encourage creativity and bold, new ideas. Our employees enjoy generous benefits, including a robust education assistance program, unparalleled retirement contributions, and a healthy work/life balance. APL's campus is located in the Baltimore-Washington metro area. Learn more about our career opportunities at www.jhuapl.edu/careers.


About Us

APL is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, creed, color, religion, sex, gender identity or expression, sexual orientation, national origin, age, physical or mental disability, genetic information, veteran status, occupation, marital or familial status, political opinion, personal appearance, or any other characteristic protected by applicable law.

APL is committed to promoting an innovative environment that embraces diversity, encourages creativity, and supports inclusion of new ideas. In doing so, we are committed to providing reasonable accommodation to individuals of all abilities, including those with disabilities. If you require a reasonable accommodation to participate in any part of the hiring process, please contact Accommodations@jhuapl.edu. Only by ensuring that everyone’s voice is heard are we empowered to be bold, do great things, and make the world a better place.

Company Details :

Name : Johns Hopkins Applied Physics Laboratory (APL)

CEO : Ralph Semmel

Headquarter : Laurel, MD

Revenue : $1 to $5 billion (USD)

Size : 5001 to 10000 Employees

Type : Nonprofit Organization

Primary Industry : Aerospace & Defense

Sector Name : Aerospace & Defense

Year Founded : 1942

dutch-tavern.com is the go-to platform for job seekers looking for the best job postings from around the web. With a focus on quality, the platform guarantees that all job postings are from reliable sources and are up-to-date. It also offers a variety of tools to help users find the perfect job for them, such as searching by location and filtering by industry. Furthermore, dutch-tavern.com provides helpful resources like resume tips and career advice to give job seekers an edge in their search. With its commitment to quality and user-friendliness, dutch-tavern.com is the ideal place to find your next job.

Details

: Laurel, MD

: 72889 - 108690 USD ANNUAL

: Today

Share Job :
Apply For Job

Related Jobs

Assistant Executive Kitchen Manager

Cooper's Hawk Winery & Restaurants

Indianapolis, IN

Full Time

Discounts on dining, carry-out, retail and wine, and monthly dining allowance. Competitive base salary AND Quarterly Bonus Opportunity.

Occupational Therapist

Weeks Wellness

Panama City, FL

21.85 - 54.63 USD HOURLY

Full Time

We are looking for an Occupational therapist that has experience with pelvic health or an interest in being trained in pelvic health.

Product Manager

Rock of Ages Corporation

Graniteville, VT

80803 - 133129 USD ANNUAL

Full Time

Associate Degree (A.S.) in an engineering or technical program is preferred. Annotates technical drawings to help productions team. 401(k) and Roth 401(k).

Senior Principal Product Owner

Discover Financial Services

Riverwoods, IL

116238 - 147252 USD ANNUAL

Full Time

Partners with business technology to create technical features that are required to continuously optimize system components and underline infrastructure

Certified Medical Assistant/LPN

Ear, Nose and Throat SpecialtyCare of MN, PA

Burnsville, MN

20 USD HOURLY

Full Time

Tasks include but are not limited to, scheduling appointments, patient phone calls, referrals, data collection rooming patients and assisting in clinic.