Splunk Engineer, TS/SCI (Washington, DC)

Locations available: JBAB (Bolling AFB), DC; Maryland Square, MD; Reston, VA; Quantico, VA; Colorado Springs, CO; Waikiki, HI

An active Top Secret / SCI clearance with the willingness to take and pass a polygraph exam is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer.

What You'll Get To Do:

• Work with an expert team focused on implementing and operating next-generation security solutions for government and commercial clients.
• Use Splunk and integrate it with other tools like HBSS, ESM, NSM, NetFlow, and IDS to monitor, detect, and analyze threats.
• Evaluate, implement, and operate cybersecurity tools and technologies, applying in-depth defense strategies for large networks to identify vulnerabilities and threats, and develop countermeasures.
• Support risk management and security compliance of cybersecurity tools.
• Apply thought leadership to solve complex security challenges in a collaborative environment.

You'll Bring These Qualifications:

• 3+ years of experience with Splunk Enterprise.
• Experience deploying, configuring, and testing in a Splunk environment.
• Experience with systems administration in Windows and Linux, including installation, configuration, monitoring, upgrades, and troubleshooting.
• Experience creating dashboards, writing queries, generating reports, and setting up alerts.
• Familiarity with DoD Risk Management Framework.
• Top Secret/SCI clearance with ability to obtain a Counter-Intelligence polygraph.
• Active DoD 8570 IAT Level III certification (e.g., CASP+, CCNP Security, CISA, CISSP, GSEC, Security+ CE, etc.).
• Active DoD 8570 CSSP - Infrastructure Support (IS) certification (e.g., CEH, CySA+, GICSP, SSCP, etc.).
• Education and experience: HS diploma or GED with 7+ years support IT projects; Associate’s degree with 5+ years; Bachelor’s degree with 3+ years.
• Ability to obtain DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification prior to start.

Nice If You Have:

• Experience parsing logs within Splunk.
• Experience with fields abstraction, data modeling, workflows, and drilldown queries in Splunk.
• Experience administering distributed Splunk deployments.
• Experience with site surveys, data gathering, and deploying security tools.
• Splunk Certified Power User or advanced certification.
• Experience with DevSecOps and ELK stack.
• Excellent communication and problem-solving skills.

Note: We use Greenhouse Software and Zoom Scheduler for application tracking and scheduling. Please check your spam folder for updates.

Why GuidePoint?

GuidePoint Security is a rapidly growing, profitable company focusing on Information Security, with over 1000 employees and serving more than 4,200 customers. Our core values drive a collaborative and supportive workplace. This role offers a unique opportunity to grow your career with a leading company.

Some added perks include:

• Primarily remote work (U.S. based), with some travel or on-site work for Federal positions.
• Comprehensive health insurance options.
• Paid holidays and flexible time off.
• Mobile phone and internet allowances.
• Retirement plan eligibility after 2 months.
• Pet benefits.