Splunk ITSI Engineer, TS/SCI (Washington, DC)

Locations available: JBAB (Bolling AFB), DC; Maryland Square, MD; Reston, VA; Quantico, VA; Colorado Springs, CO; Waikiki, HI

An active Top Secret / SCI clearance with the willingness to take and pass a polygraph exam is required for consideration for hire for this role. Work is to be performed 100% onsite with our Government Customer.

What You'll Get To Do:

You will work with an expert team focused on implementing and operating next-generation security solutions for government and commercial clients. You'll use Splunk and integrate it with other state-of-the-art tools like HBSS, Enterprise Security Manager (ESM), Network Security Manager (NSM), NetFlow, and/or Intrusion Detection Systems (IDS) to monitor, detect, and analyze threats. You'll perform hands-on evaluation, implementation, and operation of leading security cyber defense tools and technologies, applying in-depth defense strategies for large and complex networks to rapidly identify vulnerabilities and threats, prioritizing response actions, including developing effective countermeasures. You'll support the risk management and security compliance of specified cybersecurity tools. You'll apply thought leadership to solving complex security challenges in a highly collaborative and innovative work environment.

You'll Bring These Qualifications:

• 3+ years of experience utilizing Splunk Enterprise
• Splunk Core Consultant Certification and Splunk IT Service Intelligence (ITSI) Accreditation preferred. The scope of the position includes designing resiliency using ITSI, building out an ITSI application, and implementing the design across multiple locations with overall oversight.
• Experience with deploying, configuring, and performing functional testing and data validation in a Splunk environment
• Experience with systems administration in Splunk, including installation, configuration, monitoring system performance and availability, upgrades, and troubleshooting in Windows and Linux Server environments
• Experience creating custom dashboards, writing queries, generating reports, and setting up alerts and notifications
• Familiarity with DoD Risk Management Framework
• Top Secret/SCI clearance with the ability to obtain a Counter-Intelligence polygraph
• Active DoD 8570 IAT Level III certification (e.g., CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GSEC, GCIH, or CCSP)
• Active DoD 8570 CSSP - Infrastructure Support (IS) certification (e.g., CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND)
• HS diploma or GED plus 7+ years supporting IT projects; Associate's degree plus 5+ years; Bachelor's degree plus 3+ years
• Ability to obtain a DoD 8570.01-M Cybersecurity Service Provider - Infrastructure Support Certification prior to start date

Nice If You Have:

• Ability to parse logs within Splunk
• Experience with fields abstraction and data modeling in Splunk
• Experience with workflows and drilldown queries
• Experience administering distributed Splunk deployments
• Experience with site surveys, data gathering, and deploying security tools
• Splunk Certified Power User or advanced certifications
• Experience with DevSecOps and ELK stack (Elasticsearch, Logstash, Kibana)
• Excellent communication and problem-solving skills

Note: We use Greenhouse Software for applicant tracking and Zoom Scheduler for HR screening. Please check your spam folder for updates.

Why GuidePoint? GuidePoint Security is a rapidly growing, profitable, privately-held value-added reseller focusing on Information Security. Since 2011, it has grown to over 1000 employees, established strategic vendor partnerships, and serves over 4,200 customers. Our core values drive our success and workplace atmosphere. Join us for a unique opportunity to grow your career with one of the fastest-growing companies in the nation.

Some added perks:

• Primarily remote work (U.S. based; some travel or on-site work for Federal positions)
• Group Medical Insurance options with employer contributions
• Group Dental Insurance with employer contributions
• 12 holidays and a Flexible Time Off (FTO) program
• Mobile phone and home internet allowances
• Retirement plan eligibility after 2 months
• Pet Benefit Option