Koch
Join our Talent Network
Skip to main content

Splunk Administrator

This job posting is no longer active.

Description

Job-specific intro paragraph

  • Integrating Splunk with a wide variety of legacy and nonlegacy data sources
  • Running and maintaining on-premises Splunk heavy forwarders that are running on Windows and Linux
  • Engaging with Splunk users to establish best practices for utilizing Splunk data and visualizations
  • Improving cyber security detection capabilities by building and enhancing alerts
  • Participating in Cyber incident response, forensics and investigation activities as needed or requested
  • Using data collected from a variety of cyber defense tools (e.g., IDS alerts, firewalls, network traffic logs) to analyze events that occur within their environments for the purposes of mitigating threats.

Bulleted List: Enter engaging responsibilities here - not a task list

  • 3+ years of work experience in Information Security
  • 2+ years of work experience as a Splunk administrator
  • Experience in Splunk ES and MLTK
  • Experience with RegEx, administrating Windows, and Linux servers
  • Be a specialist in Splunk Processing Language (SPL) with the ability to design and customize complex search queries for reports, alerts, and dashboards
  • Excellent verbal and written communication skills with the ability to do presentations to potential and existing Splunk users
  • Experience with incident response and malware analysis
  • Possess investigative nature and be self-motivated.
  • Experience with system administration, software development and/or databases is a plus
  • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
  • Knowledge of networking concepts and protocols, and network security methodologies.

·Bachelor’s Degree in Computer or Software Engineering, Computer Science, or Management of Information Systems.

·Preferred Splunk Enterprise Certified Admin or Splunk Enterprise Certified Architect

·Knowledge on Python

    Bulleted List: 4-5 objective, non-comparable requirements are recommended

    ·Bachelor’s Degree in Computer or Software Engineering, Computer Science, or Management of Information Systems.

    ·Preferred Splunk Enterprise Certified Admin or Splunk Enterprise Certified Architect

    ·Knowledge on Python

      Bulleted List: Preferred qualifications

      This job posting is no longer active.

      Sign up for our talent network.

      Not ready to apply? Take a minute to sign up to receive notifications on opportunities that match your interests.

      Sign Up Now
      Interested in our early career opportunities? Scholarship and event applications are now open. Learn More.