ManTech CDM Splunk Engineer in Reston, Virginia

Currently, ManTech is seeking a motivated, career and customer oriented Splunk Engineer to join our team in the Reston, VA area to provide unparalleled support to our customer and to begin an exciting and rewarding career within ManTech.

Role and Responsibilities:

  • Read, analyze and interpret business requirements, system documentation, and technical procedures

  • Secure relevant information, integrates data from different sources, and identifies possible causes of problems

  • Support operations and provide Tier 3 support for an enterprise CMaaS solution based on Splunk, ForeScout, CounterAct, McAfee ePO

  • Support Extract, Transform, and Load operations to retrieve content from ePO and ForeScout repositories as well as existing hardware, software, system boundary inventories. Maintain and present that content within Splunk

  • Push Asset Summary Reporting (ASR) content from Splunk to RSA Archer based dashboard

  • Design and implement broader data integration with RSA Archer via Restful API data draw from Splunk

  • Ensure content flow to RSA Archer is correct summary information. Identify quality procedures to ensure summary data is accurate and not more detailed than required

  • Design and build more detailed Splunk reporting for internal use cases

  • Conduct appropriate analysis and ensure calls that are unable to be resolved are appropriately forwarded to vendor product support.

ยท Support the following:

*Provide initial problem resolution where possible

*Generate, monitor, and track incidents through resolution

*Provide software support

*Maintain frequently asked questions and their resolutions

*Obtain customer feedback and conduct surveys

Provide expert product capabilities and design input into solution design, build, and test activities and documentation

  • Contribute technical input to CMaaS Technical Training

Qualifications and Education/Certification Requirements:

  • Must possess 3-5 years cybersecurity experience, preferred working in and/or as an analyst to a SOC environment

  • Strong skill sets on debugging SQL stored procedures, triggers, Views, Query Optimization Techniques & query hints

  • Effectively utilize SQL Profiler

  • Understands SQL Server Metadata views and system tables

  • Familiarity with the NIST 800 publications governing the FISMA Act

  • Experience with dashboard or Security Information Event Management (SIEM) systems, including ingest of third- party data for rendering within the dashboard or SIEM

  • Ability to manipulate large volume of data in order to provide customer requested reports or charts

  • Certification: Splunk Certified Admin, or Microsoft Certified Solutions Associate SQL Server 2012, or Oracle Database Administrator Certified Professional required

  • Hands on experience with Virtualization Technology such as VMware or Virtualbox.

  • Experience with Active Directory, Log management tools and Vulnerability assessment tools.

  • Requires 2+ years experience with at least one of the following technologies:


*RSA Archer

*Security Content Automation Protocol (SCAP)

*Asset Summary Reporting Format (ASR)

*Restful API solution integration

*McAfee ePO

*ForeScout CounterAct

  • Linux Administration

Security Requirements:




See job duties and responsibilities.


See Qualifications

Years of Experience

See Qualifications

Position Type





For more than 40 years, ManTech employees have been solving complex problems for the national security community. We are comprised of approximately 10,000 talented employees around the world. We adhere to the simple, no-nonsense values on which ManTech was founded more than four decades ago, aligning squarely with the mission objectives of our customers. As our customer base continues to expand and diversify, we continue to diversify our workforce and solutions. Half our employees have a military background, and more than 70 percent hold a government security clearance. As a leading provider of innovative technology services and solutions for the nation's defense, security, space, and intelligence communities; we hold nearly 1,000 active contracts with more than 40 different government agencies.

ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Waretime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accomodation if you are unable or limited in your ability to use or access as a result of your disability. To request an accomodation please click and provide your name and contact information.