ManTech CDM Splunk Engineer in Reston, Virginia
Currently, ManTech is seeking a motivated, career and customer oriented Splunk Engineer to join our team in the Reston, VA area to provide unparalleled support to our customer and to begin an exciting and rewarding career within ManTech.
Role and Responsibilities:
Read, analyze and interpret business requirements, system documentation, and technical procedures
Secure relevant information, integrates data from different sources, and identifies possible causes of problems
Support operations and provide Tier 3 support for an enterprise CMaaS solution based on Splunk, ForeScout, CounterAct, McAfee ePO
Support Extract, Transform, and Load operations to retrieve content from ePO and ForeScout repositories as well as existing hardware, software, system boundary inventories. Maintain and present that content within Splunk
Push Asset Summary Reporting (ASR) content from Splunk to RSA Archer based dashboard
Design and implement broader data integration with RSA Archer via Restful API data draw from Splunk
Ensure content flow to RSA Archer is correct summary information. Identify quality procedures to ensure summary data is accurate and not more detailed than required
Design and build more detailed Splunk reporting for internal use cases
Conduct appropriate analysis and ensure calls that are unable to be resolved are appropriately forwarded to vendor product support.
· Support the following:
*Provide initial problem resolution where possible
*Generate, monitor, and track incidents through resolution
*Provide software support
*Maintain frequently asked questions and their resolutions
*Obtain customer feedback and conduct surveys
Provide expert product capabilities and design input into solution design, build, and test activities and documentation
- Contribute technical input to CMaaS Technical Training
Qualifications and Education/Certification Requirements:
Must possess 3-5 years cybersecurity experience, preferred working in and/or as an analyst to a SOC environment
Strong skill sets on debugging SQL stored procedures, triggers, Views, Query Optimization Techniques & query hints
Effectively utilize SQL Profiler
Understands SQL Server Metadata views and system tables
Familiarity with the NIST 800 publications governing the FISMA Act
Experience with dashboard or Security Information Event Management (SIEM) systems, including ingest of third- party data for rendering within the dashboard or SIEM
Ability to manipulate large volume of data in order to provide customer requested reports or charts
Certification: Splunk Certified Admin, or Microsoft Certified Solutions Associate SQL Server 2012, or Oracle Database Administrator Certified Professional required
Hands on experience with Virtualization Technology such as VMware or Virtualbox.
Experience with Active Directory, Log management tools and Vulnerability assessment tools.
Requires 2+ years experience with at least one of the following technologies:
*Security Content Automation Protocol (SCAP)
*Asset Summary Reporting Format (ASR)
*Restful API solution integration
- Linux Administration
APPLICANTS SELECTED WILL BE SUBJECT TO A GOVERNMENT SECURITY INVESTIGATION AND MUST MEET ELIGIBILITY REQUIREMENTS FOR ACCESS TO CLASSIFIED INFORMATION. MUST PASS KCG BI/DRUG SCREENING AND BE CLEARABLE TO DHS EOD, SECRET CLEARANCE
See job duties and responsibilities.
Years of Experience
For more than 40 years, ManTech employees have been solving complex problems for the national security community. We are comprised of approximately 10,000 talented employees around the world. We adhere to the simple, no-nonsense values on which ManTech was founded more than four decades ago, aligning squarely with the mission objectives of our customers. As our customer base continues to expand and diversify, we continue to diversify our workforce and solutions. Half our employees have a military background, and more than 70 percent hold a government security clearance. As a leading provider of innovative technology services and solutions for the nation's defense, security, space, and intelligence communities; we hold nearly 1,000 active contracts with more than 40 different government agencies.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Waretime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accomodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accomodation please click email@example.com and provide your name and contact information.