Job Details

SR Cyber Security Administrator (Splunk)

Advantis Global
Colorado Springs, Colorado, United States
About This Featured Opportunity

This role is Onsite at Peterson Air Force Base in Colorado Springs, CO.

Our client is seeking a highly motivated Splunk Consulting Administrator to join our Splunk Managed Services team that supports the continuous management, administration, and troubleshooting of Client Splunk Enterprise Deployments and Applications. As a Splunk Consulting Administrator at Zivaro, you will work directly with our Splunk Managed Services customers in understanding their Splunk needs whether that be simple help in building queries and dashboards, to more complex Splunk Enterprise administration and troubleshooting of their platforms. Our Managed Splunk offering is a rapidly growing and accelerating offering within our solution toolbelt, and as a member of this team you will get to support some of our biggest and most critical Clients in the continuous support and betterment of their Splunk deployments and environments.

  • Client Daily Work in summarizing incidents and alerts seen from Splunk environments as required
  • Hosting Client Monthly Meetings to discuss trends seen in their infrastructure, cover changes made to the environment, and position opportunities for further betterment and growth of customer Splunk deployments
  • Maintaining and creating runbooks and system description documents that outline a customer's Splunk architecture and routine administration/version/configuration/etc.
  • On-call potential for critical client Splunk outages
  • Splunk Operations (Zivaro Customers)
    • Upgrading Splunk
    • Installing/Upgrading Apps
    • Client environment troubleshooting
    • Data onboarding and extractions
    • Dashboard development
    • App development and permissions
    • Index cluster maintenance
    • Data investigations
    • Search maintenance and development, including REST SPL
    • Direct config file modification

  • Problem Solving Skills
  • Active Secret Clearance
  • Communication Skills, Writing/Presenting to both internal and external audiences
  • Self-Motivated/Self-Directed
    • Independent research to gain skills to solve a problem
    • Manages time and tasks without direct oversight
  • Basic Technical Documentation Skills
  • Technical Skills
    • Application of Splunk Admin Certification topics
    • Basic Linux familiarity: shell commands (ls, pwd, chmod, chown, vi, ping, telnet, find, )
    • Basic Windows familiarity: Office Suite
    • Regular Expressions
  • Helpful Skills:
    • Python, PowerShell, Bash, HTML, CSS
    • Programmatic REST interfaces
    • Advanced Linux topics (syslog, volumes, filesystems, nfs, dns, )
    • AWS cloud architecture familiarity (ec2, s3, vpc, sms, security groups, )
    • GIT Repo familiarity
      • Git command
      • Bitbucket, etc.
    • Cyber Security familiarity:
      • MITRE Framework, basic attack vectors
      • Security Data sources: Cloudwatch/Cloudtrail, WinEventLog, firewall outputs
    • Splunk Architect Skills: Splunk Clustering (search head/indexer), Splunk custom commands, Splunk Certs, Deployment Server Architecting, Scripted Inputs, Data preprocessing
Years Of Experience
  • 3-5+ Years
TECHNICIAL SKILL & CERTIFICATIONS: Splunk Administration Certification, Digital: X.509 & Encryption.

EDUCATION: Bachelor's degree in related field

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events