ON SITE REQUIRED: 100% Interview Onsite with no exception.
Splunk Cyber Security Engineer will be responsible for engineering data ingestion into Virginia Department of Transportation Splunk instance is configured and maintained properly. This includes but is not limited to onboarding new data ingestion sources, modifying, and adjusting current sources and maintaining the backend of Splunk throughout the VDOT Operations Technology Network.
Splunk Backend Management
- Management of Indexes
- Onboarding new Indexes as needed
- Onboarding Log Sources
- Maintaining Current Log Sources
- Installing/Update Apps and Addons in Splunk
- Researching Splunk Add-ons
- Splunk Change Management and Maintenance
Network Knowledge (Understanding of how data flows throughout the network)
Linux Syslog Maintenance
- Log Rotation
- Maintenance of Syslog Services
Red Hat Linux Administration
- Linux Updates
- Security Patching
- Splunk Deployments
On Call for Splunk related outages
| Skill | Required / Desired | Amount | of Experience |
| Splunk Core | Required | 3 | Years |
| Splunk ES | Required | 3 | Years |
| Networking Knowledge | Required | 2 | Years |
| Splunk Management of Indexes | Required | 3 | Years |
| Splunk Apps and Addon's Configuration Knowledge | Required | 3 | Years |
| Red Hat Linux Administration | Required | 3 | Years |
| Change Management Experience | Highly desired | 3 | Years |
| Linux Syslog Administration | Required | 2 | Years |
| Splunk Log Source Onboading | Required | 3 | Years |
| Splunk Maintenance | Required | 3 | Years |
| Splunk Gov Cloud | Highly desired | 2 | Years |