Splunk Admin Advisor

U

United Global Technologies

Splunk Admin Advisor

Indianapolis, IN
Full Time
Paid
  • Responsibilities

    WLPTJP00045325 NGS Data Admin Advisor

    03/10/2025 to 08/29/2025 Contract to hire

    Previous Splunk Administration experience is required - preferably in Government Contracting Environment.

    Responsible for support, installation, and maintenance of Enterprise Splunk environment, using standard procedures and processes to gather, format and load metadata under minimum supervision. Primary duties may include, but are not limited to: Designs, constructs and proposes difficult to very difficult Splunk repository, infrastructure, or architectural changes, creates and maintains associated architectural specification documentation and procedures. Troubleshoots medium to difficult metadata/Splunk repository and functionality problems with help from others. Conducts implementation, upgrade and maintenance of Splunk associated infrastructure and supporting data management. Designs and constructs the most difficult Splunk dashboards and reports and conducts quality reviews, with minimal guidance and supervision. Performs Splunk system administration duties with little supervision. Performs data profiling analysis and data quality analysis with guidance and supervision. Communicates with and mentors junior associates.

    Requires an BA/BS degree in Information Technology, Computer Science or related field of study and a minimum of 7+ years experience in information systems with minimum 3 years experience in a Splunk administrator or infrastructure support role; or any combination of education and experience, which would provide an equivalent background. Experience with syslog, syslog-ng logging as they relate to Splunk required; Prior experience with Splunk Phantom or similar SOAR tools and technologies are preferred. Familiarity with containerization technologies (e.g. Kubernetes) and commercial cloud technologies (AWS/Azure) desired; Python scripting skills and experience is highly valued. Experience working in a Security Operations Center (SOC), and familiarity with common security implementation frameworks (NIST, ISO, HIPAA, etc.) in a highly regulated industry are preferred.

    Splunk version 9.2.2 and moving eventually to 9.2.4