Principal Cyber Splunk, UNIX, Network Data Engineer

Responsibilities

Peraton is seeking an experienced Principal Cyber Data Engineer with Splunk, UNIX, Network experience to become part of Peraton’s Department of State (DoS) Diplomatic Security Cyber Mission (DSCM) program providing leading cyber and technology security experience to enable innovative, effective and secure business processes.  

 

Location: Beltsville, MD. First 90-days, on-site; Hybrid upon approval by the customer & the program.  

• Work hours - work needs to be performed between 7:00 AM and 5:00 PM, EST; when on-site, requirement to be on-site by 9:00 AM, EST. 

 

In this role, you will:

• Support the Cyber Analytics team by being a SME on Splunk's Enterprise Security.
• Provide SME input for future-state solutions pertaining to cyber analytics, XDR, and cloud data management.
• Manage the administration of a growing 15 TB/day on-premises Splunk deployment, including both operating system and application aspects.
• Integrate new data sources and technologies into Splunk Enterprise using the Common Information Model (CIM).
• Onboard data by directly editing Splunk configuration files, utilizing RegEx skills as needed.
• Troubleshoot log feeds by effectively communicating with external departments in an enterprise environment.
• Apply upgrades and patches as necessary to maintain system security and compliance.
• Assist cyber analysts in solving complex big data search processing challenges using expert SPL knowledge.
• Support Splunk Enterprise Security and Ansible.

 

Qualifications

Required: 

• Bachelor’s degree and a minimum of 5 years of relevant experience in IT.  An additional 4 years of experience will be considered in lieu of degree/education.
• Must have ONE of the following certifications or be able to obtain before start date:
  • CAP; CASP+ CE; CCISO; CCNA-Security; CISM; CISSP (or Associate); CISSP (or Associate); CNDCSSLP; CySA+; GICSP; GSEC; GSLC; Security+ CE; SSCP
• Must have at a minimum, 1-2 years experience in / with Splunk Administration, UNIX, and Network experience: 
  • Hands-on experience with Unix in a STIG environment; at least 1-2 years.
  • Proficiency in working with bash prompts, including editing configuration files and performing troubleshooting analysis with TCPDump.
  • Prior Tier-1 Administrator experience, including familiarity with network protocols such as DNS, DHCP, LDAP, SSH, SMTP, etc.
  • At least 3 years of hands-on Splunk Administration experience in a multi-indexer search head cluster environment.
  • Understanding of security-centric data sets.
  • Familiarity with cloud computing and experience working in a cloud environment.
  • Proficiency in Python, SQL, Bash, and PowerShell.
• U.S. citizenship an an active Secret security clearance. 
  • The ability to obtain a final Top Secret security clearance.

Preferred:

• Masters in Data Analytics preferred
• CRIBL experience.
• Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, or Splunk Enterprise Security Certified Admin certifications.

Peraton Overview

Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keeping people around the world safe and secure.

Target Salary Range

$86,000 - $138,000. This represents the typical salary range for this position based on experience and other factors.