content manager Remote
Job description
Splunk Content Manager
FEMA (Federal Emergency Management Agency)
LOCATION: Bluemont, VA/Remote
CLEARANCE: Top Secret
Job Description:
Obsidian is looking for a Splunk Content Manager/Administrator to join our team to support a federal customer within the Federal Emergency Management Agency (FEMA), Security Operations Center (SOC). The SME be responsible for the administration of the Splunk SIEM tool and will need a strong cyber security background.
What is Mount Weather?
The Mount Weather Emergency Operations Centre is a major reallocation site for the highest level civilian and military officials in case of a national emergency. It is a 564-acre, high-security federal government facility along the Loudoun-Clarke County border in Virginia. The facility was built during the Cold War as a relocation site and consists of two parts: the above-ground FEMA complex and the 600,000-square-foot underground facility. It’s used as the center of operations for the Federal Emergency Management Agency (FEMA) and run by the U.S. Department of Homeland Security.
Responsibilities:
- Perform data ingestion and visualization for Splunk (especially Splunk ES).
- Build and integrate contextual data into notable events.
- Build dashboards highlighting data anomalies and key trends. Design, develop, recommend and implement Splunk dashboards and alerts in support the Incident Response team.
- Create detection alerts and tune existing alerts.
- Develop advanced scripts for the manipulation of data to support analyst requirements.
- Perform integration activities to connect with 3rd party software APIs.
- Managing data onboarding.
- Perform data tagging, log administration, and data enrichment.
Additional Qualifications:
- Bachelor's degree from accredited university/college in Computer Science, Information Technology or related field with 7+ years of related technical experience. Candidates shall have a minimum of five (5) years of experience specific to Splunk system administration, database administration, network engineering, software engineering, or software development.
- Advanced understanding of specific enterprise environments that direct the correlation of system data for mission impact.
- Experience with custom log file parsing.
- Experience with Splunk dashboard creation.
- Experience creating visualizations for displaying data.
- Knowledge of networking protocols.
- Database design and Management.
- Experience with customer scripting desired: Bash, Perl, Shell, PowerShell, Python, JavaScript, HTML, CSS, SQL, D3
- Experience writing Splunk queries in Splunk Programming Language (SPL)
Clearance
Must possess Top Secret clearance
Obsidian Global, LLC is an Equal Employment Opportunity and Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to that individual's race, color, religion or creed, national origin or ancestry, sex (including pregnancy), sexual orientation, gender identity, age, physical or mental disability, veteran status, genetic information, ethnicity, citizenship, or any other characteristic protected by law.
Job Types: Full-time, Contract
Pay: $170,000.00 - $185,000.00 per year
Benefits:
- 401(k)
- 401(k) matching
- Dental insurance
- Health insurance
- Health savings account
- Life insurance
- Paid time off
- Parental leave
- Professional development assistance
- Referral program
- Retirement plan
- Vision insurance
Schedule:
- 8 hour shift
Experience:
- Splunk content development: 4 years (Required)
- Splunk ES: 5 years (Required)
Security clearance:
- Top Secret (Required)
Work Location: Remote
About Obsidan Global
Revenue: Unknown / Non-Applicable
Size: Unknown
Type: Company - Private
Website: https://www.obsidian.global/
