Splunk Engineer


Job Description

Position Title: Splunk logging Engineer with AWS cloud experience 

Location: Remote

FEDERAL - Fulltime

 

Must Be a US Citizen OR GC Holder

                                                  

 

Summary

Avilamb is seeking a Senior Cloud Logging Engineer in support of Department of Veterans Affairs (VA) Cloud Operations and Migration Services (COMS) contract supporting the VA’s Enterprise Cloud (VAEC) Splunk environment. The Senior Cloud Logging Engineer must have expertise with Amazon Web Services (AWS) in additional to experience with Splunk.

 

This is a cloud engineering position - with AWS (some Azure) and Splunk 

  • AWS and Splunk certifications needed 

  • US Citizen (preferred)

  • 4+ years of solid experience (6-10 years of IT experience with Bachelor’s Degree)

 

Minimum of three (3) years of experience in leading technical teams to achieve objectives and outcomes. Experience includes:

  • Developing and implementing technical standards, systems and processes for cloud and on-prem environments.

  • Recommending technology strategies and decisions with a high-level of expertise and knowledge.

  • Providing technical direction and support to ensure compliance with standards and guidelines.   

 

What will I get to do? 

  • Advise on cost efficiency for future usage and cost optimization for current infrastructure.

  • Automate the management and enforcement of policies.

  • Create and maintain documentation related to architecture and operational processes for Splunk.

  • Develop a set of best practices and architecture patterns.

  • Help maintain regulatory compliance of the Splunk infrastructure.

  • Help monitor and maintain Splunk performance, availability, and capacity.

  • Maintain cloud network configurations.

  • Maintain gold images.

  • Offer solutions for Splunk technical questions, issues, and escalations. This will include working with Splunk Support as needed.

  • Provide best practices in adoption, expansion, and operations of Splunk Enterprise and Splunk Cloud.

  • Provide operations monitoring of Splunk platform to enable proactive issue identification, response, and resolution.

  • Recommend and execute improvements to the existing Splunk architecture and design with growth and scalability in mind to optimize performance, stability, reliability, and agility.

  • Responsible for reporting on current infrastructure status, and planning for future usage.

  • Responsible for Splunk agent (i.e., Universal Forwarder) deployment and server infrastructure analysis, optimization, and capacity planning.

  • Support and guide client resources that include Splunk Administrators, Architects, Knowledge Managers, Developers, and Users for increasing Splunk adoption and overall customer success.

  • Support large-scale deployments with data feeds from multiple on premise and cloud data centers.

  • Upgrade, install, configure monitoring solution for AWS for Windows and Linux servers.

  • Utilize automation tool such as Terraform, Ansible, AWS Cloud Formation, Azure Resource Manager, or similar.

 

What qualifications do I need?

  • Candidate background eligibility requirements are United States citizen or be a Permanent Resident and have lived in the United States for at least 3 years, clean criminal background and able to obtain a Public Trust (High-Risk) Position

  • Bachelor’s degree in computer science, electronics engineering or other engineering or technical discipline OR AWS/Azure Certification (AWS Professional / Specialty Cert. OR Azure Expert / Advanced Cert.) OR 4 years of relevant experience in one of the VAECOT suite of tools (Science Logic, Dynatrace, Turbot, AppDynamics)

  • Minimum of three (3) years of experience in leading technical teams to achieve objectives and outcomes.

  • Minimum of six (6) years setting up, configuring, and using AWS cloud operational tools to ensure service level agreements and performance targets are met, and continued compliance with policies, standards and guidelines

  • Minimum of three (3) years specific to monitoring Centralized Logging Solution (CLS)/Splunk

  • Subject matter expertise with ALL VAEC Cloud Service Providers which currently includes Microsoft Azure and Amazon Web Services (AWS)

  • Experience with programming with Splunk language (SPL) or equivalent (e.g., Python, Powershell, AWS or Azure CLI)

  • One or more of these Splunk certifications: Splunk Core Certified Power User, Splunk Core Certified Advanced Power User, Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, Splunk Enterprise Security Certified Admin, Splunk IT Service Intelligence Certified Admin

  • Knowledge of enterprise logging, with a focus on security event logging

  • A solid understanding of cloud concepts, either using Azure or AWS semantics

  • Experience in one or more of the VAECOT suite of tools, shown below.

 

 

What additional characteristics will help me thrive?

  • Ability to communicate clearly with all levels in an organization

  • Active clearance for Public Trust (High-Risk) Position

  • Background that includes at least one core technology; Linux/Windows or database admin (for example), with exp. working application migrations

  • Experience working in a CMMI-DEV or CMMI-SVC environment at Maturity Level 3 or above

  • ITIL certification or experience with ITIL

  • Must be capable of working closely with the project leadership and technical resources to understand issues and work toward resolution 

  • Multiple Microsoft or Amazon cloud certifications

  • Previous Federal Government experience

  • Strong ability to foster collaborative work in dynamic team environment 

  • Strong creative, analytical and problem solving and trouble-shooting skills 

  • Strong knowledge (recent experience) with the following technologies: storage, servers, data centers, networking

  • Strong technical experiences working migrations or systems development as well as coordinating from a business perspective

  • Strong understanding of SDLC concepts, full lifecycle development for systems/applications

 

VAEC Operational Tools (VAECOT)

Some experience in one or more of the following tools:

Third party tools

  • Application Performance Monitoring: Dynatrace, AppDynamics

  • Cloud Security: Nessus, NetSkope, Enterprise Security External Change Council, Identity and Assessment Management, Continuous Monitoring as a Service, McAfee, eMASS, Centrify

  • Cloud Governance: Turbot

  • DevOps/Configuration Management/Help Desk: Ansible, Service Desk, ScienceLogic, ServiceNow, SPLUNK, Jira ServiceDesk, Cloudockit, GitHub

  • Containerization: Red Hat OpenShift

  • Migration: CloudKey, Version One

  • Reporting: Apptio

Cloud Service Provider (CSP) Operational Tools Tools/Services 

  • AWS Security: System Manager (Explorer and OpsCenter), CloudWatch, Config, CloudTrail, Elasticsearch (Kinesis DataStreams), GuardDuty, Inspector, Key Management Service (KMS), Security Hub, Directory Service, Identity and Access Management, Resource Access Manager, Cognito, Secrets Manager, Certificate Manager, Artifact

  • Aws Monitoring and Logging: QuickSight, Eventbridge (AWS Kinesis DataStreams), Simple Notification Service (SMS), Elasticsearch (AWS Kinesis DataStreams), CloudTrail, CloudWatch

  • Aws Networking: Virtual Private Cloud (VPC), Route S3, API Gateway, Direct Connect, AppStream 2.0, Transit Gateway, Elastic Loadbalancer, Firewall Manager, WAF & Shield

  • AWS Storage: Cloud Tiering Services to S3 from On-Prem, Simple Storage Services (S3), S3 Glacier, Storage Gateway, Elastic File System (EFS), Backup

  • Azure Security: Monitor (Log Analytics and ASC), Event Hubs, Security Center (ASC), Information Protection (AIP) , Key Vault, PowerBI, Network Watcher (Performance Monitor), Monitor (Log Analytics and ASC)

  • Azure Monitoring and Logging: Information Protection (AIP), Advance Threat Protection, Security Center (ASC), Information Protection (AIP), Key Vault, Active Directory, Role Based Access Control (RBAC), Resource Manager (ARM), Resource Graph (ARG), Active Directory B2C, Key Vault, App Service, Service Trust Portal

  • Azure Networking: Virtual Network, Traffic Manager, DNS, Application Gateway, Express Route, Web Apps, FrontDoor, VPN Gateway, Loadbalancer, Firewall

  • Azure Storage: NetApp File Service, Storage (Blobs, Disks, Files, Queues, Tables), Storage Archive Access Tier, StorSimple, Files, Backup


Qualifications

Candidates that do not meet the minimum qualifications will not be considered. 


v10085

Apply

You can upload a maximum of 5 files, each up to 5MB. Supported files include msword, pdf, vnd.openxmlformats-officedocument.wordprocessingml.document.