*Please note, that this position is contingent upon the award or funding. The essential duties, experience, education requirements, and salary are subject to change.*
The Splunk Engineer II – Enterprise Security supports the federal client by engineering, developing, deploying, and maintaining the organization’s SIEM implementation and its minor applications, integration, apps, and interfaces. This position possesses mastery of the Splunk tool in a Linux environment, with technical expertise including hands-on solution development and implementation experience, and analytical skills for evaluating and optimizing capabilities of securing application solutions. This position will be heavily focused on the Splunk Enterprise Security component, specifically RBA, to assist in incident detection and response efforts.
Chickasaw Nation Industries, Inc. serves as a holding company with multiple subsidiaries engaged in several lines of business (Technology, Infrastructure & Engineering, Health, Manufacturing, Public Safety, Consulting, and Transportation) for the federal government and commercial enterprises. A portion of our profits is used to support Chickasaw citizens. We are proud to support the economic development and long-term viability of the Chickasaw Nation and its people. CNI offers premium benefits eligible on the first day of hire to full time employees; (Medical - Dental – Vision), Company Life Insurance, Short-Term and Long-Term Disability Insurance, 401(K) Immediate Vesting, Professional Development Assistance, Legal Aid Assistance Program, Family Planning / Fertility Assistance, Personal Time Off, and Observance of Federal Holidays.
As a federal contractor, CNI is a drug-free workplace and adheres to the Federal Controlled Substance Act.
ESSENTIAL REQUIREMENTS
The ability to obtain, maintain and access classified information at the Public Trust level.
Security+, Server+, Linux+, Cloud+ (or equivalent higher-level certifications).
Splunk Power User (Required), Enterprise Security Admin (Required), or higher Splunk certifications (preferred).
Additional preferred certifications: CEH, CySA+, GSEC, CISM, CCNA
Brings industry best practices and innovative ideas leading to continuous improvement of the Splunk environment.
Cross functional and well-rounded. Firm understanding of data flows and interconnections between multiple system with the network environment.
Exercises multi-tasking skills and critical thinking by managing events in multiple systems, applications, and other priorities.
Extensive knowledge of system back-end engineer and administration with heavy focus on Linux.
Analytical skills for evaluating and optimizing capabilities of securing application solutions.
Systematic approach to remediate system issues/problems and making recommendations to improve the efficiency of system operations and data availability utilizing current and future technologies.
Must demonstrate capability to operate autonomously in a diverse environment with minimal supervision and provide accurate and precise documentation.
Must demonstrate excellent troubleshooting skills, and be self-motivated, results-driven, and well organized.
Must have excellent communication skills (written and verbal) with experience communicating effectively with all levels of staff and management.
KEY DUTIES AND RESPONSIBILITIES
Essential Duties and responsibilities include the following. Other duties may be assigned.
Senior level mastery of SIEM front and back-end operations and configurations in addition to the interoperability with other security tools.
Extensive knowledge of Splunk Enterprise Security and CIM compliance.
Extensive knowledge of Splunk Risk Based Analysis (RBA).
Implements, optimizes, and maintains the SIEM infrastructure (Splunk), and deploys products, apps, reports, alerts, and dashboards utilizing system development life cycle (SDLC) methodologies and business best practices.
Increases the efficiency of the infrastructure to connect more enterprise data sources to Splunk Enterprise and associated add-on components.
Oversees the optimization, operation, and health of Splunk components and connections to data sources. (Cluster management of search head and index servers, query scheduling, performance tuning, Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts, etc.).
EDUCATION AND EXPERIENCE
Bachelor's degree and a minimum of six (6) years relevant Splunk experience, or equivalent combination of education/experience, with a minimum of three (3) years of Splunk Enterprise Security experience.
PHYSICAL DEMANDS
Work is primarily performed in an office / home office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear.
The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job.
EOE including Disability/Vet
*Please note, that this position is contingent upon the award or funding. The essential duties, experience, education requirements, and salary are subject to change.*
The estimated pay range for this role is $121K to $144K, with the final offer contingent on location, skillset, and experience.
CNI offers a comprehensive benefits package that includes:
Medical
Dental
Vision
401(k)
Family Planning/Fertility Assistance
STD/LTD/Basic Life/AD&D
Legal-Aid Program
Employee Assistance Program (EAP)
Paid Time Off (PTO) – (11) Federal Holidays
Training and Development Opportunities
Your application submission will be considered for all potential employment opportunities with Chickasaw Nation Industries (CNI).