Splunk Developer Jobs in McLean, VA (NOW HIRING)

JUNIOR SPLUNK DEVELOPER

MILITARY FRIENDLY & PREFERRED - HOH SPONSOR

Zermount Inc. is looking for a Junior Splunk Developer to assist with maintaining custom Splunk apps and interfaces for our clients. The candidate must be very familiar with the Splunk Enterprise platform, including deployment of the product, onboarding standard and proprietary data sources, maintaining a Splunk environment, installing and configuring Splunk apps and TAs, and building content for users such as reports, dashboards, etc. The ideal candidate will also have experience in or exposure to custom web development, JavaScript, HTML, CSS, XML, JSON, REST APIs, and Python.

DUTIES AND RESPONSIBILITIES

• Maintaining and making enhancements to custom functionality built on top of the Splunk platform, including dashboards, user interface and data entry screens, backend data stores and scripts, integrations, and REST endpoints.
• Maintaining, troubleshooting, and adding new inputs, parsers, and filters for data ingestion from various application groups across the enterprise.
• Troubleshooting anomalies with Universal Forwarders, data source inconsistencies, and other interruptions in log ingestion identifying root causes and rectifying when issues are found to exist on the Splunk UF/HF/SH/IDX side.
• Performing tuning of search head performance, SPL efficiency, knowledge bundles, etc.
• Performing other Splunk operations and maintenance duties at the application, server, and integration layers as required.
• Evaluating third-party apps and TAs as necessary to fulfill business needs.
• Updating custom apps prior to Splunk upgrades, ensuring continuity of functionality.
• Adding, removing, and modifying Splunk users, roles, and capabilities.
• Tracking work activities or projects through methods such as status reports, request and incident tickets, Kanban boards, etc.
• Assist other members of a multi-tool administration team with user or data administration of applications such as Tenable, Fortify, Carbon Black, NetWitness, and others.
• Work with project managers, product owners, other application teams, cybersecurity personnel, and executives to inform business decisions, work collaboratively, and accomplish strategic goals or sprint-based targets.

QUALIFICATIONS

• Certification(s): Splunk Enterprise Certified Admin.
• 1-3 years of demonstratable experience in implementing or maintaining a Splunk environment.
• 1 year of demonstrable experience in building Splunk content (e.g. dashboards).
• Demonstratable basic familiarity with the Linux operating system and terminal.
• Excellent written and verbal communication ability, to include presentation and briefing skills.
• Ability to quickly learn new concepts and ways of thinking outside the box to leverage the Splunk platform.
• Proficiency in the Microsoft Office software suite.

PREFERRED QUALIFICATIONS

• Advanced Splunk Certification(s), e.g., Architect, Consultant, Developer, etc.
• Experience building custom Splunk apps from scratch.
• Experience with complex data-transforming SPL.
• Experience in front-end web development utilizing JavaScript, REST APIs, HTML, CSS, etc.
• Experience in server-side scripting utilizing Python or Bash or Powershell, etc.
• Experience in the integration of two or more applications using either app-proprietary methods and/or scripting, etc.
• Experience in user interface design or graphic design and Adobe Photoshop (or similar).
• Experience with BYOC Splunk in AWS, including AWS-specific data sources such as CloudWatch, CloudTrail, and Lambda outputs.
• Familiarity with the requirements, artifacts, roles, and activities involved in the following processes:
• Risk Management Framework
• Governance, Risk, and Compliance
• Assessment and Authorization
• Authority to Operate

EDUCATION:

Minimum of Bachelor's degree in Computer Science, IT, Engineering, or similar fields. Years of experience will be taken into consideration, in place of a degree.

CLEARANCE:

• Active Secret clearance is required
• Must be a United States citizen.

WORK LOCATION and HOURS:

• Location: Hybrid – primarily remote. Occasional onsite work required at the client location in Springfield, VA and Zermount HQ in Arlington, VA.
• Core Hours: 9:00 am ET - 3:00 pm ET