- Full Time
- Fort Liberty, Fayetteville, NC (Onsite)
Website SOFtact Solutions
Cybersecurity and IT Training
IT Operations Engineer – Splunk ITSI
Description: SOFtact Solutions (STS) is seeking an intermediate to advanced-level IT Operations Engineer to join our team supporting IT operations for the Special Operations Community. The IT Operations Engineer will maintain various network-monitoring technologies and applications focusing on the Splunk IT Service Intelligence (ITSI) premium application. The selected candidate will provide advanced experience in managing Splunk Core and Splunk ITSI. They will work with customers to perform requirements-gathering sessions to develop the scope and design of new and existing content to include dashboards, alerts, reports, and data sources for ingestion. This role will be responsible for translating the requirements into a working model and presenting it to the customer while also taking feedback for improvement. They will work with the customer’s Splunk administrators to deploy their solution to make it available for all users. The candidate must have robust Splunk experience and be able to work collaboratively with diverse end-users and a geographically distributed team. This position requires a minimum of Top-Secret clearance, with eligibility to obtain SCI.
Position Location: Fort Liberty, Fayetteville, NC (onsite)
Education: Bachelor’s degree in equivalent experience in business administration, project management, or related field.
Qualifications: 2+ years’ professional experience using and supporting Splunk Enterprise
Responsibilities:
- Provides technical/management leadership on major tasks or technology assignments.
- Establishes goals and plans that meet project objectives and has domain and expert technical knowledge.
- Maintains various IT Operations monitoring technologies and methodologies using Splunk IT Service Intelligence (ITSI) Premium Application.
- Works with external teams to perform requirements gathering sessions to develop the scope and design of new and existing content to include glass tables, dashboards, alerts, reports, and data sources to fulfill IT Operations monitoring.
- Discovers and mines data to develop meaningful insights into IT Operations.
- Develops visualization dashboards and indicators that identify anomalous activities using statistical behavior models, and machine learning.
- Integrating Splunk with a wide variety of legacy data sources and industry leading commercial security tools that use various protocols, to facilitate better monitoring of IT Operations inside Splunk ITSI
- Managing Splunk knowledge objects such as Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts, and Glass Tables, along with the customer’s other Splunk Administrators
- Improves deployment performance and solves configuration and deployment issues to improve enterprise management of Splunk ITSI.
- Provides utilization of predicative analytics capability in ITSI in support of customer defined services.
- Work with customers and users to ensure proper data shape and data validation for content published on Splunk ITSI Premium Application.
- Performs technical ITSI troubleshooting efforts in support of customer IT Operations.
- Interactions involve client negotiations and interfacing with senior management.
- Interface with customers to articulate requirements and capabilities of Splunk ITSI Premium Application.
- Periodic travel as needed
- Primary work location will be at Fort Liberty, NC
Required Skills:
- Splunk IT Service Intelligence experience to include installation and administration, as well as integration with backend systems
- Creative problem-solving skills
- Splunk Core Certified Power User
- Splunk IT Service Intelligence Certified Admin
- DoD 8570 Certification at the IAT Level II or obtain within six months of employment
- Must have excellent verbal and written skills
Preferred Skills:
- Knowledge and experience with other enterprise network monitoring tools such as SolarWinds, vRealize Operations, SCOM, ServiceNow, Gigamon, and NetBrain, to ensure the ability to understand data being ingesting from those sources
- Integrating with ServiceNow
- Splunk M/L
- Certification in Red Hat Certified System Administrator (RHCSA) and/or Red Hat Certified Engineer (RHCE) and/or applicable certifications
- Splunk Enterprise Certified Admin
Clearance: Top Secret; with eligibility to obtain SCI (Applicants will be subject to security investigations and will have to meet eligibility requirements for classified information)