Job Title: Splunk Administrator
Location: Washington, DC
US Citizenship Required
The Contractor shall deliver systems engineer services and guidance on Splunk Enterprise to include documentation of test scenarios, lessons learned, checklists, migration strategies and current and future architecture designs. The Contractor shall work under the supervision and direction of the SAA Enterprise Systems Support group. The Contractor shall provide, as directed by SAA management, weekly technical status reports summarizing activities, issues and recommendations for moving forward and defining the hours expended. Additional documentation of work performed may be required as appropriate.
Candidate shall provide subject matter expertise in performing that shall include but are not necessarily limited to technical services as follows:
-Be able to work with clients, peers and management in a highly visible, mission critical
-Administer a Splunk Distributed Environment including Index Clustering, Search Head
Clustering and Forwarder Deployment Server.
-Ability to create custom Dashboards, Alerts and Reports to meet requirements of various user groups.
-Evaluate, test and implement major and minor revision releases as they become available from Splunk.
-Ability to create knowledge objects as needed.
-Ability to manipulate raw data prior to Splunk ingest.
-Ability to manipulate Splunk configuration files (CLI).
-Experience using and configuring the Distributed Management Console (DMC).
-Experience configuring lookups, field aliases, field extractions, calculated fields, tags,
event types, workflow actions, macros and data models.
-Understanding of Red Hat Enterprise Linux operating systems including normal system
maintenance and tuning.
-Prepare technical documentation
8-10+ years of experience
Opportunity Employer M/F/D/V