Sr Principal SPLUNK Administrator
Job Details
Requisition ID: R10169764
- Category: Information Technology
- Location: Unknown City, Virginia, United States of America
- Clearance Type: Top Secret
- Telecommute: Yes- May Consider Full Time Teleworking for this position
- Shift: Days (United States of America)
- Travel Required: Yes, 10% of the Time
- Positions Available: 1
At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people’s lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation’s history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work — and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they’re making history. Northrop Grumman Cybersecurity is seeking an experienced Splunk Administrator to join a dynamic team of technical professionals. This role can be performed 100% virtually. This could change due to business conditions.
Roles and responsibilities include (but are not limited to):
- Perform as a member of the Splunk Administrative team responsible for engineering, administration, deployment, troubleshooting, and maintenance for a large-scale enterprise network. Implement and maintain Splunk platform infrastructure and configuration, involved in standardizing Splunk forwarder deployment, configuration and maintenance across UNIX and Windows platforms.
- Monitor and maintain Splunk performance, availability, and capacity – Storage performance, CPU, Memory, Forwarder installations and patching upgrades.
- Create & customize Splunk dashboards, visualizations, configurations using customized Splunk queries, reports, scheduled searches, and alerts, Splunk workflow actions, KPI services and undertake day-to-day operational and user support.
- Create and maintain CIM conformant Splunk knowledge objects
- Configuring and maintaining Splunk environments (e.g., multi-site clusters, SmartStore, heavy forwarders).
- Perform occasional travel to customer or other Northrop Grumman sites in support of troubleshooting, testing, and deployment activities.
- Make recommendations to purchase hardware and software, coordinate installation, and provide backup recovery.
- Work under minimal direction and independently determine and develop approach to solutions.
Basic Qualifications
- Master’s degree with 6 years of experience; or a bachelor’s degree with 8 years of experience; or 3 years with PhD OR an Associate’s Degree with 10 years of experience OR a High School Diploma/GED with 12 years of experience.
- Candidates must have or be able to obtain a current DoD Top Secret level security clearance with an original adjudication date, or a periodic reinvestigation, completed within the last 6 years and the ability to maintain an active security clearance to be considered.
- Current Splunk Enterprise Certified Administrator or Splunk Enterprise Certified Architect certification(s) or the ability to obtain within 6 months of hire.
- Experience in Splunk architecture and its various components (indexer, search head, deployment server, heavy and universal forwarder)
- Advanced proficiency with Splunk Search Processing Language to create complex queries, dashboards, and report.
Preferred Qualifications
- The ideal candidate will have at least 5 years of experience with configuring and maintaining large, advanced Splunk environments (e.g., multi-site clusters, SmartStore, heavy forwarders).
- Experience with Splunk system design and advanced architecture.
- Strong knowledge in Windows and Red Hat Linux operating systems.
- Experience in troubleshooting and resolving issues related to data ingestion, indexing, and search performance.
- Hands-on experience using regular expressions to manipulate data, index, and search time field extractions.
- Experience operating in Cloud, multi-Cloud, and hybrid on-premises/cloud environments (e.g., Amazon Web Services, Microsoft Azure)
- Experience with Syslog daemons (e.g., syslogd, rsyslog, syslog-ng).
- Experience with configuration management tools such as Ansible, Salt, Puppet, etc.
- Experience using scripting languages (Python, Bash, etc) to automate repetitive tasks and deployment processes.
- Experience performing and operating in an Agile framework (e.g., Lean-Agile, SAFe)
- Efficient, proactive, responsive team player with excellent written and oral communication skills.
- Experience in communicating with various levels of leadership and able to interface effectively with all levels of corporate management.
- Highly organized with ability to manage multiple priorities and time sensitive deliverables. Hands on, self-starting, disciplined and detail-oriented individual with ability to work independently in a high-volume environment.
- Excellent technical document preparation and writing skills.
Salary Range: $133,000 - $199,600
The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate’s experience, education, skills and current market conditions.
Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.
The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.