Job Number: R0008392
Booz Allen Hamilton has been at the forefront of strategy and technology for more than 100 years Today, the firm provides management and technology consulting and engineering services to leading Fortune 500 corporations, governments, and not-for-profits across the globe. Booz Allen partners with public and private sector clients to solve their most difficult challenges through a combination of consulting, analytics, mission operations, technology, systems delivery, cybersecurity, engineering and innovation expertise.
Lead consulting engagements focused on the assessment, design, and implementation of enterprise–scale Splunk solutions by building, operating, and developing for or maintaining the Splunk log management infrastructure. Manage Splunk and related hardware infrastructure and oversee production support. Provide architecture–level design to support and operate Splunk using security information and event management (SIEM) or securityevent management (SEM) best practices and Splunk Enterprise Security. Design Splunk systems to meet growth while maintaining balance between performance, stability, and agility. Manage customer expectations, onboard data into Splunk, support projects in multi–site or clustered Splunk installations, and assist with the development of advanced reports to meet the requirements of key stakeholders. Conduct research in areas driven by customer use cases. Architect and support systems used to configure and deploy Enterprise SIEM log management solutions and develop automation for security tools management. Aid in the automation, deployment, integration, and testing of enterprise systems and services and create and optimize big data correlations as a Splunk search language (SPL) expert. These positions may require extensive travel to our client sites for up to 80% of the time.
-5+ years of experience with IT
-2+ years of experience as a Splunk administrator
-Experience in interacting with customers and onboarding, configuration, and optimization in SPLUNK
-Experience with using scriptinglanguages to automate tasks and manipulate data
-Experience with working in a large enterprise environment
-Knowledge of enterprise logging, including application, OS, and securitytechnology logging
-Knowledge of regular expressions
-Ability to demonstrate SPL expertise
-Ability to travel up to 80% of the time
-BA or BS degree
-2+ years of experience with Splunk, networksecurity, system security, and supporting security information and event management (SIEM)
-Experience with infrastructure management and support and system administration in Windows and UNIX environments
-Experience with enterprise–scale operations and maintenance environments
-Experience with programming a plus
-Experience with Python
-Experience with security tools, including Firewall, IDS, Active Directory, Nmap, Burp, Proxy, or Bro
-Knowledge of networking protocols
-BA or BS degree in CS, IT, or a related field
-Splunk Administrator or Architect Certification
Integrating a full range of consulting capabilities, Booz Allen is the one firm that helps clients solve their toughest problems by their side to help them achieve their missions. Booz Allen is committed to delivering results that endure.