Description:

The Splunk Engineer will be part of a team maintaining various client's Splunk instances with a focus on data onboarding, content development, reporting, and visualizations.
Candidates must have prior Splunk engineering and administration experience and work well in a team environment.
Experience supporting federal customers is a plus.
The role offers access to a comprehensive knowledge base driven by the True Zero community and technical support from the PS team.
Collaboration and growth are encouraged through information sharing and knowledge workshops.
Candidates will have access to an internal Slack channel for team connectivity and necessary tools for training, demos, testing, and professional skill growth.

Requirements:

A Secret Clearance is required for this position.
Candidates must be a Splunk Enterprise Certified Consultant.
Candidates must also be a Splunk Enterprise Security Certified Admin.
Experience with Splunk IL5 Cloud/ES is necessary.
Candidates should have experience designing and implementing distributed Splunk installations, including all Splunk server roles (Search Head, Indexers, Heavy Forwarders, and Universal Forwarders).
Advanced configuration experience with Splunk, including Indexer Clustering and Search Head Clustering, is required.
Candidates must have experience maintaining and administering enterprise Splunk implementations.
Experience in developing custom Splunk content, including scheduled searches, reports, and dashboards, is necessary.
Proficiency in data onboarding activities, including custom parsing rules and building custom Technology Add-Ons according to Splunk's Common Information Model (CIM), is required.
Candidates should have experience configuring indexes, index routing, and retention policies.
Experience working in both Linux and Windows environments is necessary, with the ability to configure storage subsystems, SELinux, and familiarity with different Linux distributions (RedHat, CentOS, Ubuntu).
Candidates must have knowledge of file permission settings in both Linux and Windows.
Excellent written and oral communication skills are required, along with the ability to work closely with multiple customers, manage expectations, and track engagement scope.

The position offers a competitive salary, paid twice per month.
Employees receive best-in-class medical coverage, with 100% of medical premiums covered by True Zero.
There are company-wide new business incentive programs and contribution incentives for activities like white papers, blog posts, and internal webinars.
Employees start with 3 weeks of PTO and receive 11 paid holidays annually.
A 401k program is available with a 100% company match on the first 4%.
Monthly reimbursement for cell phone and home internet costs is provided.
Paternity and maternity leave are offered.
True Zero invests in training and certifications to help employees broaden and deepen their technical skills.