CACI International Network Security Engineer in Chantilly, Virginia
What You’ll Get to Do:
You will focus on building and maintaining a security analysis infrastructure with focus on Splunk. You will create Splunk dashboards, alerts, and other visualizations based on requirements. You will also build and execute ad-hoc complex queries to address time-sensitive requests. You should have sufficient knowledge of Splunk and Linux to perform upgrades, troubleshoot anomalies, and configure new data sources. This role may also involve maintaining other security tools.
More About the Role:
Expertise in Splunk Searching and Reporting modules, Knowledge Objects, Administration, Dashboards, Clustering and Forwarder Management
Perform Splunk administration tasks such as installing, configuring, monitoring and tuning
Generate or enhance Splunk Dashboards, Reports, and Alerts
Create Dashboards, Visualizations, Statistical reports, scheduled searches, alerts and knowledge objects
Designing and maintaining production-quality Splunk dashboards
Experience with log parsing, complex Splunk searches, including external table lookups
Splunk configuration that involves different web application and batch, create Saved search and summary search, summary indexes
Splunk search construction with ability to create well-structured search queries that minimize performance impact
Support and execute arrangements considering a full information lifecycle (Search & Investigate, Add Knowledge, Monitor & Alert, Report & Analyze)
You’ll Bring These Qualifications:
Must have an active TS/SCI with Poly clearance
Typically has a University Degree (BA/BS) or equivalent experience and minimum 7 years of related work
Candidates should have some or all of the following qualifications and experience:
Strong preference for degrees in Computer Science, Information Technology, Mathematics, Engineering (various disciplines) or other technology-focused disciplines
Splunk dashboard development experience with Power User Certification or higher preferred
Understanding of network architectures
Familiarity with cyber-attack life cycle and how to defend against attacks
Deep understanding of Splunk configuration files and architecture
Strong technical, analytical, problem solving and verbal and written communication skills
Familiarity security products (ArcSight, Tanium, LogRythm)
What We Can Offer You:
We’ve been named a Best Place to Work by the Washington Post.
Our employees value the flexibility at CACI that allows them to balance quality work and their personal lives.
We offer competitive benefits and learning and development opportunities.
We are mission-oriented and ever vigilant in aligning our solutions with the nation’s highest priorities.
For over 55 years, the principles of CACI’s unique, character-based culture have been the driving force behind our success.
CACI employs a diverse range of talent to create an environment that fuels innovation and fosters continuous improvement and success. At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is proud to provide dynamic careers for employees worldwide. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.