Senior Security Analyst - Spunk

Hybrid | Washington D.C. | 1 Day a Week Onsite

US Citizenship Requred

Summary

Our client is an employee and Service-Disabled, Veteran-owned Small Business focused on providing niche technical services. They are a team of experienced cybersecurity professionals with a track record of success in the Federal, Commercial, and Academic workspaces. Additionally, our client designs, builds, operates, and secures scalable cloud and IT infrastructures to meet their customers’ near-term needs and fulfill their long-term requirements.

Responsibilities

Our client is seeking a Senior Security Analyst specializing in Splunk to support their end client's Governance, Risk, and Compliance (GRC) program. The role involves developing executive-facing reporting and dashboard solutions, enhancing existing GRC metrics, and leveraging Splunk to provide actionable insights. The ideal candidate will have strong hands-on experience in producing dynamic reports, managing Splunk infrastructure, and providing guidance on best practices for log analysis and monitoring.

• Develop executive-level reports and dashboards that meet customer needs
• Assess current dashboards and reporting systems used to track GRC program metrics
• Recommend and implement enhancements to existing dashboards, reports, and metrics
• Design, develop, and deploy new Splunk dashboards, reports, alerts, and visualizations to provide actionable insights
• Manage and configure Splunk infrastructure, including indexers, search heads, and forwarders
• Provide guidance and support to teams on how to leverage Splunk for log analysis, monitoring, and troubleshooting
• Collaborate with stakeholders to ensure dashboards and reporting solutions are aligned with organizational goals
• Improve continuous monitoring metrics and reporting to evaluate the security and risk of systems and applications at both system and enterprise levels

Requirements

• 5-7+ years of relatable experience is required for this position
• Strong hands-on experience producing dynamic reports and dashboards using Splunk
• Proficiency in configuring and managing Splunk infrastructure, including indexers, search heads, and forwarders
• Strong knowledge of SQL querying and data analysis techniques
• Experience in log management, data parsing, and data normalization techniques
• Strong analytical skills, with the ability to learn quickly and manage multiple tasks
• Familiarity with continuous monitoring metrics and reporting

Preferred Requirements

• Splunk certifications such as Splunk Certified Administrator or Splunk Certified Architect are highly desired
• Knowledge of OMB M-21-31 requirements is highly preferred
• Experience improving dashboards and reports for GRC programs
• Strong communication and collaboration skills to work effectively with cross-functional teams
• Familiarity with security metrics and how they apply to risk management

Education/Certification Requirements

• None