Sr Principal Splunk Administrator

US CITIZENSHIP REQUIRED FOR THIS POSITION: Yes

RELOCATION ASSISTANCE: Relocation assistance may be available

CLEARANCE TYPE: Top Secret

TRAVEL: Yes, 10% of the Time

Description

At Northrop Grumman, our employees have incredible opportunities to work on revolutionary systems that impact people's lives around the world today, and for generations to come. Our pioneering and inventive spirit has enabled us to be at the forefront of many technological advancements in our nation's history - from the first flight across the Atlantic Ocean, to stealth bombers, to landing on the moon. We look for people who have bold new ideas, courage and a pioneering spirit to join forces to invent the future, and have fun along the way. Our culture thrives on intellectual curiosity, cognitive diversity and bringing your whole self to work - and we have an insatiable drive to do what others think is impossible. Our employees are not only part of history, they're making history.

Northrop Grumman is seeking an experienced Splunk Administrator to join its dynamic team of technical professionals in the Redondo Beach, CA area.

Roles and responsibilities include (but are not limited to):

• Perform as the lead Splunk Administrator responsible for engineering, administration, deployment, troubleshooting, and maintenance for a large-scale enterprise network.

• Implement and maintain Splunk platform infrastructure and configuration, involved in standardizing Splunk forwarder deployment, configuration and maintenance across UNIX and Windows platforms.

• Provide regular support and guidance to Splunk project teams on complex solution and issue resolution.

• Monitor and maintain Splunk performance, availability, and capacity - Storage performance, CPU, Memory, Forwarder installations and patching upgrades.

• Create & customize Splunk dashboards, visualizations, configurations using customized Splunk queries, reports, scheduled searches, and alerts, Splunk workflow actions, KPI services and undertake day-to-day operational and user support.

• Provide input to infrastructure team on Splunk system requirements and recommended upgrades or configuration changes as needed.

• Provide input to governance and compliance implementation text and test result language in execution of the Risk Management Framework throughout system lifecycle.

• Participate in structured configuration change board to maintain required security controls and configuration management.

• Perform technical research on Information Technology topics, as requested, and produce presentations and recommendations.

• Perform occasional travel to customer or other Northrop Grumman sites in support of troubleshooting, testing, and deployment activities.

• Make recommendations to purchase hardware and software, coordinate installation, and provide backup recovery.

• Report project status as required for all recurring and non-recurring efforts.

• Work under minimal direction and independently determine and develop approach to solutions.

Basic Qualifications

• PhD with 4 years of experience; or a master's degree with 7 years of experience; or a bachelor's degree with 9 years of experience; or an associate degree with 11 years of experience; or a High School Diploma/GED with 13 years of experience is required.

• Candidates must have a current DoD Top Secret level security clearance with an original adjudication date, or a periodic reinvestigation, completed within the last 6 years and the ability to maintain an active security clearance to be considered.

• Current DoD 8570 IAM-III certification or the ability to obtain within 6 months of hire.

• Experience with configuring and maintaining large Splunk environments (e.g., multi-site clusters).

• Experience in Splunk architecture and various components (indexer, forwarder, search head, deployment server), heavy and universal forwarder.

Preferred Qualifications

• The ideal candidate will have a bachelors or master's degree in IS related field, a current CISSP, and 8 years of experience with configuring and maintaining large Splunk environments (e.g., multi-site clusters).

• Splunk certifications such as Splunk Certified Administrator or Splunk Certified Architect

• Strong knowledge in Windows and Red Hat Linux operating systems.

• Knowledge of RMF, Trellix ePO, NESSUS, SCAP, POA&Ms, DAAPM, NISPOM, system audits, vulnerability scanning, and DCSA system security package development.

• Experience with designing Windows domain architectures, including but not limited to active directory, GPOs, policies, and permissions.

• VMware and ESXi (6.x or higher) configuration and management experience.

• Highly organized with ability to manage multiple priorities and time sensitive deliverables. Hands on, self-starting, disciplined and detail-oriented individual with ability to work independently in a high-volume environment.

• Experience performing and operating in an Agile framework (e.g., Lean-Agile, SAFe)

• Efficient, proactive, responsive team player with excellent written and oral communication skills; able to interface effectively with all levels of corporate management and government customers.

• Experience with Splunk system design and architecture.

• Experience managing Windows and Red Hat Linux operating systems.

• Hands on experience in scripting languages, regular expressions to automate tasks and manipulate data, index, and search time field extractions.

• Excellent technical document preparation and writing skills.

• Experience with the Risk Management Framework or similar cyber-security, risk-based frameworks.

• Experience with implementing DISA Security Technical Implementation Guides (STIG).

• Experience in communicating with various levels of leadership.

Salary Range: $129,700.00 - $194,500.00

The above salary range represents a general guideline; however, Northrop Grumman considers a number of factors when determining base salary offers such as the scope and responsibilities of the position and the candidate's experience, education, skills and current market conditions.

Employees may be eligible for a discretionary bonus in addition to base pay. Annual bonuses are designed to reward individual contributions as well as allow employees to share in company results. Employees in Vice President or Director positions may be eligible for Long Term Incentives. In addition, Northrop Grumman provides a variety of benefits including health insurance coverage, life and disability insurance, savings plan, Company paid holidays and paid time off (PTO) for vacation and/or personal business.

The application period for the job is estimated to be 20 days from the job posting date. However, this timeline may be shortened or extended depending on business needs and the availability of qualified candidates.

Northrop Grumman is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class. For our complete EEO/AA and Pay Transparency statement, please visit http://www.northropgrumman.com/EEO. U.S. Citizenship is required for all positions with a government clearance and certain other restricted positions.