Splunk Engineer

MelkoTech is currently seeking qualified individuals to apply to our Splunk Engineer open position located in Durham, NC. MelkoTech is a WOSB Recruiting Firm located in Virginia.  As a Splunk Engineer, you will oversee and perform all aspects of monitoring related to Splunk technologies in the client environments to provide best practices for optimization, quality assurance, security, design, architecture, engineering, testing, and implementation in the client environment. The Splunk Engineer helps develop strategies and recommends modernizations and innovations to be deployed in the client environment. The Splunk Engineer participates in Program Increment planning activities and in Agile teams aiding in implementing new releases, testing, and reporting status. Possesses and applies expertise on multiple complex work assignments. Assignments may be broad in nature, requiring originality and innovation in determining how to accomplish tasks. Operates with appreciable latitude in developing methodology and presenting solutions to problems. Contributes to deliverables and performance metrics where applicable. Role Responsibilities: - Provide subject matter expertise for all ScienceLogic products and capabilities - Aid in the implementation, configuration, and sustainment of Splunk technologies - Strong working knowledge of Linux and Windows operating systems - Ability to create scripts in Python - Strong working knowledge of AWS, VMware vCenter, Azure. - Experience with L2/L3 networking solutions - Experience with REST APIs, TCP/IP, SNMP, XML, ODBC, Syslog, SSH, ITIL - Resourcefulness and problem-solving aptitude" - May supervise others. Required Education: BS/BA.  4 years experience in lieu of degree is acceptable; AS/AA and 2 years experience in lieu of degree is acceptable Additional Position Requirements: Personnel supporting IT Security tasks shall possess: • Experience or working knowledge of the Open Systems Interconnection (OSI) model, Linux and Windows OSs, security-related Operational Technology (OT), and common encryption algorithms. • Experience handling cybersecurity incidents in on-premises and cloud environments utilizing common investigative tools (e.g., intrusion detection/prevention systems, network traffic, and SIEM). • Experience utilizing, processing, and creating indicators of compromise and threat intelligence to support incident response activities. • Working knowledge of the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) Framework or similar framework for identifying cyber-attack tools, tactics, and techniques. • Experience identifying threat intelligence sources and producing timely fused actionable threat information to support situational awareness and both proactive and reactive incident response activities.