Security Engineer- Splunk

Post Date

Jan 18, 2024

Location

Washington,
District Of Columbia

ZIP/Postal Code

20201
US
Sep 14, 2025 Insight Global

Job Type

Contract-to-perm

Category

Security Engineering

Req #

CHS-675787

Pay Rate

$46 - $70 (hourly estimate)

Job Description

Insight Global is looking to add a clearable Security Engineer to the team in support of a Federal contract. The Security Engineer will be responsible for the following:



Responsible for 24/7 (on call) Security Tool O&M/user support for DHS Security tools. Ensures disaster recovery, databases, server roles (DNS, AD, Remote desktop), AD, DNS, Remote Desktop, Domain Tools, Infoblox DNS Threat Analytics, Database, Disaster Recovery, DbProtect, Venafi, RedSeal, Burp Suite Pro, Suricata, SAVScan, NetWitness, ArcSight, FireEye, Swimelane, Splunk, Grafana, SIEM, Crowdstrike, SOAR, wireshark, Bluecoat, Sophos, Palo Alto MineMeld, Palo Alto DLP, Mcafee (ePO, DLP), Volexity, Symantec Endpoint Protection, ProofPoint, O365 DLP. FireEye (EX, HX, NX), CA PAM, Thycotic Secret Server, Sailpoint, RSA Archer, Tenable/Nessus, Tanium, EnCase and other security tools are functional, configured, accredited, documented, patched, security compliant, monitored, optimized, available 99.95%+ as well as user support. Experience demonstrating capability to meet position duties.

* Perform fullscope administration, maintenance, management, and configuration, patching, upgrades and optimization of security tools, devices, application systems, and servers and sensors within the cybersecurity infrastructure.

* Maintain SIEM applications to collect and aggregate IDS/IPS data from network sensors, raw data from collection agents, firewalls, proxy servers, DLP, antivirus, vulnerability scanner elements and other securityrelevant devices.

* Interface DHS Enterprise and systems information into the SIEM tool using information from the Compliance and Technology Information Assurance Compliance System (IACS) and input from tool ISSOs and perform asset categorization and prioritization.

* Install and/or modify network and/or endpoint security elements, tools, and other systems as required to maintain optimal coverage and performance, as approved by Management.

* Create and maintain standard Tool Maintenance Design Documentation and Test Plans for new and existing security applications and hardware in order to avoid obsolescence and to improve productivity for the DHS user community and for DHS management.

* Create diagrams of new or revised solutions for transition to operational support encompassing the entire "endtoend" configuration flow diagram describing all solution elements.

* Administer, manage, configure, maintain, and tune SOC tools, devices and application systems, servers and sensors, and remediating vulnerabilities.

* Review network security architecture and design, and provide recommendations to the Government Leads

* Configure and manage security tools to optimize data correlation and event discovery and detection.

* Provide security device signature maintenance and performance reports.

* Maintain the SIEM to collect and aggregate alert data from IDS/IPS/DLP network sensors, raw data from collection agents, firewalls, proxy servers, antivirus, and vulnerability scanner elements.

* Enroll DHS network and systems information into the SIEM tool, using information from the Compliance and Technology Information Assurance Compliance System (IACS) and input from ISSOs, and perform asset categorization and prioritization.

Required Skills & Experience

- 6+ years of experience in security engineering role

- 5 years working within a NOC or SOC

- 3+ years of experience with Splunk- expert level

- experience within an agile or devops environment

- clearable US citizen; clean background & credit- background check can take up to 3 months

-prefer cybersecurity certification

Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.