L3Harris is dedicated to recruiting and developing high\-performing talent who are passionate about what they do. Our employees are unified in a shared dedication to our customers’ mission and quest for professional growth. L3Harris provides an inclusive, engaging environment designed to empower employees and promote work\-life success. Fundamental to our culture is an unwavering focus on values, dedication to our communities, and commitment to excellence in everything we do.
L3Harris is the Trusted Disruptor in defense tech. With customers’ mission\-critical needs always in mind, our employees deliver end\-to\-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security.
Job Title: Splunk Administrator/Analyst
Job Code: 36419
Job Location: USA\-TX\-San Antonio
Job Schedule: 5/8: Employees work 8 hours per day, 5 days a week
Job Description:
- L3Harris is currently searching for a Splunk Administrator/Analyst for our San Antonio, TX site. The Splunk Administrator/Analyst position requires an active Top Secret Clearance with SCI eligibility. Seeking an experienced Splunk Administrator to manage and maintain a distributed Splunk installation. The ideal candidate will have a strong background in event log management, custom app creation, and diagnostics, with hands\-on expertise in deploying and optimizing Splunk in both Microsoft Windows and Linux environments. The role will involve resolving technical issues, improving system performance, and ensuring the integrity and efficiency of the Splunk environment. Position allows for a certain degree of creativity and latitude and will report to the engineering site manager and operations manager. Position does not allow for any remote work.
- Provide Network Support services for a Department of Defense (DoD) Senior Leader Network, exercising discretion and independent judgement when events or incidents occur to ensure corrective actions are captured and incidents resolved in an expedient manner.
- Architect, configure, deploy, and customize an enterprise\-level Splunk environment.
- Manage multi\-site index clustering, search head peers, and universal and heavy forwarder deployments.
- Implement and maintain distributed Splunk installations, including cluster master configuration and deployment server management.
- Add new data sources and perform complex data parsing, including regular expressions, index\-time, and search\-time processing.
- Create custom Splunk apps, including searches, alerts, dashboards, custom JavaScript visualizations, views, and reports.
- Design and implement knowledge object and access control standards across the Splunk environment.
- Troubleshoot and resolve errors in the Splunk stack.
- Manage SSL certificates for Splunk traffic, including creation, renewal, and configuration.
- Leverage advanced Splunk search language to query and correlate data from multiple sources.
- Migrate existing operational processes to Splunk for automation and efficiency.
- Document procedures and create Standard Operating Procedures (SOPs) for Splunk operations.
- Collaborate with the security team to improve visibility and incident response through effective Splunk integration.
- Maintain proficiency training based on prescribed and posted NETWORK training guidelines
- Provide Tier I/II engineering support to subscriber aircraft on live missions and serve as a point of entry for any RF field support and/or corrective maintenance actions
- Bachelor’s Degree and minimum 4 years of prior relevant experience. Graduate Degree and a minimum of 2 years of prior related experience. In lieu of a degree, minimum of 8 years of prior related experience.
- Minimum of 2 years of hands\-on experience in designing, configuring, and deploying Splunk in an enterprise environment.
- Splunk Certified Administrator.
- Experience with multi\-site index clustering, search head peers, and forwarder deployments.
- Expertise in event log management, data parsing, and syslog data management.
- Skilled in creating custom Splunk apps, dashboards, and reports.
- Experience in managing SSL certificates for Splunk traffic.
- Proficient in using Splunk’s search language and troubleshooting tools.
- Experience with programming languages such as PowerShell, Python, Visual Basic, or C\+\+.
- Strong understanding of security controls, particularly in a federated environment.
Essential Functions:
Qualifications:
* Must have a Top Secret clearance with eligibility to SCI
* Sec\+ required (The position aligns with 8140 compliance standards, ensuring the candidate has the necessary expertise in security assessment and authorization, federal information processing standards (FIPS), and risk management frameworks (RMF).
Preferred Additional Skills:
\#LI\-SC3
L3Harris Technologies is proud to be an Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug\-free workplace and performs pre\-employment substance abuse testing and background checks, where permitted by law.
Please be aware many of our positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information.
By submitting your resume for this position, you understand and agree that L3Harris Technologies may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions.
L3Harris Technologies is an E\-Verify Employer. Please click here for the E\-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.