Systems Engineer - Security Information & Event Management (SIEM)

Program Overview



  • USDA has deployed Splunk as the SIEM solution. We are seeking an experienced professional who has prior experience in working with SIEM systems, preferably with SPLUNK. 

    The individual would be responsible for:

  • Perform troubleshooting and maintenance activities on the SPLUNK system deployed by the Department of Homeland Security (DHS) in support of the CDM program
  • Troubleshoot and maintain CDM phase 1 SIEM system
  • Troubleshoot and maintain systems including tasks involving memory management, process management, performance tuning and system monitoring
  • Install, configure, maintain, and monitor system software used for the support of operational activities
  • Ensure systems are patched when vendor releases new patches
  • Document changes to configuration, operating processes, A&A documentation, Contingency Plan and architectural documentation of ISC
  • Ensure adherence to ISC Change Management process and procedures
  • Respond to information requests by ISC management
  • Forward documented customer requests to appropriate technical staff
  • Attend meetings at the request of ISC and take notes as requested
  • Notify ISC Management and customers of unscheduled production outages
  • Check for trouble tickets on issues involving system
  • On an as needed basis provide technical input to Audit findings and POA&Ms
  • Provide recovery support, setup and administration (remote and on-site as needed). This may require work outside of normal business hours where standard schedule will be adjusted to accommodate these changes
  • Provide training to Agency customers on the use of the system
  • Install, configure, and maintain data flows between the CDM tools to support the dashboard feed to the DHS dashboard to Archer
  • Ensure the system is maintained and available for USDA agency personnel access
  • Provide input to the strategic and tactical planning process upon request
  • Proactively recommend changes and/or enhancements to ISC security applications to provide better efficiency, productivity, stability and/or cost savings within the larger scope of each projects design requirements

Our Team

Apply

Equal Opportunity Employer