• Splunk Developer

    Posted Date 2 months ago(11/19/2019 9:14 AM)
    Requisition #
    Security Clearance
    Full Time
    Job Category
    Software Engineering
  • Responsibilities

    We are seeking Splunk Developers (All levels) to support our Internal Revenue Service (IRS) client. As part of the design and implementation effort, the Splunk developer will participate in various aspects of the implementation, including using Splunk to develop a proof of concept where legacy information systems are migrated to Splunk Enterprise. The Senior Splunk Developer will have to model data from several legacy and/or modern applications before ingesting the data into Splunk. The Splunk Developer will work closely with government personnel and other Noblis professionals in a team environment.


    Job Duties include:
    * Design and develop an “end to end” electronic transaction visibility, including large scale processing, integration, and analysis of system logs and databases in Splunk.
    * Develop statistical behavior models, and provide support for the development of machine learning approaches.
    * Develop visualization dashboards and indicators that identify anomalous activities.
    * Assist with the development of project status briefings and dashboards for IRS executives
    * Interact directly with client project team members and operational staff.

    Client Engagement

    • Begin developing relationships one level up and two levels down. Identify and support opportunities to expand project scope beyond current deliverable and actively share information about clients’ emerging support needs and trends with team members and management.
    · Participate on proposals


    Bachelor's Degree from an accredited college or university required, and a high school diploma and an additional four (4) years of related work experience can substitute for a degree

    At least five years of experience in security applications and systems related audit and accountability Splunk expertise with strong information security experience and have mastered the art of

    working with regular expressions to effectively extract key tokens of data into meaningful fields.

    Experience with relational databases is a plus.

    Experience with application servers being used for the extraction, transformation, and loading (ETL) of operational logs and individuals audit data deposited in a staging area for generating audit analysis reports.

    Experience with AMDAS on MQ Series will be critical. Cyber security experience.

    Familiarity with the configuration file options that are not available through the GUI.

    A sophisticated understanding of Splunk “Search” language. A deep understanding of Splunk Dashboards, Reports, Lookup Tables, and Summary Indexes.

    Knowledge of how to customize Dashboards via the XML source.

    Awareness of the Common Information Model and how to apply it directly and indirectly to data feeds.

    Expert-level capabilities with regular expression.

    Experience with Splunk Apps (both using and making).

    Intermediate to Expert -level capability with the Python Scripting Language.

    Awareness of how to handle null data and its impact on statistical analysis.

    Experience with reviewing, analyzing and coordinating requirements for ingesting auditable and actionable events into Splunk.

    Proven ability to work on and with teams comprised of the primary client and other client stakeholders dispersed across geographical sites.

    Excellent verbal and written communication skills.


    Candidates must meet requirements to obtain and maintain an IRS Minimum Background

    Investigation (MBI) clearance (active IRS Moderate Risk MBI clearance is a plus).

    Candidates must be a US Citizen or a Legal Permanent Resident (Green Card status) for 3 years




    Experience with administering Splunk instances, Universal Forwarders

    Experience designing and implementing medium to large Splunk instances

    Experience with implementing Splunk within cloud environments

    Experience implementing Splunk UBA and ES modules

    Experience with DHS's Continuous Diagnostics and Mitigation Program

    Experience writing Splunk Technical Add-ons



    Noblis and our wholly owned subsidiary, Noblis ESI, are solving difficult problems that help our government and our country. We bring the best of scientific thought, management, and engineering expertise with a reputation for independence and objectivity. We support a wide range of government and industry clients in the areas of national security, intelligence, transportation, healthcare, environmental sustainability, and enterprise engineering. Learn more at Noblis -About Us


    Why work at a Noblis company?

    Our employees find greater meaning in their work and balance the other things in life that matter to them. Our people are our greatest asset. They are exceptionally skilled, knowledgeable, team-oriented, and mission-driven individuals who want to do work that matters and benefits the public.


    Noblis has won numerous workplace awardsNoblis maintains a drug-free workplace and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law.

    Apply for this job

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Want to know about available job opportunities at Noblis? Want to receive personalized alerts with jobs that match your skills and interests? Join the Noblis Talent Connection.