Frontend Splunk Engineer

ResponsibilitiesPeraton is seeking an experienced Splunk Front-End Engineer to design, build, and maintain rich, user-focused dashboards and reports. You’ll translate raw event data into actionable visualizations for asset managers, executives, and security operations teams. Prior FAA experience is highly desirable. Direct collaboration with FAA customers is expected. Remote position with occasional local on-site meeting support in the Washington, DC, Oklahoma City, OK or Egg Harbor Township, NJ area required.KEY RESPONSIBILITIES• Architect and implement Splunk dashboards for data-center asset inventory and vulnerability reporting• Build Executive dashboards that filter and highlight critical assets for situational awareness• Normalize dashboard layouts, panels, and visualizations to a consistent styling and naming convention• Optimize searches and SPL queries for performance and scalability• Integrate new data sources and onboard security systems into Splunk• Map CVE and asset owner data into asset-centric dashboards• Produce and maintain dashboard documentation: data sources, queries, drill-downs, and user guides• Mentor junior engineers and lead knowledge-transfer sessions• Collaborate with stakeholders to plan new dashboards, define requirements, wireframes, and success metrics. QualificationsREQUIRED QUALIFICATIONS:Bachelor’s degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field with 5 years of relevant experience; or Masters with 3 years of relevant experience; or High School with 9 years of relevant experience3 years proficiency with SPL, Dashboard Studio, data models, and the Asset Framework3 years experience using the following tools and technologies: Splunk Enterprise (Search, SPL, Dashboard Studio, Data Models, Asset Framework), Splunk IT Service Intelligence (ITSI),Splunk Security Essential, JIRA, Git, REST APIs, JSON,Basic CSS/HTML for dashboard themingUS Citizenship required with the ability to obtain an FAA Public Trust clearance prior to start.PREFERRED QUALIFICATIONS:Bachelor’s degree in Computer Science, Cybersecurity, Engineering, Information Systems, Mathematics, Technology, or related IT field with 6 years of relevant experience; or Masters with 4 years of relevant experience; or High School with 10 years of relevant experienceMinimum 6 years hands-on experience building and supporting Splunk dashboards, reports, and saved searchesCertified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Ethical Hacker (CEH), Certified Authorization Professional (CAP), Security+, Information Technology (IT) certification, or equivalent certification (Must obtain within 12 months of start if not currently certified.)Strong understanding of asset-centric reporting, CVE tracking, and executive situational awareness use casesProven ability to optimize Splunk search performance and design intuitive UI layoutsExcellent documentation skills and experience transferring knowledge to cross-functional teamsIn-depth understanding of the Continuous Diagnostics and Mitigation (CDM) program and its phases (vulnerability management, configuration management, identity and access management, and incident response)Proficiency in Zero Trust principles, including micro-segmentation, least-privilege access, and continuous verification of users, devices, and servicesExpertise in the NIST Risk Management Framework (RMF) (SP 800-37/SP 800-53), from categorization through monitoring and continuous authorizationFamiliarity with the Cybersecurity Assessment and Secure Mission (CASM) model for evaluating control effectiveness and mission impactKnowledge of Federal Information Security Modernization Act (FISMA) requirements and annual reporting processesExperience applying FedRAMP security controls for cloud service providers and managing authorization packages (SSP, SAR, POA&M)Understanding of DISA STIG and SCAP standards for system hardening and automated compliance checkingAbility to map organizational controls to CISA CDM dashboard metrics and drive dashboard data integrationsPeraton OverviewPeraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world’s leading mission capability integrator and transformative enterprise IT provider, we deliver trusted, highly differentiated solutions and technologies to protect our nation and allies. Peraton operates at the critical nexus between traditional and nontraditional threats across all domains: land, sea, space, air, and cyberspace. The company serves as a valued partner to essential government agencies and supports every branch of the U.S. armed forces. Each day, our employees do the can’t be done by solving the most daunting challenges facing our customers. Visit peraton.com to learn how we’re keep