Enterprise Logging Solution Lead
Role details
Job location
Tech stack
Job description
- Guide the evolution of CBP's enterprise-wide SIEM and logging architecture, one of the most critical capabilities supporting 24/7 SOC operations.
- Shape how CBP ingests, analyzes, and operationalizes massive volumes of security telemetry across cloud and on-prem environments, enabling threat detection, audit readiness, and realtime security insights.
- Engineer advanced logging pipelines, lead implementations of new data sources, develop dashboards used by mission owners and executives, and modernize SIEM capabilities that directly support national security operations.
Requirements
Cyber Defense,Information Assurance,Information Technology Security,System Security,Systems Engineering
Certifications:
Splunk Enterprise Certified Architect | Splunk - Splunk, Certified Information Systems Security Professional (CISSP) | International Information System Security Certification Consortium (ISC2) - International Information System Security Certification Consortium (ISC2)
Experience:
5 + years of related experience, * Secret withTop Secret eligibilityclearancerequired.
- Minimumof five (5)last years of experience serving as a senior Certified Splunk Administrator or Architect.
- Understandingand practical experience in applying project management principles.
- Experience with interconnected, heterogeneous systems.
- Strong understanding of industry standards and technologies with experience in the application supporting a Federal Government security operations organization.
- Experience in an enterprise IT environment as an applications or systems administrator working in Windows and Linux environments.
- Experience with Linux or Windows scripting languages and automation.
- Strong networkingbackgroundandsecurity background.
- Experience with cloud orchestration tools and a strong understanding of Amazon Web Services cloud.
- One of the following certifications (listed inorder ofpreference): Certified Splunk Architect (II) or Certified Information System Security Professional (CISSP)
EDUCATION AND EXPERIENCE
- Bachelor'sdegree in computer science, information technology, or related fieldpreferred.
- Previousor Current CBP Background Investigationpreferred.
Benefits & conditions
The likely salary range for this position is $136,000 - $184,000. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.
Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.