Job Description :
Our direct client is looking for a Splunk Architect for a Contract in Richmond, VA.

Job Description:
- We are looking for an experienced Splunk architect to lead the implementation of Splunk for the Enterprise Logging & Analytics project.
- The ideal candidate will be Splunk Certified and have prior experience implementing an operational Splunk environment.
- Review, recommend changes and improve upon the current Splunk Enterprise deployment to include indexer and search head architecture
- Partner with IT stakeholders to develop requirements and create execution plan to utilize Splunk for centralized enterprise log analysis
- Set up forwarders, logging inputs and Splunk apps on a variety of system sources (Linux, Windows, Weblogic, Tomcat, Oracle, SQL Server)
- Create alerts and monitoring for key security and application events
- Develop dashboards and reports for monitoring of real-time log data
- Train users on utilizing Splunk and performing routine activities, to include creating dashboards and alerts
- Advise regarding prioritization of data collection and data retention to achieve maximum results for security and event monitoring.
- Assist with development of Splunk system lifecycle process for continuous improvement and expansion of enterprise logging and data collection
- Provide advice and consulting to identity opportunities for additional Splunk use cases within the enterprise environment

Skill Matrix:
- Experience in an enterprise IT role - Required - 6+ Years
- Experience in an enterprise IT environment as an applications or systems administrator working on Windows and Linux environments - Required - 5 Years
- Experience installing, configuring, and administering Splunk components and architecture - Required - 2 Years
- Experience with Linux and/or Windows scripting languages and automation - Required - 2 Years
- Experience working with various enterprise application and systems logging tools and methods - Required - 2 Years
- Experience setting up Splunk alerts, search filters and dashboards - Required - 2 Years
- Experience with databases, datasets, SQL scripting, and database logging - Highly desired - 2 Years
- Experience with IT security best practices for incident and event management, logging, and monitoring - Highly desired - 2 Years
- Splunk Certified Admin, Architect, or Consultant - Highly desired - 2 Years

Question 1: In what city/state does candidate reside?
Question 2:Is candidate willing and able to travel to Richmond, VA for a personal interview? Manager may elect to conduct an initial phone interview for non-VA candidates. However, ALL candidates are required to attend a personal interiview, NO exceptions.
Question 3: Has your candidate been submitted to CAI in the past? If so, for which VA state agency and when?

*local candidates strongly preferred

Location: Richmond, VA
Type: Contract
Interview: Both Phone and In-Person

Please send resume to "jobs at " with A2657A in Subject for immediate consideration

Client : Confidential