Job Description
Job description: Data Engineer (Splunk) About GuROO At GuROO our mission is to deliver Enterprise Network Engineering, Enterprise IT, Program Management, and Project Management support to large commercial corporations, government agencies, and government-contracted agencies within the Washington, DC metropolitan area and beyond. We have an innovative approach to helping our customers discover, evaluate, implement, and manage advanced technology projects to enhance our clients’ needs. Candidates are expected to have a strong work ethic and possess the ability to work as a critical member of a team in pursuit of mission objectives and in the support of our customers. We value candidates who are detail-oriented while also being able to think and react quickly to emerging and unique problem sets. To be successful in this role, you'll be able to rapidly adapt and learn how to operate the front and back end of new products and processes. Positions are located at: Boiling Airbase Here’s What you’ll Need: Candidates must possess a current TS/SCI security clearance Current Security+, SSCP, CySA+, PenTest+, CASP+, GCIH, CISSP, GSLC Comptia Security + or equivalent in order to be considered. Position requires candidate meets 8570 requirements. Responsibilities & Duties include, but are not limited to: Design, deploy, and manage the Splunk data platform to collect and analyze machine data from networks, systems, and applications. • Responsible for data onboarding, building dashboards, and managing the Splunk infrastructure. • Configure and manage Splunk forwarders, indexers, and search heads for high-performance environments. Normalize and transform raw data to support analytics and security monitoring Tune and monitor Splunk systems to ensure performance, availability, and scalability Implement data retention, archival, and lifecycle management strategies Collaborate with security, operations, and development teams to integrate log sources and enable analytics workflows Support troubleshooting, root-cause analysis, and operational problem-solving Work Location One location Job Type: Full-time Benefits 401(k) 401(k) matching Dental insurance Health insurance Life insurance Paid time off Parental leave Retirement plan Vision insurance License/Certification CCNP (Required) T3: Splunk Enterprise Certified Admin (or Power User + demonstrable admin); Security+, T4: Splunk ES expertise (ES cert track if applicable); CISSP (or GCIH + CASP+) (Required) T3: Splunk ES track; CySA+; GCIH, T4: Cloud SIEM integration; GCIA (threat hunting/network analysis); SOAR tool certs (Preferred) Security clearance Top Secret (Required) Education/Experience Bachelor’s degree in technical field. (Preferred). 5+ years in data management or systems administration, with at least 3 years in a Splunk environment. Ability to Commute: DC Work Location: In person