Job Information
Automation and Control Strategies (ACS Pro Staffing) System Administrator in Vancouver, Washington
Location: Vancouver, Washington Type: Contract Job #7345 Overview: ACS Professional Staffing is looking for an employee to work on-site with our client. The System Administrator 3 will be an integral part of a group in the business line of the company. This position will manage a large data analytics platform, automated and custom alerts, and reporting and correlation in support of multiple missions. Moreover, the system administrator will provide documentation and perform compliance activities required to perform these functions. This full-time position is located in Vancouver, WA. Pay range: $45.75 - $65.36 Benefits: Paid holidays: 11 PTO: Starting at 10 days Sick Leave: Up to 56 hours per year (prorated based on start date) EAP: Employee Assistance Program Benefit Options Available: Medical, Dental, Vision, FSA, DCA, LPFSA, HSA, Group Life/AD&D, Voluntary Life/AD&D, Voluntary Short-Term Disability, Voluntary Long-Term Disability, Voluntary Critical Illness, Voluntary Accident, 401k (immediately eligible for employee and employer contributions - employer match up to 4%) Other benefits include the following: Calm App, Access Perks, Brio Health Responsibilities: With company Manager and technical lead oversight, use professional level skills/ knowledge to perform system administration of the following systems, including the following: Configuring applicable software and systems, maintaining local documentation, installing/updating/removing software, applying change control processes and procedures, planning and preparing for future growth, trouble-shooting and resolving technical issues, and performing system-related training for Splunk infrastructure. With company Manager oversight and approval provide the following Splunk support: Hands on Splunk administration experience of a multi-site distributed Splunk environment including experience with data onboarding, indexer clustering, search head clustering, and index replication. Monitoring Splunk system updates and planning, reviewing, and executing patch/upgrade deployments. Perform on-boarding of standard and custom data sources in Splunk and have a thorough knowledge of using regular expressions to create extractions. Provide production and infrastructure support, root cause analysis, troubleshooting, health monitoring, etc. Installing and configuring new deployments of Splunk Enterprise and Premium Apps such as Splunk Enterprise Security and Splunk IT Service Intelligence. Setting up Splunk Forwarding for new application tiers introduced into the environment. Constantly re-evaluate our product to improve architecture, knowledge models, user experience, performance and stability. Understand current issues and propose potential Splunk solutions. Educating new users on the value that Splunk provides and its technical capabilities. Monitoring the Splunk infrastructure (Identify bad searches, dashboards, overall health of Splunk). Conduct frequent capacity review of Splunk environments. Build automation to improve day-to-day operations towards self-service capabilities. Integration of threat intelligence feeds and with other security tools to facilitate automation. Perform deployments of Splunk configurations using Splunk Deployment Server, Cluster Master, and Deployer to support data onboarding and other maintenance/upgrade activities. Develop search queries for support incident investigative efforts to correlate events. Define, develop, implement, tune and monitor process and procedures for to support and maintain Splunk ES and ITSI, to enable proactive issue identification and resolution. Configuration management of Splunk ES and ITSI with future growth in mind to enable a balance between scalability, performance, stability, reliability, and agility. Apply expertise in Splunk administration in UNIX/Linux and troubleshooting OS-level issues.