Responsibilities &

QUALIFICATIONS: RESPONSIBILITIES Administer the Splunk based log management system and analyze the current loggingcapabilities Ensure the Agency Information Security systems administered by the Team are sending allrequired logs to the log management system Maintain the Log Management and Security Information and Event Management system to collectand aggregate IDS/IPS data from network sensors, raw data from collection agents, firewalls(including but not limited to Layer 7 Application Firewalls), proxy servers, DLP, antivirus/endpointprotection software, and vulnerability scanner elements Tune the SIEM and IDS/Intrusion Prevention System (IPS) events to minimize false positives Enroll NRC network and systems information into the SIEM tool, using information from theVulnerability and Compliance Scanning System (VCSS) and input from ISSOs, and perform assetcategorization and privatization Tune the capabilities as practicable to improve efficiency and ensure that reporting capabilities ofthe log management system are working properly Validate that agency log retention

og retention requirements:are configured properly within the agency’s logmanagement system Identify shortfalls in the current capability and identify systems that are not sending logs to theagency log management system Recommend improvements to current processes Provide technical guidance to administrators of other IT systems to ensure their logs are sent tothe agency’s log management system Configure agency’s log management system role-based access controls so that logs for specificsystems can only be accessed by designated administrators REQUIRED

ors REQUIREDors REQUIRED

QUALIFICATIONS Bachelor’s Degree and a Minimum 10 years of relevant

Experience:with Security Information andEvent Management

t Managementt Managementt Managementt Managementt Managementt Managementt Managementt Management

Experience in architecture, design, support, maintenance, and expansion of an enterprise logmanagement/SIEM infrastructure in a highly resilient configuration

Experience in monitoring an enterprise log management/SIEM server and agent infrastructure forcapacity planning and system optimization

Experience in deployment, configuration and maintenance of log forwarder agents across avariety of UNIX and Windows platforms

Experience in collaboration with a variety of IT stakeholders in design and maintenance ofproduction-quality log management/SIEM reports and dashboards to support data analysis andvisualization

Experience in creation and maintenance of documentation related to log management/SIEMinfrastructure configuration and operational processes Advanced system administration

skills with Linux operating systems 5 years of

experience with Splunk Must successfully pass a drug screening Must be able to successfully obtain a Public Trust Telework (must be local to the DC, Maryland, Virginia area) HIGHLY DESIRED SKILLSETS

Experience with Crbil Expereince creating Identity models in SIEM

Experience with Splunk SOAR and UBA tools Knowledge of regular expression, scripting and application development languages (e.g., Pythons, Perl, JavaScript, Linux shell scripting) Overview We are seeking a Splunk Security Engineer to join our team supporting the Nuclear Regulatory Commission in Rockville, MD. TekSynap is a fast growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. “Technology moving at the speed of thought” embodies these principles

• the need to nimbly utilize the best that information technology offers to meet the business needs of our Federal Government customers. We offer our full-time employees a competitive

benefits:package to include health, dental, vision, 401K, life insurance, short-term and long-term disability plans, vacation time and holidays. Visit us at www.TekSynap.com. Apply now to explore jobs with us! The safety and health of our employees is of the utmost importance. Employees are required to comply with any vaccination

requirements mandated by contract, applicable law or regulation. By applying to a role at TekSynap you are providing consent to receive text messages regarding your interview and employment status. If at any time you would like to opt out of text messaging, respond "STOP". As part of the application process, you agree that TekSynap Corporation may retain and use your name, e-mail, and contact information for purposes related to employment consideration. Additional Job Information WORK ENVIRONMENT AND PHYSICAL DEMANDS The work environment characteristics described here are representative of those an employee encounters while performing the

essential functions of the job. Reasonable accommodation may be made to enable individuals with disabilities to perform the

essential functions.

Location:Rockville, MD (Telework, must be local to DC, Maryland and Virginia area. Type of environment: Office Noise level: Medium Work schedule: Schedule is day shift Monday - Friday. May be requested to work evenings and weekends to meet program and contract needs. Amount of Travel:Less than 10% PHYSICAL DEMANDS The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to use hands to handle, feel, touch; reach with hands and arms; talk and hear. The employee is regularly required to stand; walk; sit; climb or balance; and stoop, kneel, crouch, or crawl. The employee is regularly required to lift up to 10 pounds. The employee is frequently required to lift up to 25 pounds; and up to 50 pounds. The vision

requirements include close vision, distance vision, peripheral vision, depth perception, and ability to adjust focus. WORK AUTHORIZATION/SECURITY

CLEARANCE:Must be a U.S. Citizen Must be able to obtain Public Trust OTHER INFORMATION Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. TekSynap is a drug-free workplace. We reserve the right to conduct drug testing in accordance with federal, state, and local laws. All employees and candidates may be subject to drug screening if deemed necessary to ensure a safe and compliant working environment. WAGE INFORMATION Targetsalary:range: $137,000

• $155,000 The salary range displayed is an estimate and will be determined on several factors regarding the individual’s particular combination of

education, knowledge, skills, competencies and experience, as well as contract parameters and organizational requirements. The displayed salary is one component of the total compensation package for employees. EQUAL EMPLOYMENT OPPORTUNITY In order to provide equal employment and advancement opportunities to all individuals, employment decisions will be based on merit, qualifications, and abilities. TekSynap does not discriminate against any person because of race, color, creed, religion, sex, sexual orientation, gender identity, protected veteran status, national origin, disability, age, genetic information or any other characteristic protected by law (referred to as “protected status”). This nondiscrimination policy extends to all terms, conditions, and privileges of employment as well as the use of all company facilities, participation in all company-sponsored activities, and all employment actions such as promotions, compensation, benefits, and termination of employment. TekSynap is committed to ensuring that our online application process provides an equal employment opportunity to all job seekers, including individuals with disabilities. If you believe you need a reasonable accommodation in order to search for a job opening or to submit an application, please contact hr@teksynap.com for assistance.

r assistance.r assistance.

Public Trust