Job Description :
Job ID: ITP181107-01/02

Priority: HIGH

# of Positions: 2

Job Title: Splunk Administrator (1-position);

Location: Reston, VA

Duration: 6 months+

Anticipated start-date: 2-3 weeks including Background Check

Job Description:

Qualifications:

Install and configure new Splunk Search Head(s) and Index(ers)

Splunk Technical Add-on installation/configuration

Splunk Forwarder deployment and configuration

Data import and field extraction

ITSI and Splunk custom Dashboard and report development

Alert definition and setup

The consultant will be proficient in network management technologies, as well as Cisco router and switch configuration,
Unix OS, and basic scripting (Shell, Perl, PHP Strong communications skills and ability to leverage tools to produce
effective reports for clients and senior management are also required.

Minimum requirements:

2+ years minimum working with Splunk in app creation or architecture

Experience working with large implementations with search head clustering and 3+ search heads.

Experience working with Index Clustering with 8+ indexers and more than 1TB of indexed volume.

Integration experience with either AD/LDAP or Single Sign-On (SSO)

Experience with any combination of these:

REST API

ODBC integration

DB Connect

External Scripting

Experience creating Splunk Apps

Heavy scripting experience with JavaScript, Perl, shell, python, other is a plus

Experience deploying applications via Deployment Server or the Splunk Deployer

Explicit experiencing working on and configuring the following:

Searchhead Clustering

Index Clustering

Indexer deployment

Varying Retention configuration

Hot & Cold Data configuration

Searchhead deployment

Deployer

App Creation

Access Controls