Job Description :
General Description:
Ensures the timely and accurate execution of Splunk application administration duties; deploys, manages, and troubleshoots complex Splunk Enterprise environments. Has understanding of Splunk best practices and deployment methodologies.
Essential Duties and Responsibilities:
Works with IT engineering, Security and Operations teams to implement and grow Splunk environment
Creates security, incident, and workflow automation
Creates meaningful reports and dashboards in Splunk
Trains peers and other admins on how to utilize Splunk for their respective business needs
Manages Splunk licensing to ensure adequate capacity for inbound data
Ensures proper Splunk data ageing and management of configuration files for optimal system performance
Qualifications:
Knowledge and experience in building and managing Splunk Search Head and Indexer Clusters
Splunk Architect Certification with 3+ years experience
AWS cloud certification a plus
Knowledge and experience creating automation scripts (i.e. Splunk Processing Language, Python)
Working knowledge of regular expression (regex)