Job Description :
Essential Duties and Responsibilities:
Works with IT engineering, Security and Operations teams to implement and grow Splunk environment
Creates security, incident, and workflow automation
Creates meaningful reports and dashboards in Splunk
Trains peers and other admins on how to utilize Splunk for their respective business needs
Manages Splunk licensing to ensure adequate capacity for inbound data
Ensures proper Splunk data ageing and management of configuration files for optimal system performance
Qualifications:
Knowledge and experience in building and managing Splunk Search Head and Indexer Clusters
Splunk Architect Certification with 3+ years of experience
AWS cloud certification a plus
Knowledge and experience creating automation scripts (i.e. Splunk Processing Language, Python)
Working knowledge of regular expression (regex)