Job Description
We are looking Splunk consultants with Architect or consultant certification for one of our client Remote working with 2 days onsite
* Design, support and maintain the Splunk infrastructure in a highly available configuration.
* Perform installation, configuration management, license management, data integration, data transformation, field extraction, event parsing, data preview, and Apps management of Splunk platform.
* Standardize Splunk server builds, configuration, deployment, and troubleshooting of Splunk components; search heads, indexers, universal forwarders, heavy forwarders and maintenance across a variety of UNIX and Windows platforms.
* Splunk ITSI and DBConnect etc., configurations and setup.
* Leverage programming skills in Perl or Python to automate various aspects of the Splunk environment.
* Create user interfaces that will allows customers to manage their own Splunk instances.
* Troubleshoot Splunk server, forwarder problems and issues.
* Monitor the Splunk infrastructure for capacity planning and optimization.
* Upgrade/patch, and monitor all SIEM related tools and products
* Be a Splunk language (SPL) expert
* Understanding of SIEM & logging fundamentals.
* Develop dashboards, report, and alerts using data feeds ensuring data quality and execution of customer's use cases.
* Act as the Splunk liaison for Splunk technical questions, issues or escalations.
* Maintain current functional and technical knowledge of the Splunk platform and future products.
* Cloud experience is beneficial