Splunk Developer - Load Balancing Tools (5-10 yrs)

Experience :

- 5+ years of experience in Splunk

- Experience administering and/or developing for an enterprise level implementation of Splunk (clustered architecture).

- Proficient in Splunk query language (SPL) and experienced in developing and supporting custom Splunk search head applications for specific use cases.

- Strong technical knowledge of Red hat Linux, Firewalls and Load Balancing principles

- Extensive knowledge and experience of Agile and DevOps.

- AWS - architect and sysops certified or equivalent. Azure and/or GCP experience is also preferred.

- Ansible, CD tools, particularly Jenkins.

- Scripting - Linux Shell & Python.

- Experienced user of Git / GitHub, Selenium, Docker, Kubernetes, Splunk UBA, Splunk Phantom, Syslog-ng and/or syslogs, JIRA, Confluence.

Essential capabilities :

- Strong knowledge of Splunk architecture, administration, and custom development (Splunk certified admin / architect / developer or equivalent experience) across Splunk Enterprise, Splunk Enterprise Security and Splunk ITSI.

- Experience in managing, supporting, deploying and documenting monitoring solutions

- Experience with Splunk data, Splunk reporting, Splunk knowledge objects, Splunk searching & optimization

- Linux OS (preferable Red hat proficiency).

- Excellent communication and analytical skills with ability to present technical details to the stakeholders in technical and non-technical backgrounds.

- Design and implement monitoring solutions for new and existing systems; utilising Splunk and/or other monitoring tools such as Elastic Search, aligned to NAB standard patterns. Also, contribute to the creation of new monitoring patterns where required.

Data onboarding :

- Requirements gathering, design, implementation, and testing, to onboard new data sources to Splunk - via Universal Forwarders, HTTP Event Collector, APIs, syslog etc.

- Map data to Splunk CIM, to meet stakeholder and data governance requirements.

- Deploy and configure Splunk premium add-ons (Enterprise Security and ITSI).

- Provide level 2 technical support. Assist with level 3 incident and problem investigations, service risks and issues for Splunk Enterprise, Splunk Enterprise Security and Splunk ITSI.

- Performance optimisation

- Optimise existing and new search queries and dashboards to improve performance.

- Optimise platform design and configuration to enhance performance, architecture.

- Proactively improve service availability, performance & efficiencies via delivery of metrics, monitoring & incident response processes.

- Be aware of and respond to (reactively & proactively), production degradation of Service Level objectives

Qualification Requirements :

- Tertiary qualification in computer science, information technology

- Splunk Enterprise Certified Admin or Splunk Enterprise Certified Developer or equivalent experience.