Splunk Architect - Configuration Management (8-10 yrs)

Role : Splunk Architect.

Location : PAN India.

Must Have Technical skills :

Splunk Architect or Admin Experience :

- Design of Splunk Single Site or Multi-site distributed deployment.

- Splunk Single and multisite cluster admiration experience.

- Cluster maintenance, cluster rolling restart activity, cluster add and remove indexers, cluster apps deployment.

- Splunk Software Upgrade and migration.

- Splunk TA-addon, Search Apps deployment.

- Splunk KV store management.

- Experience in splunk SPL language.

- Create splunk dashboards, write splunk search, familiar with splunk search functions.

- Create search, alerts

- Experience is creating summary indexes, matrix indices.

- Splunk Data model development.

- Splunk field extractions and regular expressions.

- Splunk knowledge objects development, event types, macro creation.

- Splunk Data on-boarding experience for Security devices, OS platform, Application logs, DB audit trail logs and Custom addon creation.

- Create splunk deployment server apps and Deployment of apps.

- Splunk TA addon installation, create parsing rules and transform rules.

- Splunk ES, UBA, experience preferred.

- Splunk ES app upgrade experience.

- Splunk DB connect app Management and troubleshooting.

- Splunk smartstore setup and management.

- Splunk HF/UF and HEC management.

- Syslog-NG or rsyslog configuration management.

- Splunk Workflow actions creation management.

- Generic Managerial Skills.

- Exposure to modern programming in at least one or more modern languages (Python, JavaScript, PowerShell).

- Expertise in data visualization.

- Familiarity with engineering concepts is a must system integration, technical architecture, business intelligence, infrastructure, technology research, new technology development, etc.

- Experience implementing and/or consulting on DevOps principles.

- Hands-on experience with continuous delivery pipelines, testing strategies, and quality validation.

- Out-of-the-box thinker driven to lower costs using conventional/non-conventional solutions.

- Excellent time management and organizational skills.

- Project Management activities develop and manage lab infrastructure create new attack. scenarios and test the SIEM, SOAR capabilities to enhance

- MDR service analyze security events and alerts to identify potential threats and anomalies proficiency in scripting language (eg. , Python, PowerShell) for automation and integration tasks.

- Strong analytical and problem-solving skills with attention to detail.

Certifications and Trainings :

- Splunk Admin Certification or Architect certification desired.

- Splunk Core Certified Power user.

- Splunk Custer Administration.

- Splunk Troubleshooting.

- Splunk Architecting and Deployment.

- Splunk Knowledge Manager and Search expert level trainings.

Exp : 8 - 10 years