Splunk Administrator

JOB SUMMARY

We're looking for a Splunk Administrator to manage and maintain Splunk log management infrastructure, ensuring optimal performance and security. Key tasks include configuring, monitoring, troubleshooting, and developing dashboards for data analysis.

RESPONSIBILITIES

1. Serve as the Splunk Administrator for the organization.
2. Install, configure, and administer Splunk infrastructure components, including forwarders, indexers, search heads, and deployment servers.
3. Design and implement Splunk data retention and indexing strategies.
4. Develop and maintain Splunk dashboards, reports, and alerts to provide meaningful insights to business stakeholders.
5. Troubleshoot and resolve Splunk infrastructure issues and performance bottlenecks.
6. Collaborate with other IT teams to integrate Splunk with other systems and applications.
7. Ensure compliance with security and data privacy policies and standards.
8. Hands-on resolution of technical integration problems with Splunk security solutions.
9. Expertise in IT operations and data analytics is crucial.

QUALIFICATION & EXPERIENCE

• Splunk Certified Administrator or demonstrable ability to administer Splunk Enterprise and related solutions.
• 5 – 7 years of strong knowledge and experience in Splunk architecture and infrastructure.
• Ability to install, configure, and maintain Splunk enterprise applications.
• Strong knowledge in Splunk search language and creating complex searches and reports.
• Experience in designing and implementing Splunk dashboards and visualizations.
• Experience in integrating Splunk with other systems and applications.
• Knowledge of security technologies including SIEM, SOAR, threat intelligence, incident response, endpoint security, and vulnerability management.
• Strong analytical and problem-solving skills to diagnose and troubleshoot issues.
• Excellent communication and interpersonal skills to collaborate with cross-functional teams.
• Self-driven, curious, collaborative, and committed to working in a fast-paced, customer-focused environment.

• Experience with:

• Operating Systems: Windows and Unix/Linux

• Enterprise Software: Antivirus, Email, TIP, DBs, etc.

• Cloud platforms: AWS, Azure, or GCP

• Scripting: Python, Ansible

SKILLS AND ATTRIBUTES:

• Good interpersonal and communication skills, high adaptability, and positive attitude are expected.
• A team player with determination to drive to excel.
• Excellent customer service skills.
• Self-motivated with a strong drive to succeed.