Our client is looking for a Splunk Technical Expert to focus on Implementation, Configuration and Administration of Splunk.
In your role you will be responsible for the analysis, design, sizing, implementation and operation of our client ESM module on the Splunk platform. Specifically:
Maintain solution architecture in line with business requirements and suggest improvements.
Lead the effort and work towards improving the existing process and procedures required for security monitoring operations.
Improve the Splunk enterprise environment and extend it with additional Search heads and Indexers.
Support the deployment with data feeds from various new log sources.
Assist with installation and configuration of new supporting applications.
Perform system troubleshooting, editing and maintaining Splunk configuration files and apps.
Monitor and maintain Splunk performance, availability and capacity
Provide expert best practices in adoption, expansion and creation of use cases in Splunk.
Develop custom alerts, dashboards and search queries to support members from Security monitoring team.
Maintain technical and user manuals up-to-date.
Bachelor/Master or equivalent by experience in IT System administration
Splunk Certified Admin
Required knowledge / Experience
4+ years of experience in a senior Splunk role working in a clustered Splunk environment with 2+ years of experience with use case creation.
Mandatory Solid and proven experience with the following: