Splunk Admin
4 weeks ago
Job Summary:
We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers.
Key Responsibilities:
✅ Splunk Deployment & Administration:
Install, configure, and manage Splunk Enterprise and Splunk Cloud.
Handle indexers, search heads, forwarders, and clustering.
Optimize Splunk performance, storage, and scalability.
✅ Security & Splunk Monitoring Solutions:
Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards.
Troubleshoot security-related issues within Splunk.
✅ Customer Interaction & Troubleshooting:
Engage with customers to understand their requirements and provide technical guidance.
Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding.
✅ Splunk Architecture & Implementation:
Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments.
Lead end-to-end Splunk implementations, migrations, and upgrades.
Manage search head clustering, indexer clustering, and data retention policies.
✅ Security & Observability Solutions:
Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics.
Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools.
✅ Team Leadership & Customer Engagement:
Lead and mentor a team of Splunk Administrators & Engineers.
Interact with customers to gather requirements, design solutions, and conduct workshops etc.
Review and improve Splunk use cases, dashboards, and data models.
✅ Optimization & Automation:
Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration.
Tune Splunk performance, search queries, and indexing strategies.
Implement best practices for data onboarding, parsing, and CIM compliance.
Must-Have Skills:
✔️ 3+ years of hands-on Splunk experience, including Enterprise Security, UBA, and ITSI.
✔️ Strong expertise in Splunk architecture, data ingestion, parsing, and CIM mapping.
✔️ Deep understanding of SIEM, threat intelligence, and security analytics.
✔️ Proven ability to lead technical teams and drive complex Splunk deployments.
✔️ Strong communication skills – ability to present and explain Splunk solutions, Technical Terms to customers.
✔️ Splunk Certifications (Splunk Architect, Splunk ES Admin, Splunk Core Consultant, ITSI Certified Admin).
✔️ Exposure to machine learning models, anomaly detection, and advanced analytics in Splunk.
Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details.
Current CTC:
Expected CTC:
Notice Period:
Preferred Job Location:
-
Splunk admin
2 weeks ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary:We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk admin
3 weeks ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Admin
3 weeks ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Admin
4 weeks ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Consultant - Splunk Admin Engineer
4 days ago
Mumbai, Maharashtra, India GENPACT Full timeGenpact NYSE G is a global professional services and solutions firm delivering outcomes that shape the future Our 125 000 people across 30 countries are driven by our innate curiosity entrepreneurial agility and desire to create lasting value for clients Powered by our purpose - the relentless pursuit of a world that works better for people - we serve and...
-
Splunk Admin
2 weeks ago
Mumbai, India NMS Consultant Full time**Job description** Must Have Skills: - CEH, SIEM, **Splunk**, Security Operations - Role involving **Splunk** **Administration**. - Perform analysis on the reported incidents, determine the root cause, recommend the appropriate solution - Monitor and review the L1 activities - Should provide real time situational awareness to customer's stakeholders -...
-
Splunk Admin 6 to 9 Years Bengaluru
7 days ago
Mumbai, Maharashtra, India Capgemini Full timeChoosing Capgemini means choosing a company where you will be empowered to shape your career in the way you’d like, where you’ll be supported and inspired by a collaborative community of colleagues around the world, and where you’ll be able to reimagine what’s possible. Join us and help the world’s leading organizations unlock the value of...
-
Splunk Admin 6 to 9 Years Bengaluru
2 weeks ago
Mumbai, India Capgemini Full time**Job Description**: - **Onboard log sources to Splunk via Universal/Heavy forwarders, Syslog-ng, HEC, DB-Connect and AWS Add-on.**: - **Adjusting ingesting data for Data parsing, timestamp, latency and other issues.**: - **Installation and configuring of Splunk UF service on Linux and Windows platforms.**: - **Maintain, Manage and Monitor Splunk...
-
Splunk Admin 6 to 9 Years Bengaluru
2 weeks ago
Mumbai, India Capgemini Full timeOnboard log sources to Splunk via Universal/Heavy forwarders, Syslog-ng, HEC, DB-Connect and AWS Add-on. - Adjusting ingesting data for Data parsing, timestamp, latency and other issues. - Installation and configuring of Splunk UF service on Linux and Windows platforms. - Maintain, Manage and Monitor Splunk Infrastructure (Identify bad searches, dashboards...
-
Engineer
2 weeks ago
Mumbai, India Network Intelligence Full timeWe have an opportunity for the Sr SIEM Admin - Splunk profile. Location: Bahrain As discussed over call, please find Details below : About NI Network Intelligence, incorporated in 2001, is a committed and well-recognized provider of services, solutions and products in the cybersecurity space. Our team of nearly 400 professionals have made a mark for...
