Splunk Admin
1 week ago
Job Summary:
We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers.
Key Responsibilities:
✅ Splunk Deployment & Administration:
Install, configure, and manage Splunk Enterprise and Splunk Cloud.
Handle indexers, search heads, forwarders, and clustering.
Optimize Splunk performance, storage, and scalability.
✅ Security & Splunk Monitoring Solutions:
Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards.
Troubleshoot security-related issues within Splunk.
✅ Customer Interaction & Troubleshooting:
Engage with customers to understand their requirements and provide technical guidance.
Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding.
✅ Splunk Architecture & Implementation:
Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments.
Lead end-to-end Splunk implementations, migrations, and upgrades.
Manage search head clustering, indexer clustering, and data retention policies.
✅ Security & Observability Solutions:
Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI.
Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics.
Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools.
✅ Team Leadership & Customer Engagement:
Lead and mentor a team of Splunk Administrators & Engineers.
Interact with customers to gather requirements, design solutions, and conduct workshops etc.
Review and improve Splunk use cases, dashboards, and data models.
✅ Optimization & Automation:
Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration.
Tune Splunk performance, search queries, and indexing strategies.
Implement best practices for data onboarding, parsing, and CIM compliance.
Must-Have Skills:
✔️ 3+ years of hands-on Splunk experience, including Enterprise Security, UBA, and ITSI.
✔️ Strong expertise in Splunk architecture, data ingestion, parsing, and CIM mapping.
✔️ Deep understanding of SIEM, threat intelligence, and security analytics.
✔️ Proven ability to lead technical teams and drive complex Splunk deployments.
✔️ Strong communication skills – ability to present and explain Splunk solutions, Technical Terms to customers.
✔️ Splunk Certifications (Splunk Architect, Splunk ES Admin, Splunk Core Consultant, ITSI Certified Admin).
✔️ Exposure to machine learning models, anomaly detection, and advanced analytics in Splunk.
Interested can share their updated resume to along with the below mentioned details.
Current CTC:
Expected CTC:
Notice Period:
Preferred Job Location:
-
Splunk Admin
1 week ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary:We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk admin
1 week ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Admin
2 weeks ago
Navi Mumbai, India Capgemini Full timeRole & responsibilities Good knowledge on Splunk monitoring platform Facilitating the integration of new data sources into Splunk.Developing use cases and crafting dashboards in Splunk tailored to our clients' needs.Monitoring and generating reports on the performance metrics of the Splunk environmentDeveloping Application Security and Platform Security...
-
Splunk Admin
6 days ago
Navi Mumbai, Maharashtra, India Capgemini Full time ₹ 9,00,000 - ₹ 12,00,000 per yearRole & responsibilitiesGood knowledge on Splunk monitoring platformFacilitating the integration of new data sources into Splunk. Developing use cases and crafting dashboards in Splunk tailored to our clients' needs. Monitoring and generating reports on the performance metrics of the Splunk environment Developing Application Security and Platform Security...
-
Splunk Admin
2 weeks ago
mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Admin
4 days ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Admin
2 weeks ago
Mumbai, India SHI | Locuz - An SHI Company Full timeJob Summary: We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate...
-
Splunk Engineer
3 weeks ago
Mumbai, Maharashtra, India World Wide Technology Full timeQualifications Experience Minimum of 10 years of experience working with Splunk in an enterprise environment with at least 3 years in a Tier 3 or equivalent advanced technical support role Certifications Splunk Certified Power User Splunk Certified Admin and or Splunk Certified Architect are highly desirable Technical Skills Deep understanding of...
-
Mumbai, Maharashtra, India Capgemini Full time**Job Description**: - **Working with multiple stakeholders on incident Management**: - **Hands on experience in design, Implementation of Splunk architecture**: - **Skill to develop and implement Splunk knowledge objects**: - **Splunk Config management (props/Transforms/Inputs)**: - **Able to do data on-boarding, fields extraction**: - **Experience in...
-
▷ [Apply in 3 Minutes] Splunk Lead
3 weeks ago
Hyderabad, Bengaluru, Mumbai, India Locuz Full timeJob Description Splunk Architecture & Implementation: - Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. - Lead end-to-end Splunk implementations, migrations, and upgrades. - Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: - Architect and configure Splunk...
