Splunk(103744)

**Splunk(103744)**:

- 4-15 Years- Full Time Jobs- Market Rate- India**#Redhat**

**#Linux**

**#Firewalls**

**#And**

**#Load**

**#Balancing**

**#Principles**
**- The Splunk ITSI architect position is a key position/role to support one of our customers, responsible for Splunk ITSI architecture and administration (Splunk certified architect preferable) across Splunk
- Enterprise and Splunk ITSI. This role is required for assessing, designing, deploying, and operating clustered Splunk platforms for Monitoring Platform (Splunk). Also, This profile should have Splunk/ITSI
- Developer background in designing and developing production-quality custom
- Splunk dashboards using JavaScript, CSS, and advanced HTML on a large-scale
- Enterprise Splunk environment consisting of Splunk
- Enterprise and Splunk IT Service Intelligence along with the heterogeneous tools integration experience

**Key Responsibilities**:

- Assess, design, deploy, and operate clustered Splunk platforms.
- Modify configurations, pipeline sets, and other modifications to fine-tune Splunk performance.
- Troubleshoot non-performant Splunk platforms including Apps or Technology Add-Ons. Upgrading/Migrating and scaling out Splunk platforms.
- Resolve complex Splunk platform issues.
- Support Splunk platform operations including ITSI, Search Heads Indexer and Heavy Forwarder clusters.
- Ability to understand the business process flow and design & develop an End-to-end business transaction visibility, including large-scale processing, integration, and analysis of system logs and databases in Splunk.
- Ability to discover and mine data to develop meaningful insights into Failed, Unexpected, Incomplete or Delayed business transactions.
- Develop visualization dashboards and indicators that identify anomalous activities using statistical behaviour models, and machine learning.
- Explore and build new capabilities like Splunk mobile and develop mobile-friendly dashboards.

**Key Competences**:
Splunk ITSI
Splunk Enterprise
Splunk Observability
Monitoring and Observability
Tools Integration and Event Management

**Must have Experience**:

- Strong experience in Splunk architecture, and administration (Splunk certified architect or equivalent experience) across Splunk Enterprise, Splunk Enterprise
- Security and Splunk ITSI. (10+ years Preferred)
- 6+ years of experience in Splunk development (Create Dashboards, Visualizations,
- Statistical reports, scheduled searches, Correlation searches, alerts, and knowledge objects)
- Proven experience in assessing, designing, deploying, and operating clustered Splunk platforms.
- Demonstrated expertise in modifying configurations, pipeline sets, and other modifications that improve Splunk performance.
- Expert-level knowledge and understanding of Splunk Search language and building complex queries.
- Implement KV stores, lookups, and data model acceleration to optimize search performance and reporting.
- Knowledge of how to customize Dashboards via simple XML, advanced XML source,
- JavaScript, CSS, and advanced HTML.
- Expert-level capabilities with regular expression and statistical functions
- Experience with creating Splunk knowledge objects (field extractions, macros, event types, etc.)
- Strong technical knowledge of Redhat Linux, Firewalls and load-balancing principles
- Good knowledge and experience of Agile and DevOps
- Nice to Have Experience:

- AWS / Azure certified or equivalent experience.
- Ansible, CD tools, particularly Jenkins.
- Experienced user of Git / GitHub, Syslog-ng and/or syslogs and Confluence.
- Linux OS (preferably Redhat proficiency).
- Exposure to Splunk Security/ SIEM
- Splunk Architect certification