Splunk Admin

This position is open for the Splunk Admins who can maintain and administer a Splunk Enterprise clustered environment. Your Tasks
Experience in design, implementation, and support of Splunk (Indexers, Forwarders, Search-Heads, Setup etc.)
Experience with implementing and administering Splunk.
Analyzing data to identify patterns, trends, or other useful information
Experience in creating dashboard, alert, reports
Splunk installation, configuring data inputs and forwarders, data management, user accounts, license, troubleshooting and monitoring
Knowledge of writing Splunk queries with various SPL command
Good knowledge of Splunk ES (Enterprise Security) - Must. Troubleshoot technical issues to establish the root cause of problems and form a solution or workaround across a range of environments.
Monitor and maintain Splunk performance, availability, and capacity with present and future infrastructure
Other qualifications include problem-solving skills, interpersonal skills, and the ability to multitask Your Skills
Experience in supporting Indexers, Forwarders, and Search-Heads Setup etc.
Data parsing, enrichment, filtering through props & transforms.
Ability to grasp new concepts quickly and efficiently.

**Good to have**:
PowerShell scripting.
IT security experience to assist in resolving tickets
Experience in Cherwell ticketing system.