Responsibilities and Skills Requirement
We are seeking a skilled Splunk Engineer to support a project focused on improving data quality and data completeness in Splunk environment.
Skills Required
- Must possess experience in Splunk Cloud Enterprise Security administration and management
- Experience in Installing, configuring and upgrading Splunk applications required for Splunk Enterprise Security use cases
- Experience in Configuring notable event actions, action menus and Adaptive Responses
- Must be Splunk Certified
- Experience in data onboarding and data ingestion using Splunk UF and HF is recommended
- Good knowledge in Regex for configuring log parsing
- Advanced Splunk Programming Language (SPL) experience to work with multiple large data sets
- Experience in defining and streamlining the process for log onboarding
- Ability to develop, evaluate and document environment metrics for management purpose
- Expertise in writing complex script in PowerShell and Bash to automate the installation and monitoring of Splunk agents
- Skills in Performing maintenance and optimization of existing clustered Splunk deployments
- Able to Create Dashboards, Reports and Alerts to monitor the security related use cases
- Good knowledge of debugging and troubleshooting of Splunk operation issues
- Experience with Splunk ITSI is an added advantage
- Must possess strong technical, analytical and problem-solving skills combined with the ability to provide quick resolution to problems
