Senior Splunk Administrator

Job Description – Senior Splunk Administrator

Duties and Responsibilities:

• Administer, monitor, and maintain Splunk deployment and applications within Splunk. 
  Ensure logs are being ingested and parsed correctly. Conduct data normalization on current and new data. Create alerts, reports, and dashboards, as requested.
• Splunk backend administration on Linux experience. Splunk basic data ingestion is required, and data normalization is preferred.  Securing Splunk experience (i.e. Use of SSO, Certificates, etc.).
• Architect a Splunk solution that meets customer demands while optimizing the platform with the most efficient use of resources across the environment while at the same time curtailing unnecessary data.
• Evolving the client's data within Splunk into a superior state via field extractions, data transformations, event parsing, data previewing, etc.
• Creating and implementing configuration standards, policies, and/or procedures for
  improved Splunk operations and management.
• Review designs to ensure business requirements and solution mapping
• Drive leading practices across the Splunk solution.
• Experience with designing, building, and maintaining large-scale Splunk solutions
• Deep understanding of Splunk scalability, Splunk capacity planning, Splunk distributed setup and Splunk indexer and search head clustering.
• Certifications needed: Splunk Certified Architect, Splunk Enterprise Security Certified
  Architect.

Desired skills:

• 5+ years of experience with Splunk.
• 2+ vulnerability management, running scans, analyzing scans, re-scanning for remediation, configuring and troubleshooting scanner tools.
• 1+ years of experience managing Splunk App development, scripting, and log management solution design.
• 1+ years of experience integrating data input from Splunk from other tools such as Web Inspect, DB Protect, Nessus, and AWS.
• Fundamental understanding of software, computer, cloud computing, and network
  architectures.