We are seeking a Senior Splunk Administrator
Location Fully Remote - US Central Hours
Job Duties:- This position requires candidate to confidently demonstrate expertise in system admin/Splunk technical solutioning and trouble shooting in working session with stakeholders.
- Proficiency in managing a variety of operating systems, including Windows Server, Linux distributions (e.g., CentOS, Red Hat), and Unix systems.
- Experience in Linux/ Unix system administration functions to support the DevOps tool sets and supporting patching, SSL toolset, capacity planning, routing protocols, and firewall rules.
- Applied expertise in data on-boarding techniques such as syslog, DB Connect (dB Connect), Universal Forwarder (UF), HTTP Event Collector (HEC), and custom scripting.
- Experience of Splunk Data Models and their management, including implementation, tuning, and data normalization.
- Knowledge of one or more areas of infrastructure engineering such as hardware, networking terminology, databases, storage engineering, deployment practices, integration, automation, scaling, resilience, or performance assessments.
- Ability to maintain and upgrade certifications.
- Perform integration activities to connect with 3rd party software APIs.
- Support Indexer Clustering, Search Head Clustering, and Forwarders.
- Experience developing scripts in Python or in either Perl, Shell, PowerShell, SQL, D3, HTML, XML, CSS, Bash and JAVA.
- Lead and mentor a team of IT professionals, providing guidance, training and support in their daily tasks and career development.
Job Requirements:- Experience in Splunk products Enterprise Security, SOAR, ITSI is a plus.
- Monitor, troubleshoot, and analyze overall health of Splunk infrastructure to include daily indexing volume, search volume, and performance, data source reporting, user activity reporting, and custom apps/dashboards/visualizations.
- Deep knowledge of cloud infrastructure and multiple cloud technologies (AWS, IBM & Azure) with the ability to operate in and migrate across public and private clouds.
- Perform root cause analysis on any issues with recommendations. Implement tactical and strategic solutions to problems.
- Develop, manage, and maintain documents supporting Splunk architecture and operational processes.
- Support day-to-day technical communication systems and incident tickets in support of operations.
- Certifications such as Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, AWS Certified Solutions Architect.
- Strong customer service experience, as this position will require the candidate to engage with customer leadership.
- Ability to work under time constraints and adapt to changes in requirements and new projects.
- Availability during non-business hours to support emergency/P1 incidents.
- Ability to assimilate information rapidly, motivated to self-study new requirements.
- Maintain current industry knowledge of relevant concepts, practices, and procedures.
- Excellent communication and documentation skills, with strong organizational and collaborative skills.
