Splunk SME |9 to 12 years | Bangalore,Mumbai & Pune
Job Description
- Onboard log sources to Splunk via Universal/Heavy forwarders, Syslog-ng, HEC, DB-Connect and AWS Add-on.
- Adjusting ingesting data for Data parsing, timestamp, latency and other issues.
- Installation and configuring of Splunk UF service on Linux and Windows platforms.
- Maintain, Manage and Monitor Splunk Infrastructure (Identify bad searches, dashboards and manage overall health of Splunk).
- Worked on multiple Splunk Apps and Add-ons.
- Troubleshooting issues on Search Heads, indexers and cluster master.
- Creation/renewal of SSL certificates for safe Splunk web communication.
- Involving monitoring and Splunk servers and configurations using ITSI.
- Performing basic Phantom operations like start & stop it’s service during major activities, adding/removing Labels, Assets etc.
- Knowledge on Splunk HDFS with moving data from the _internal, _audit & _introspection index to the Hadoop Cloud.
- Working with Splunk support for frequent production issues.
- Installation of Splunk Enterprise on Linux OS in Distributed Deployment mode
- Splunk Indexer Clustering maintenance.
- Configuring new environments in Splunk, which is used for monitoring logs/data on production servers.
- Developing Splunk Reports, dashboards and alerts.
Primary Skills
- Splunk
- Linux
- Syslog-ng, HEC, DB-Connect
Secondary Skills
- Excellent communication Skills to co-ordinate effectively with Global Customers.
- Strong ability to work on priority incidents while maintaining the ability to think critically and remain calm and composed
Ref:
1690060
Posted on:
Apr 6, 2024
Experience level:
Experienced
Contract Type:
Permanent
Location:
Bangalore, KA, IN
Department:
Cyber Security