Splunk Admin

Job Title Splunk Adminstrator

Relevant Experience (in Yrs) 8

Technical/Functional Skills

Setup and Manage Data Inputs (Local and Forwarded)

Field Extractions and Transformations

Implement searches reports & alerts

Data Models & Accelerated Searches

Setup Splunk Apps and Addons from Splunk base

Support Splunk Enterprise architecture design and implementation decisions

Providing assistance to customer requests such as Log Source configuration App installation Data Parsing Use Case Development and Troubleshoot complex issues for managed technologies.

Dealing with SIEM infrastructure or enterprise failures or reconfigurations

Conduct Health Checks for SIEM technologies

Ensure the completion of tasks and update tickets accordingly.

Utilize tools and analytical skills to investigate root cause of issues across the technologies.

Document the investigation and provide solution recommendations.

Experience Required

College Diploma or University Degree in Information Security or relevant security uptodate certificates and/or equivalent work experience.

Good to have: Splunk Certified Admin Splunk Certificated Architect Splunk Certified Consultant.

Strong understanding of Splunk Administration

Roles & Responsibilities

System Administration experience (Windows Unix/Linux Mac).

Holds industryrecognized certifications of security technologies or network technologies.

Proficient knowledge and experience with SIEM Log Management or Data Analytical platforms.

Strong understanding of IT Security concepts best practices and market direction.

Advanced understanding of networking concepts and ability to analyze network artifacts.

Knowledge of common information security management frameworks such as ITIL NIST and PCI DSS.

Excellent communications skills.

Exceptional Time Management and organizational skills.

A positive and constructive minded team player.

Excellent troubleshooting reasoning and problemsolving skills.