Description:

1. Min 5 years of experience and 4+ in Splunk.
2. Experience in Splunk administration
3. Ability to fine tune Splunk queries for performance
4. Experience in performing Splunk maintenance activities and suggest improvements
5. Help in setup and maintain Splunk monitoring
6. Splunk infrastructure capacity planning and optimization
7. Assist with training product and infrastructure teams not familiar with Splunk and help them customize and configure Splunk to meet their requirements by designing and maintaining quality dashboards.
8. Communicate with support teams, and system administrators and end users regarding best practices.
9. Create and maintain engagement processes and documentation related to architecture, operational processes and training material for Splunk.

Must Have:

1. Experience in designing, implementing, administering and supporting Splunk (Indexers, Forwarders, Search-Heads Setup, etc.).
2. Experience with Linux and Windows agents for Splunk administration with a proven understanding of the Splunk system.
3. Experience in onboarding new data, inputting new information, creating new dashboards and extracting data at large scales through Splunk.
4. Experience with server-side scripting languages such as python, shell scripting, etc.
5. Expert in writing Splunk Processing Language (SPL) & is able to create, customize and fine tune complex search queries
6. Experience with solving Splunk performance issues, log feeds, field extractions, search time, etc.
7. Excellent analytical and problem solving skills.
8. Strong written and verbal communication skills.

Preferred:

1. Ability to understand and make changes to code written in multiple programming languages.
2. Familiarity with datacenter and related networking principles.