Splunk Administrator
Brooksource
TN, United States
Full-time
Splunk Administrator
Remote in Tennessee
Long Term Contract
Job Description :
- Responsible for data onboarding processes, including the integration of custom data sources.
- Expertise in writing custom sourcetypes and fluent in utilizing props and transforms for data management.
- Skilled in setting up data sources with existing Technology Add-ons (TAs) as well as configuring new ones.
- Proficient in understanding the architecture of on-premises, cloud, and hybrid environments.
- Ability to scan the environment, diagnose issues, and implement solutions using tools such as the Cluster Management Console (CMC), Monitoring Console (MC), system messages, and alerts.
- Intermediate to advanced knowledge of Splunk Processing Language (SPL) required.
- Capable of writing SPL searches to diagnose issues related to data quality and fulfill client requests.
- Experience in creating searches for functional alerts to monitor system health and performance.
- Experience with IT Service Intelligence (ITSI) and Enterprise Security (ES) modules.
- Comfortable with creating services and Key Performance Indicators (KPIs) within ITSI.
- Knowledgeable about the basics of notable events, incidents, and correlation searches.
- Familiarity with Splunk data models and their applications.
Qualifications :
- Proven experience as a Splunk Administrator or similar role.
- Strong analytical and problem-solving skills.
- Excellent communication abilities to interact with team members and clients.
- A proactive approach to maintaining and improving data quality and system performance.
We are seeking a dedicated Splunk Administrator to join our team and contribute to the optimization and security of our data management systems.
If you have a passion for data analytics and a track record of excellence in Splunk administration, we encourage you to apply.
4 days ago