Senior Splunk Engineer

As a Splunk Engineer, the candidate will be responsible for offering technical insights, assistance, and support to the team. This role involves delivering technical solutions, collaborating closely with the team to ensure high-quality work, and providing guidance and mentorship.

Role and Responsibilities:

• The candidate should be technically proficient in managing a large distributed Splunk Clustered environment including Search Heads, Indexers, Cluster Master, Deployer, Deployment Server, and Heavy/Universal forwarders, and providing 24/7 support.
• Experience with one or more of the Splunk addons like DBConnect, ServiceNow, AWS, Azure, Kafka etc
• Strong experience in deploying applications to various Splunk components.
• Strong experience in Onboarding the application data to Splunk.
• Undertakes day-to-day operational and user support.
• Maintains a close partnership with Splunk on feature requests, upgrade planning, and product roadmap alignment.
• Deploy Best Practices for developing Splunk Apps and create conceptual architecture for continuous improvement initiative.
• Perform log parsing, lookups, calculated fields, and extractions using regex.
• Deploy applications to various Splunk components and onboard application data to Splunk.
• Manage knowledge objects (fields, extractions, tags, event types, lookups, workflow actions, aliases, macros, etc.).
• Configure summary-based reports and data model acceleration.
• Develop Splunk Dashboards, Reports, Alerts, Visualizations, and optimize searches.
• Automate tasks using programming languages like Python and Ansible.
• Expertise in Masking Sensitive data.
• Provide Impact assessment for Upgrade efforts.
• Provide Impact assessment for migration efforts and coordinate migration activities
• Experience in Splunk ITSI, creating Correlation searches, Glass tables.
• Knowledge and Experience in GIT, Bitbucket, Bamboo, Ansible, JIRA
• Manage and configure Cribl to route and process data efficiently from various sources to Splunk.
• Implement data reduction techniques using Cribl to minimize storage costs and improve search performance.
• Utilize Cribl to transform and enrich data before it reaches Splunk, ensuring data is in the desired format.
• Integrate Cribl with Splunk HTTP Event Collection (HEC) and Windows Event Collection Services.
• Monitor Cribl pipelines and troubleshoot any issues to ensure seamless data flow.
• Optimize Cribl configurations to enhance performance and reliability.
• Ensure data handling through Cribl complies with security and compliance requirements, including masking sensitive data.
• Maintain comprehensive documentation of Cribl configurations, processes, and best practices.
• Work closely with Splunk Admins and other stakeholders to align Cribl configurations with overall data strategy.
• Provide training and support to team members on Cribl usage and best practices.
• Experience in coordinating with onshore support teams and clients.
• Excellent communication and interpersonal