Splunk Consultant

o Expert knowledge on splunk> Backend operations (UF, HF, SH and Indexer Cluster) and architecture
o Expert knowledge of Log Management and Splunk SIEM. Understanding of log collection, parsing, normalization, and retention practices.
o Expert in Logs/License optimization techniques and strategy.
o Good Understanding of Designing, Deployment & Implementation of a scalable SIEM Architecture.
o Understanding of data parsimony as a concept, especially in terms of German data security standards.
o Working knowledge of integration of Splunk logging infrastructure with 3rd party Observability Tools (e.g. ELK, DataDog etc.)
o Experience in identifying the security and non-security logs and apply adequate filters/re-route the logs accordingly.
o Expert in understanding the Network Architecture and identifying the components of impact.
o Expert in Linux Administration.
o Proficient in working with Syslog.
o Proficiency in scripting languages like Python, PowerShell, or Bash to automate tasks
Expertise with OEM SIEM tools preferably Splunk
Experience with open source SIEM/Log storage solutions like ELK OR Datadog etc..
o Very good with documentation of HLD, LLD, Implementation guide and Operation Manuals