Splunk Consultant

The Splunk Consultant may be responsible for but is not limited to:

• Provide input into strategies, capabilities, and integrations to improve the availability and performance of applications.
• Provide architecture level design to support and operate Splunk using security information and event management (SIEM) and Splunk enterprise security.
• Implementation of Splunk infrastructure, deployment, products, apps, reports, alerts, and dashboards in a large enterprise environment.
• Provide input into strategies, capabilities, and integrations to improve the availability and performance run-state of production and non-production applications.
• Develop/build Splunk Installation of search heads, deployment servers, indexers & Enterprise Security App.
• Perform scripted installation of all Splunk components and manage Splunk knowledge objects (Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts).
• Responsible for working with stakeholders to troubleshoot issues with Splunk installation and Identify and recommend performance tuning and monitoring enhancement opportunities.
• Capture applications baseline performance deviations and implement proactive monitoring and alerting of production systems and significant interaction with many different teams across a global company.
• Designing, development, deployment and architecture of Splunk Enterprise Security, customizing complex search queries and promoting advance searching, forensics, and analytics.
• Developing dashboards, data models, reports and performance optimization and developing documentation on new or existing systems.
• Splunk Searching and Reporting, Knowledge Objects, Administration, Add-On’s, Dashboards, Clustering and Forwarder Management and Splunk technical infrastructure experience.