Job Title: Splunk Engineer
Location: Irvine or Culver City (Hybrid)
Duration: Long term Contract
Qualifications:
- 8 years of overall IT experience.
- 5 years experience in managing designing and configuring Splunk environment.
- 5 years experience in Unix environment including administration scripting or supporting applications.
- Experience with Splunk Enterprise Security Premium Application and Splunk Enterprise.
- Experience in requirement gathering and documentation.
- Experience in developing and supporting Splunk Applications.
- Experience in automation with programming languages like Python JAVA .Net and Ansible is a plus.
- Experience in technologies like GIT JIRA and Automation Testing.
- Familiarity with Phantom Cloud computing Web Interfaces Databases and Big Data technologies (like Hadoop Kafka etc.)
- Understanding of Continuous Delivery and Continuous Integration.
- Splunk Admin Certification is mandatory.
- Excellent communication and interpersonal skills.
- Splunk core admin experience is mandatory.
Responsibilities:
- Support Admin maintain and expand Splunk infrastructure to meet future architecture design and deployment requirements.
- Develop distributed Splunk applications including requirement gathering and coordinating Splunk setup.
- Recommended Splunk implementation best practices and fixes.
- Design implement and optimize Splunk applications (including Enterprise Security) queries knowledge objects and data models.
- Perform basic and advanced scripting tasks with Splunk to automate repeatable processes using Python.
- Deploy Best Practices for developing Splunk Apps and create conceptual architecture for continuous improvement initiatives.
- Provide Impact assessment for migration efforts.
- Support Performance Testing and User Acceptance Testing.
- Design and implement Custom Searches and reports.
- Build proof of concepts for Splunk enhancements.
- Tuning information model and defining reusable templates.
- Define reusable view templates and retention & archival policies.
- Provide Impact assessment for migration efforts and coordinate migration activities.
Nice to Have:
- Experience in Security information and event management (SIEM).
- Experience with RTIR.
- Certifications in CISSP Python Java .Net Ansible / Red Hat or similar.