Job Description

Overview:TekWissen Group is a workforce management provider throughout the India and many other countries inthe world. The below job opportunity is one of Our clients which is is a multi-industry company that leverages its global network of aircraft, defense, industrial and finance businesses to provide customers with innovative solutions and servicePosition: Splunk AdministratorLocation: BangaloreJob Type: ContractWork Type: Onsite:

• Textron Enterprise Security Team is looking for an experienced Splunk Administrator as a consultant for a period of 6-9 months to assist the team with several key Splunk enhancements.

Key Responsibilities:

• Install, configure, and maintain Splunk applications and hardware.
• Splunk forwarder evaluation:
• Profile Review: Evaluate and review Splunk forwarder profiles to ensure they are configured correctly.
• Optimization: Optimize forwarder configurations for performance and reliability.
• Documentation and Training: Document the evaluation process and provide training to relevant teams.
• Log Format Standardization and Search Consistency
• Log Analysis: Analyze current log formats and identify inconsistencies.
• Standardization: Work with web server teams to standardize log formats, particularly for IIS logs.
• Search Optimization: Optimize search queries to handle varying log formats and improve search consistency.
• Setting Up Splunk Indexer in Azure
• Cloud Configuration: Configure and deploy a Splunk indexer in Azure.
• IP Management: Manage dynamic IP whitelisting and ensure connectivity despite IP changes.
• Security Compliance: Ensure the setup complies with security and operational readiness requirements.
• Collaborate with various teams to integrate new data feeds and systems into the Splunk platform.
• Design and implement software solutions using Splunk developer tools.
• Build advanced visualizations and develop Splunk apps.
• Customize and optimize Splunk dashboards.
• Provide support and troubleshooting for any issues related to Splunk setup and operations.
• Mentoring and Training on Splunk best practices, enhancements and feature implementations.

Technical Skills:

• Extensive experience with Splunk, including indexers, forwarders, and search-heads setup.
• Proficiency in programming languages supported by Splunk developer tools, such as SPL and Python.

Non-Technical Skills:

• Strong analytical and problem-solving abilities.
• Excellent written and verbal communication skills.
• Ability to work effectively as part of a team.

Experience: At least 7 years of total experience with minimum 3 years as Splunk AdministratorEducation:Bachelor's degree in computer science or a related field.Certifications:Must Have:Splunk Power User Fast Start and Splunk Cloud Certified Admin.Good to Have:Splunk Enterprise Certified Administrator or Splunk Enterprise Certified Architect.TekWissen Group is an equal opportunity employer supporting workforce diversity.

TekWissen