Splunk Administrator (W2 Candidates only)

Job Title: Splunk Administrator
Location: Florida (Remote)
Duration: 12 24 Months Contract
Employment Type: Contract (W2 Candidates only)
Job Description:
We are looking for a highly experienced Splunk Administrator with 10+ years of overall IT experience to support, manage, and optimize enterprise Splunk environments.
The ideal candidate will have deep hands-on expertise in Splunk administration within large, complex enterprise environments.Key Responsibilities:

• Install, configure, administer, and maintain Splunk Enterprise and/or Splunk Cloud
• Manage distributed Splunk architecture including Indexers, Search Heads, Forwarders, Deployment Servers, and Cluster Masters
• Monitor Splunk system health, performance, indexing throughput, and capacity planning
• Troubleshoot ingestion, parsing, indexing, and search performance issues
• Onboard new log sources from servers, applications, databases, cloud platforms, and network devices
• Design, create, and maintain alerts, dashboards, reports, and KPIs
• Perform Splunk upgrades, patches, and migrations with minimal downtime
• Implement and manage role-based access control (RBAC) and authentication integrations
• Ensure security, compliance, and operational best practices are followed
• Work closely with infrastructure, security, and application teams to support observability and SIEM needs
• Maintain detailed documentation for configurations, processes, and operational runbooks

Required Skills & Qualifications:

• 10+ years of overall IT experience
• 5+ years of hands-on Splunk Administration experience
• Strong expertise in Splunk Enterprise / Splunk Cloud
• Experience supporting large-scale, distributed Splunk environments
• Strong Linux/Unix administration skills
• Experience with log ingestion, data parsing, indexing, and normalization
• Strong troubleshooting and performance tuning skills
• Experience with ITSM tools (ServiceNow preferred)
• Excellent communication and documentation skills