Splunk Engineer - Architect

Title: Splunk Architect

Location: Washington DC Hybrid

We are seeking a highly skilled Splunk Engineer to manage and enhance our Splunk environment, ensuring seamless data ingestion, analysis, and visualization. The ideal candidate will have hands-on experience with Splunk architecture, client management, and integrations, along with strong Linux and scripting expertise.

Key Responsibilities:

• Manage and optimize Splunk distributed architecture and data pipelines.
• Integrate Splunk with various data sources, including syslog, flat files, databases, APIs, and cloud platform logs.
• Develop searches, reports, alerts, and dashboards using Splunk SPL.
• Configure and manage Splunk .conf files for inputs, props, and transforms.
• Maintain and troubleshoot Splunk client management and app deployments.
• Utilize scripting languages (Bash, Python) and PowerShell for task automation.
• Work with Linux OS (RHEL or Rocky 8) and command-line interfaces (CLI).
• Develop and maintain custom Splunk applications.
• Implement and utilize regular expressions for data parsing.
• Use AWS SDK and CLI for programmatic integration with AWS services.

Required Skills:

• Strong experience with Splunk and Linux environments.
• Deep understanding of Splunk distributed architecture and hands-on implementation.
• Fluency with Linux OS (RHEL or Rocky 8) and command-line operations.
• Proficiency in Bash, Python, and PowerShell scripting.
• Experience with Splunk client and app management.
• Knowledge of integrating Splunk with diverse data sources and cloud platforms.
• Familiarity with AWS SDK and CLI.
• Expertise in Regular Expressions.