Splunk Engineer/Architect

Splunk Engineer/Architect

Direct Hire/Full-Time/Permanent

Remote/Raleigh, NC

Responsible for the architecture, administration, and maintenance of the Splunk Enterprise and Splunk Enterprise Security platforms Handle requests from partner IT teams for implementation and changes as required Partner closely with partner teams for data onboarding, alerting, and knowledge object creation Be the primary point of contact for incidents regarding the Splunk platform Responsible for technical document creation and knowledge sharing across Enterprise Monitoring Team and other partner IT teams Ensure training is provided and stakeholders are informed Perform on-call duties as required Set up, administer and maintain protocols for enterprise-wide log and event management Set up, administer, and maintain Splunk Infrastructure and Configurations Design and implement solutions to address new use cases or data collection needs Provide consultation to Splunk user base on best practices, and guidance and assistance creating and maintaining knowledge objects Integrate Splunk with other platforms Configure the monitoring of critical systems via Splunk Manage the performance of the Splunk platform Correlate disparate events from monitoring platforms Create and author technical documentation for both internal team consumption as well as user-base consumption.

Qualifications

Requires experience in Splunk implementation and maintenance in a mid-large scale cross-functional organization supporting enterprise security, networking, infrastructure, and applications Requires experience with multi-site environments and data administration Requires experience scaling and migrating Splunk components such as indexers and search heads Requires strong knowledge of the Splunk CLI and configuration management via conf files, API development (REST or JSON), Linux Servers (Rhel 7 or higher), and Syslog (rsyslog or syslog-ng) Currently holds or has held the following certification: Splunk Admin Certification.