Splunk Administrator
Location: Alpharetta, GA; Charlotte, NC; Chicago, IL; Conshohocken, PA; Denver, CO; Fargo, ND; Garden City, NY; Houston, TX; Lubbock, TX; Morristown, NJ; Mt Juliet, TN; New York, NY; Purchase, NY; Topeka, KS
Job Description:
The Splunk Administrator is responsible for supporting and maintaining Client’s Splunk Cloud environment and associated log ingestion components. This role ensures reliable data collection across diverse sources, monitors platform health and capacity, and performs ongoing administration, updates, and configuration to support security operations and analytics.
TECHNICAL QUALIFICATIONS
Hands on experience administering:
3 to 5 years of hands on experience administering Splunk in an enterprise environment.
Splunk Cloud and on prem Splunk infrastructure, including Heavy Forwarders, Deployment Server, and Universal Forwarders.
HTTP Event Collector
Common Splunk Technology Add ons, including Azure, Okta, and other cloud services.
Splunk data models and data normalization practices.
Splunk features such as alert actions, SAML based authentication, KV store, and lookups.
Splunk role based access controls and permission models.
Data management features including DDAS and reindexing processes.
Familiarity with:
Azure Event Hubs, Kafka, Log Analytics Workspaces, and cloud based logging pipelines.
Windows Event Collection and Windows Event Forwarding.
“Tekshapers is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.”
Never miss an opportunity! Create an alert based on the job you applied for.
