The Splunk administrator will manage a large scale infrastructure with multiple sites, clustered index servers and search header clusters.
The Splunk administrator shall work with consumers to help them make maximum usage of collected data for troubleshooting, analysis and machine learning.
The Splunk admin will work on
a. Multiple-site Splunk Enterprise instance maintenance
b. Data onboarding projects using various Splunk input methods and sources, including HEC, UF, Inputs, scripts against Servers, K8s, cell phones, private cloud, Azure and AWS
c. Compose advanced search query, field extraction and dashboards for consumers
a. Rich experience on data analysis skills using Splunk
b. Experience creating dashboards and reports.
c. Strong knowledge managing Splunk Enterprise infra
d. Splunk architect certification desirable