SPLUNK ENGINEER
Verotis is seeking an experienced Splunk Engineer who will be responsible for the architecture, installation, administration, and development of Splunk log parsing and alert monitoring, with a goal toward enhancing infrastructure as it relates to application and server data, reporting, custom queries, dashboards, and security roles administration. In addition to log analytics, you will help administrate a variety of other platforms within the client enterprise management suite.
Physical Requirements:
Qualified candidates will need to have the ability to lift a minimum of 50 lbs., be able to move/traverse throughout work facility, and communicate frequently with co-workers.
Functional Responsibilities:
The candidate may perform any or all of the following:
-
Architect, design, support, and maintain Splunk infrastructure for a highly available and disaster recovery configuration
-
Administer Splunk and Splunk Application for Enterprise Security (ES) log management
-
Standardize Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms
-
Troubleshoot Splunk server and agent problems and issues
-
Assist internal users of Splunk in designing and maintaining production-quality dashboards
-
Mentor users and other groups on their use of Splunk
-
Monitor the agent and server infrastructure for capacity planning and optimization
-
Design core systems performance and troubleshooting logs
-
Support Splunk on Unix, Linux and Windows-based platforms
-
Perform data mining and analysis, utilizing various queries and reporting methods
-
Solve complex Integration challenges and debug complex configuration issues
-
Technical writing/creation of formal documentation such as architecture diagrams, technical designs, and SOPs
Qualifications:
-
Top Secret clearance
-
Bachelor’s Degree, or an equivalent combination of formal education, and experience
-
Minimum of six (6) years of general work experience and three (2) years of relevant experience in functional responsibility.
-
Splunk experience – minimum 2 years of experience architecting, configuring, deploying, and customizing the tool.
-
Strong understanding of Splunk configuration files and architecture
-
Knowledge of advanced search and reporting commands
-
Demonstrated ability to create complex dashboards, forms, and visualizations
-
Understanding of System Log Files and other structured and non-structured data
-
Intermediate level understanding of Solaris, Linux and Windows operating systems
-
Effective verbal and written communication skills that include the ability to describe highly technical concepts in non-technical terms
-
Splunk Architect or Splunk Administrator certification preferred
-
Knowledge of a scripting language and UNIX command line
-
Strong knowledge of application monitoring and event management
-
Knowledge in the Common Information Model (CIM), Understand the relationship between the CIM and knowledge objects, ability to create a lookup file and create a lookup definition& field aliases and calculated fields
-
Understanding of Splunk license management preferred