SEND APPLICATION (Resume) TO– Techires@rovust.com
CONTRACT DURATION: 6 months
FORMAT: Remote
Job Description:
Our client requires someone that can point to several projects where they’ve implemented Splunk in Azure and migrated data into it.
• 7 or more years developing in Splunk on prem and/or Splunk SaaS.
• Hands on work in one or more cloud environments (AWS, Azure).
• Experience in reading/understanding code (Python/PowerShell).
• Experience using YAML, JSON, and APIs programmatically.
• Splunk Cloud Certified Admin.
• Demonstrated proficiency with the full Splunk lifecycle, including all major components for an enterprise deployment
• Minimum 7 years of progressive Splunk administration, Splunk architect and/or logging experience in a multisite environment is necessary
• Practical experience with major components of Splunk Enterprise, including data ingestion pipelines, and SPL
• Must have solid foundation in Linux and possess a competence to troubleshoot various aspects of the integration including operating system, application, and networking components as they relate to both Splunk and syslog implementations
• The Splunk Architect leads and/or consults on efforts pertaining to design, architecture, scalability, business continuity, and disaster recovery as needed
• Oversees Splunk Enterprise infrastructure and tunes Splunk for optimal onboarding of data, performance, and capacity management; identifies gaps and areas of duplication; provides recommendations for optimization
• Manages and maintains a complex multi-site hybrid environment and ensures the infrastructure remains available and scalable.
• ensures our logging environment provides for effective threat detection and response in direct partnership with information security teams
• Interact with internal/ external customers to gather requirements, perform troubleshooting and aid with the creation of Splunk search queries
• Provides technical expertise in the maintenance and expansion of IT architecture to support business needs such as software additions, large-scale data stores and cloud -based systems
• Ensures Splunk is monitored, and effective alerting is in place to meet SLAs and required visibility.
Qualified Candidates should send their resume to Techires@rovust.com