Senior Splunk Administrator

This is a fully remote position, open to applicants in Florida.

📋 Description

• Exhibit proficiency in system administration and technical solution development for Splunk, collaborating effectively with stakeholders during working sessions.

• Skilled in managing various operating systems, including Windows Server, Linux distributions (such as CentOS and Red Hat), and Unix systems.

• Experience in Linux/Unix system administration tasks, facilitating DevOps toolsets, patch management, SSL tools, capacity planning, routing protocols, and firewall configurations.

• Applied knowledge of data onboarding methods, including syslog, DB Connect, Universal Forwarder (UF), HTTP Event Collector (HEC), and custom scripting.

• Familiarity with Splunk Data Models, encompassing their implementation, tuning, and data normalization processes.

• Understanding of multiple infrastructure engineering areas, such as hardware, networking, databases, storage engineering, deployment practices, integration, automation, scaling, resilience, or performance evaluations.

• Capability to maintain and enhance relevant certifications.

• Execute integration tasks to connect with third-party software APIs.

• Provide support for Indexer Clustering, Search Head Clustering, and Forwarders.

• Proficient in developing scripts using Python, or languages including Perl, Shell, PowerShell, SQL, D3, HTML, XML, CSS, Bash, and JAVA.

• Lead and mentor a team of IT professionals, offering guidance, training, and support for their daily responsibilities and career advancement.

⛳️ Requirements

• Experience with Splunk products such as Enterprise Security, SOAR, and ITSI is advantageous.

• Monitor, troubleshoot, and assess the overall health of the Splunk infrastructure, including daily indexing volume, search volume, performance metrics, data source reporting, user activity reporting, and custom applications/dashboards/visualizations.

• In-depth understanding of cloud infrastructure and various cloud technologies (AWS, IBM & Azure) with the capability to operate and migrate across both public and private cloud environments.

• Conduct root cause analysis for any issues, providing actionable recommendations.

• Implement both tactical and strategic solutions to address problems.

• Develop, manage, and maintain documentation that supports Splunk architecture and operational workflows.

• Assist with daily technical communication systems and incident tickets to support operations.

• Possess certifications such as Splunk Enterprise Certified Admin, Splunk Enterprise Certified Architect, and AWS Certified Solutions Architect.

• Strong customer service skills are essential, as this role involves engagement with customer leadership.

• Ability to work under tight deadlines and adapt to changing requirements and new projects.

• Availability during non-business hours to assist with emergency/P1 incidents.

• Quick to assimilate information, with a strong motivation for self-studying new requirements.

• Maintain up-to-date industry knowledge of relevant concepts, practices, and procedures.

• Excellent communication and documentation abilities, coupled with strong organizational and collaborative skills.

🏝️ Benefits

• Competitive salary and performance-based bonuses.

• Comprehensive health, dental, and vision insurance plans.

• Opportunities for professional development and continuous learning.

• Flexible work schedule and remote work options.

• Supportive and collaborative work environment.