66 Splunk Administration Jobs

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

Role & responsibilities Overall experience of at least 3+ years as SIEM Splunk Enterprise Security administrator. Hands-on experience with Splunk enterprise security (SIEM), security tools and devices, operating systems, and/or networking devices desired. Proven skills and experience in Use case development, Log source integration, log source parsing. Experience working across diverse teams to facilitate solutions Demonstrates proven expertise as in administering Splunk Enterprise Security (SIEM) environment. Should have the following skills: Splunk Certified professional having at least Splunk Admin user certification level preferrable. Good experience in Splunk administration and troubleshooting Experience in integration of Splunk with log sources of different types including but not limited to security devices, network devices, web applications, custom applications and so on. Experience in tuning and troubleshooting Splunk premium apps like Enterprise Security, Phantom and UBA. Comfortable in writing regular expression to extract fields from custom log sources. Expertise in developing custom use cases using Splunk search language to correlate and alert on logs from multiple sources. Hands-on experience in creating dashboard and reports using SPL queries and XML. Good knowledge of information security and IT operations domain. Proficiency in client and server operating systems including Linux and Windows General networking and system troubleshooting skills (firewalls, routing, NAT, etc.) Ability to autonomously prioritize and successfully deliver across a portfolio of projects Good consulting skills with ability to manage client expectations Preferred candidate profile

position: Contract to Hire(C2H) Skill: SPLUNK ADMIN , ITSI Experience:9+ Location: Remote Notice Period: Immediate to 15 Days Job Overview We are seeking a skilled Splunk ITSI Engineer to join our team. The ideal candidate will have extensive experience with Splunk Enterprise and Splunk IT Service Intelligence (ITSI) and will be responsible for designing, implementing, and maintaining our Splunk ITSI environment. Key Responsibilities Design and implement Splunk Enterprise and ITSI infrastructure to provide high availability across multiple data centers Develop and maintain glass tables, dashboards, alerts, reports, and KPIs in Splunk ITSI Perform requirements gathering sessions with customers to develop scope and design for new and existing content Integrate Splunk with various data sources and security tools to enhance IT operations monitoring Optimize Splunk performance by configuring indexing and search activities across different machines Troubleshoot and resolve technical issues related to Splunk ITSI Create documentation for build, deployment, and sustainment processes Analyze and interpret large volumes of machine-generated data Develop visualization dashboards and indicators using statistical behavior models and machine learning Collaborate with cross-functional teams to modernize applications and support cloud integration efforts

Your Role Administer and develop solutions usingSplunkandSplunk Security Essentialsto support enterprise security monitoring and analytics. Design, implement, and maintain Splunk dashboards, alerts, and reports to provide actionable insights into security events. UtilizeUNIX shell scripting or Pythonto automate data ingestion, parsing, and enrichment processes. Lead and manage security-related projects from planning through execution, ensuring timely delivery and alignment with business goals. Collaborate with cross-functional teams to define requirements, manage risks, and ensure stakeholder satisfaction. Your Profile 5 to 10 yearsof experience in IT security with a strong focus onSplunk administration and development. Proficiency inSplunk Security Essentials, data onboarding, and custom dashboard creation. Strong scripting skills inUNIX shellorPythonfor automation and integration. Solid understanding ofAgile/Scrum methodologiesand project lifecycle management. Proven experience in leading cross-functional teams and managing complex security projects. What You Will Love Working at Capgemini Work on cutting-edge security analytics platforms likeSplunkin enterprise-scale environments. Lead impactful projects that enhance cybersecurity posture for global clients. Clear career progression paths from engineering to leadership and consulting roles. Collaborate with diverse teams in a supportive, inclusive, and innovation-driven culture. Gain exposure to modern security frameworks, automation tools, and real-time threat intelligence.

As a Splunk Developer with AWS Knowledge, you will be joining a prestigious MNC company on a contract basis in Chennai. With over 5 years of experience, you will be responsible for leveraging your expertise in Datadog, AWS, and Splunk to ensure the smooth and reliable operation of critical applications and infrastructure. Your role will involve proactively monitoring, troubleshooting, and resolving issues to maintain optimal performance and availability. Your responsibilities will include implementing, maintaining, and enhancing Datadog monitoring dashboards and alerts, analyzing monitoring data to identify performance bottlenecks, and resolving alerts to minimize service disruptions. You will also provide timely support for application-related issues, collaborate with development teams to address performance issues, and assist in deployment processes for a seamless transition to production. In addition, you will monitor and manage AWS resources to ensure optimal performance and cost efficiency, troubleshoot AWS-related issues, and participate in cloud infrastructure projects. You will configure and maintain Splunk indexes, searches, dashboards, and alerts, analyze log data to troubleshoot system and application issues, and implement log management best practices. Furthermore, you will be involved in incident response activities, document incident response procedures, and collaborate with various teams to communicate technical information effectively. Staying updated on the latest technologies and best practices in monitoring, application support, and cloud computing will be essential to excel in this role. To qualify for this position, you must have strong experience in Datadog monitoring and alerting, hands-on experience with AWS cloud services such as EC2, and familiarity with Splunk log management and analysis. Your ability to work collaboratively, troubleshoot effectively, and communicate technical details to diverse audiences will be crucial in ensuring the efficient operations of the company's applications and infrastructure.,

Your role This position is responsible for administering the Splunk platforms for enterprise Security Information and Event Management (SIEM). The role involves working with asset owners to ensure the timely and efficient collection of computer security events and logs for the purpose of detecting and responding to information security incidents. Maintain all components of a distributed SPLUNK infrastructure including indexer clusters, search head clusters, and deployment servers. Provide overall management of the SPLUNK platform. Standardize SPLUNK forwarder deployment, configuration, and maintenance across Unix and Windows platforms. Troubleshoot SPLUNK server and forwarder problems and issues. Assist internal users in designing and maintaining production-quality dashboards. Monitor the SPLUNK infrastructure for capacity planning. Implement change requests and engineering tasks. Lead technical discussions in customer governance calls. Participate in technical audits. Identify opportunities for automation, standardization, and stabilization. Prepare/update/review run books, SOPs, and knowledge articles. Plan, prepare, and execute change processes and implementations. Perform OS-level performance monitoring and troubleshooting. Monitor and troubleshoot application and database layers (e.g., Apache, Tomcat, MySQL). Administer and maintain a 24/7 highly available Splunk environment. Work closely with clients, technicians, and managerial staff. Experience with Databricks, Kafka, and NiFi is an added advantage. Your profile Splunk Administrator with 4 to 8 years experience Dashboards, reports creation and Monitoring Experience with Splunk Phantom as well, would be given preference Work location Bengaluru,Mumbai,Pune & Hyderabad What Youll Love About Working Here You can shape yourcareerwith us. We offer a range of career paths and internal opportunities within Capgemini group. You will also get personalized career guidance from our leaders. You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work. At Capgemini, you can work oncutting-edge projectsin tech and engineering with industry leaders or createsolutionsto overcome societal and environmental challenges.

You are a Splunk Developer with AWS knowledge who can start immediately. This is a contract position with an MNC company based in Chennai. You should have at least 5 years of experience. As a Datadog Monitoring & Application Support Engineer, you will be responsible for ensuring the smooth and reliable operation of critical applications and infrastructure. Leveraging your expertise in Datadog, AWS, and Splunk, you will proactively monitor, troubleshoot, and resolve issues to ensure optimal performance and availability. Your responsibilities will include implementing, maintaining, and enhancing Datadog monitoring dashboards and alerts, analyzing monitoring data for performance bottlenecks, providing support for application-related issues, monitoring and managing AWS resources, configuring and maintaining Splunk indexes, participating in incident response activities, and effectively communicating technical information to both technical and non-technical audiences. To qualify for this role, you must have strong experience with Datadog monitoring and alerting, experience with AWS cloud services such as EC2, and experience with Splunk log management and analysis. It is essential to stay current on the latest technologies and best practices in monitoring, application support, and cloud computing.,

Role Purpose The purpose of this role is to support delivery through development and deployment of tools. Extensive working knowledge of Splunk administrator and various components (indexer, forwarder, search head, deployment server), as Splunk system administrator. Setting up Splunk Forwarding for new application tiers introduced into the environment. Identifying bad searches/dashboards and partnering with the creators to improve performance. Troubleshooting Splunk performance issues / Opening support cases with Splunk. Monitor the Splunk infrastructure for capacity planning and optimization.. Experience with any Observability tools such as Grafana, Prometheus and also tenants of Observability (Monitoring, Logging and/or tracing) is a plus. Experience with any programming language: Java/GoLang/Python is a plus. Experience working with Linux environment and Unix scripting. Experience with CI/CD: pipeline management with GitHub, Ansible is a plus. Installing, configuration and managing of datadog tool. Creating alerts,dashboards and other metrics in datadog Mandatory Skills: Splunk AIOPS. Experience:5-8 Years.

Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as SME experience on Splunk ITSI .

About The Role Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : a 15 years of full time education Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth functioning of systems and applications. Your typical day will involve interfacing with clients, accurately defining and resolving issues, and utilizing your expertise in Splunk Administration and UNIX Shell Scripting. Roles & Responsibilities:- Act as the primary point of contact for clients, providing ongoing support and ensuring the smooth functioning of systems and applications.- Accurately define client issues and interpret and design resolutions based on deep product knowledge.- Utilize your expertise in Splunk Administration and UNIX Shell Scripting to troubleshoot and resolve technical issues.- Collaborate with cross-functional teams to identify and resolve complex technical issues, utilizing exceptional communication skills to keep systems running smoothly.- Stay updated with the latest advancements in technology and apply innovative approaches for sustained competitive advantage. Professional & Technical Skills: - Must To Have Skills: Expertise in Splunk Administration.- Good To Have Skills: UNIX Shell Scripting.- Strong understanding of system and application support, with a proven track record of delivering impactful solutions.- Exceptional communication skills, with the ability to accurately define and interpret client issues.- Solid grasp of troubleshooting and problem-solving techniques.- Ability to collaborate effectively with cross-functional teams. Must have Skills :Splunk AdministrationGood to Have Skills :UNIX Shell ScriptingKey Responsibilities :a:Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms b:Experience with Splunk Searching and Reporting, Knowledge Objects administration, Clustering and Forwarder Management c:Support Splunk on Unix, Linux and Windows-based platforms Technical Experience :a:At least 5 years of experience in IT with minimum 3 years in Splunk b:Skills in technical areas which support the deployment and integration of Splunk based solutions, Splunk Apps and Add-ons for monitoring and data integrations- including Infrastructure, Network, OS, DB, Middleware, Storage; Virtualization, Cloud Architectures etc, c:Good to have knowledge on Java scripting, Python, shell scripting-based development Professional Attributes :a:Excellent customer facing skills b:Experience working with a global team c:Strong analytical and problem-solving skills Educational Qualification:a:15 years of full time educationAdditional Info :a:Good verbal and written communication skill Qualification a 15 years of full time education

About The Role Project Role : Application Support Engineer Project Role Description : Act as software detectives, provide a dynamic service identifying and solving issues within multiple components of critical business systems. Must have skills : Splunk Administration Good to have skills : Cloud InfrastructureMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Support Engineer, you will act as software detectives, providing a dynamic service identifying and solving issues within multiple components of critical business systems. Your typical day will involve troubleshooting and resolving application-related issues to ensure seamless operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Proactively identify and resolve application issues.- Collaborate with cross-functional teams to troubleshoot and resolve system problems.- Implement best practices for application support and maintenance.- Document troubleshooting steps and solutions for future reference.- Provide training and guidance to junior team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Cloud Infrastructure.- Strong understanding of Splunk architecture and components.- Knowledge of scripting languages for automation tasks.- Experience in monitoring and maintaining application performance.- Ability to analyze and interpret application logs for troubleshooting. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Tech Support Practitioner, you will act as the ongoing interface between the client and the system or application. You will be dedicated to quality, using exceptional communication skills to keep our world-class systems running. With your deep product knowledge, you will accurately define a client issue and interpret and design a resolution. Your typical day will involve providing ongoing support to clients, troubleshooting issues, and ensuring the smooth functioning of the system or application. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Ensure effective communication with clients to understand their issues and provide timely resolutions.- Troubleshoot and resolve technical issues related to the system or application.- Collaborate with cross-functional teams to identify and implement improvements to enhance system performance.- Stay updated with the latest industry trends and technologies to provide proactive support and recommendations. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Splunk Enterprise Architecture and Design.- Strong understanding of system and application support principles.- Experience in troubleshooting and resolving technical issues.- Knowledge of ITIL processes and best practices.- Excellent communication and interpersonal skills to effectively interact with clients and cross-functional teams. Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full-time education is required. Qualification 15 years full time education

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Basic Qualifications B.E./B.Tech in Computers or related field (preferred). 4+ Years of Experience in SOC Administration. Strong knowledge of SIEM architecture, log sources, and event correlation. Preferred Qualifications Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.) Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration. Configuring, maintaining, and troubleshooting SIEM solutions. Strong analytical and problem-solving skills. Excellent communication and documentation abilities.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Administration Good to have skills : Splunk, Incident Management, System Monitoring Tools & TechniquesMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Be actively involved in ensuring the security of the organization's digital assets and infrastructure. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Implement security measures to protect computer systems, networks, and data.- Conduct regular security assessments to identify vulnerabilities and risks.- Develop and implement security policies, protocols, and procedures.- Monitor security incidents and respond in a timely manner.- Provide guidance and support to junior security team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Incident Management, System Monitoring Tools & Techniques.- Strong understanding of security principles and best practices.- Knowledge of network security protocols and technologies.- Experience in implementing and managing security solutions.- Familiarity with regulatory compliance requirements. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Cloud Platform Engineer Project Role Description : Designs, builds, tests, and deploys cloud application solutions that integrate cloud and non-cloud infrastructure. Can deploy infrastructure and platform environments, creates a proof of architecture to test architecture viability, security and performance. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and DesignMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Cloud Platform Engineer, you will be responsible for designing, building, testing, and deploying cloud application solutions that integrate cloud and non-cloud infrastructure. Your typical day will involve deploying infrastructure and platform environments, creating a proof of architecture to test architecture viability, security, and performance. You will play a crucial role in ensuring the success of cloud-based projects and driving innovation in cloud technology. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Collaborate with cross-functional teams to design and implement cloud-based solutions.- Develop and maintain cloud infrastructure and platform environments.- Perform testing and troubleshooting of cloud applications and infrastructure.- Ensure the security and performance of cloud solutions.- Provide technical guidance and support to team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Splunk Enterprise Architecture and Design.- Strong understanding of cloud architecture and infrastructure.- Experience in deploying and managing cloud-based applications.- Knowledge of cloud security best practices.- Familiarity with automation tools and scripting languages.- Ability to troubleshoot and resolve issues in cloud environments. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Noida office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Administration Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with teams to develop innovative solutions and ensure seamless application functionality. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead and mentor junior professionals- Implement best practices for application development- Stay updated on industry trends and technologies Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration- Strong troubleshooting and problem-solving skills- Experience in designing and implementing scalable applications- Knowledge of application security best practices- Experience in performance tuning and optimization Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk Administration- This position is based at our Bengaluru office- A 15 years full-time education is required Qualification 15 years full time education

Role & responsibilities The experience should be around 10 years and package can be INR 12-15 Lakhs per annum. I will appreciate on sharing of the profiles on priority, please. JD as below. Level L4. Location – Chennai. Time Zone – Australian Business Hours. Job Description (JD) highly skilled Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as other Splunk components in a complex environment. The role will involve building and maintaining dashboards, alerts, and KPI-driven visualizations to provide real-time insights and monitoring capabilities. Key Responsibilities: Splunk ITSI Management: Administer and manage Splunk ITSI modules, including service and KPI creation, glass table design, and correlation searches. Create and maintain ITSI Service Health Scores and Glass Tables to provide real-time visualization of critical services and their KPIs. Fine-tune ITSI correlation searches to optimize event correlation and incident management. Design and implement KPI-based thresholds and alerts for service health monitoring and event detection. Splunk Dashboard & Visualization: Design, develop, and maintain custom dashboards in Splunk and Splunk ITSI using SPL, panels, and visualization techniques. Create dashboards for real-time monitoring, reporting, and performance tracking based on IT operational data Splunk Alerts & Monitoring: Design, configure, and maintain alerts based on defined KPI thresholds, searches, and correlation rules in Splunk and Splunk ITSI. Create and maintain ITSI Episode Review policies to manage events and incidents efficiently. Automate alert management workflows for efficient incident response. Splunk Administration: Operational Support: Act as a subject matter expert (SME) for Splunk ITSI and Splunk Dashboards within the organization. Troubleshoot and resolve performance, configuration, and indexing issues in Splunk and ITSI. Ensure compliance with security standards, policies, and audit requirements. Performance & Capacity Planning: Automation & Optimization: Automate Splunk configurations using deployment server, REST APIs, or orchestration tools. Continuously optimize Splunk Dashboards for performance and efficiency. Incident Management & Reporting: Work with Service Operations Teams to create proactive monitoring alerts. Generate and maintain reports for system performance, availability, and capacity. Assist in the development and delivery of regular reports, alerts, and dashboards for business stakeholders using Splunk and ITSI. Required Qualifications: 5+ years of experience working with Splunk as an admin, including multi-site indexer clusters. 2+ years of experience managing and deploying Splunk ITSI with in-depth knowledge of service monitoring, glass tables, KPI creation, and episode management. Expertise in creating and managing Splunk Dashboards and Alerts using SPL and ITSI. Strong skills in SPL (Search Processing Language) for building queries, reports, and dashboards. Proficiency in creating alerts, managing correlation searches, and configuring escalation workflows. Experience with scripting languages like Python or Shell for automation purposes. Strong understanding of networking concepts, Linux administration, and security monitoring. Experience with data onboarding, parsing, indexing, and knowledge object creation in Splunk. Splunk certifications (Splunk Admin, Splunk ITSI Implementation) are a strong plus.

Position : SIEM Engineer (Splunk Administrator--Cyber Security Domain) Working Time : 06:00 PM to 03:00 AM IST(US EST Time zone) Working Mode: Work From Home/Remote Office Address : Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081 Experience Level: 5 to 10 Years Responsibilities: Architect, deploy, and maintain Splunk for SIEM use cases including log ingestion, data normalization, and incident correlation. Manage and optimize Microsoft Defender for Endpoint, Identity, Cloud, Office 365, and other Defender tools to maximize protection and visibility. Develop custom queries, detection rules, workbooks, and automation playbooks to improve threat detection and response efficiency. Lead the design and implementation of security monitoring, including data connectors, analytics rules, and incident automation. Collaborate with threat analysts and incident response teams to triage, investigate, and respond to security alerts and incidents. Provide technical guidance in security best practices, incident response procedures, and threat hunting using Microsoft security tools. Continuously assess the security landscape and recommend improvements to policies, tools, and configurations. In addition to strong technical acumen, the ideal candidate will bring excellent communication and client-facing skills to collaborate directly with customers, understand their security needs, and deliver tailored solutions that align with their risk posture and compliance requirements. Outcomes: Integration & Optimization: Integrate and optimize Splunk to improve visibility and automate threat detection workflows Threat Detection: Utilize Splunk AI-powered analytics to dashboard reports and automate critical reporting functions Automation & Playbook Development: Develop automated detection and response playbooks based on Microsoft data feeds, streamlining incident management and reducing time to resolution. Collaboration & Knowledge Sharing: Work closely with other security and IT teams to share threat intelligence, optimize SIEM use, and contribute to security strategy development. Reporting & Documentation: Develop and maintain dashboards, reports, and documentation related to Microsoft Sentinel deployment, performance, and incident metrics. Continuous Improvement: Continuously evaluate Microsoft Sentinel capabilities and other relevant security tools to recommend improvements and refine detection capabilities. Required Qualifications: 4+ years of SIEM experience in Splunk Hands-on experience with other SIEM platforms (Splunk) and integrating them with endpoint security tools. Strong understanding of cybersecurity principles, threat detection, and SIEM management. Proficiency in scripting and automation (Python, PowerShell, etc.). Experience with cloud security (AWS, Azure, GCP) and cloud-native SIEM solutions is a plus. Bachelors degree in Computer Science, Information Security, or a related field (or equivalent experience) Preferred Qualifications: 5+ years of experience in cybersecurity in a SOC or security engineering capacity. Proven hands-on expertise with Microsoft Sentinel and Microsoft Defender suite. Deep knowledge of Splunk Query Language (SPL) and building custom analytics rules and workbooks in Splunk. Strong experience in customer-facing roles. Experience with incident response, threat detection, and threat hunting techniques. Strong understanding of cloud security, especially in Azure environments. Familiarity with MITRE ATT&CK, NIST, and other security frameworks. Experience integrating Splunk with third-party solutions (e.g., threat intel feeds, ticketing systems). Key Skills: Technical Skills: Microsoft Security platform, SIEM tools, security automation, machine learning for cybersecurity, network security. Analytical Skills: Strong ability to analyze large datasets and correlate logs/events. Communication Skills: Excellent verbal and written communication skills for collaborating with cross-functional teams and providing clear reporting. Problem-Solving: Strong troubleshooting skills with the ability to resolve complex security issues quickly and effectively.

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with team members to develop innovative solutions and enhance application functionality. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Develop and implement application features based on business requirements.- Troubleshoot and debug applications to ensure optimal performance.- Collaborate with cross-functional teams to integrate applications with existing systems.- Stay updated on industry trends and best practices in application development.- Provide technical guidance and support to junior team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk.- Strong understanding of data analysis and visualization techniques.- Experience with Splunk Administration.- Hands-on experience in designing and implementing applications.- Knowledge of software development lifecycle and methodologies. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk.- This position is based at our Hyderabad office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : Unix Shell ScriptingMinimum 5 year(s) of experience is required Educational Qualification : a 15 years of full time education Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth functioning of systems and applications. Your typical day will involve interfacing with clients, accurately defining and resolving issues, and utilizing your expertise in Splunk Administration and UNIX Shell Scripting. Roles & Responsibilities:- Act as the primary point of contact for clients, providing ongoing support and ensuring the smooth functioning of systems and applications.- Accurately define client issues and interpret and design resolutions based on deep product knowledge.- Utilize your expertise in Splunk Administration and UNIX Shell Scripting to troubleshoot and resolve technical issues.- Collaborate with cross-functional teams to identify and resolve complex technical issues, utilizing exceptional communication skills to keep systems running smoothly.- Stay updated with the latest advancements in technology and apply innovative approaches for sustained competitive advantage. Professional & Technical Skills: - Must To Have Skills: Expertise in Splunk Administration.- Good To Have Skills: UNIX Shell Scripting.- Strong understanding of system and application support, with a proven track record of delivering impactful solutions.- Exceptional communication skills, with the ability to accurately define and interpret client issues.- Solid grasp of troubleshooting and problem-solving techniques.- Ability to collaborate effectively with cross-functional teams. Must have Skills :Splunk AdministrationGood to Have Skills :UNIX Shell ScriptingKey Responsibilities :a:Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms b:Experience with Splunk Searching and Reporting, Knowledge Objects administration, Clustering and Forwarder Management c:Support Splunk on Unix, Linux and Windows-based platforms Technical Experience :a:At least 5 years of experience in IT with minimum 3 years in Splunk b:Skills in technical areas which support the deployment and integration of Splunk based solutions, Splunk Apps and Add-ons for monitoring and data integrations- including Infrastructure, Network, OS, DB, Middleware, Storage; Virtualization, Cloud Architectures etc, c:Good to have knowledge on Java scripting, Python, shell scripting-based development Professional Attributes :a:Excellent customer facing skills b:Experience working with a global team c:Strong analytical and problem-solving skills Educational Qualification:a:15 years of full time educationAdditional Info :a:Good verbal and written communication skill Qualification a 15 years of full time education

Technical Skills & Competencies: Cyber Security: 8-10+ years of hands-on experience in cybersecurity and incident response. Proficient in: Risk Assessment & Penetration Testing IDS/IPS SIEM platforms Endpoint Protection Incident Management Tools Strong understanding of malware, spyware, ransomware, and advanced persistent threats. Familiarity with operating systems: Linux, Windows, macOS. Knowledge of infrastructure environments such as VMware, Windows domains, Kubernetes, AWS, and Azure. Splunk: 5+ years of Splunk administration experience. Expertise in: Splunk Universal & Heavy Forwarders Add-ons and app management Log parsing and ingestion Data source onboarding Custom SPL query development Scripting knowledge: Python, Shell, or PowerShell (basic level). Familiar with data formats like JSON, XML, and CSV. Understanding of TCP/IP, firewalls, and syslog protocols.

We are seeking a highly skilled and experienced Splunk Architect to lead the design, implementation, and optimization of our Splunk infrastructure. The ideal candidate will have a strong background in IT operations, security, and data analytics, with a proven track record of architecting and managing enterprise-level Splunk deployments. Key Responsibilities: Design and implement scalable and resilient Splunk architectures across enterprise environments. Lead the deployment, configuration, and maintenance of Splunk components (indexers, forwarders, search heads, deployment servers). Develop and maintain data ingestion pipelines, parsing, and normalization of logs from various sources. Create and manage Splunk dashboards, alerts, reports, and visualizations for IT operations and security use cases. Collaborate with security, DevOps, and infrastructure teams to ensure effective log management and monitoring. Optimize performance and troubleshoot issues within the Splunk environment. Ensure compliance with data governance and security policies. Provide mentorship and guidance to junior Splunk engineers and analysts. Stay updated with the latest Splunk features, apps, and industry best practices. Required Skills & Qualifications: 79 years of experience in Splunk architecture and administration. Strong expertise in Splunk Enterprise, Splunk Cloud. Experience with onboarding data sources, creating custom apps, and developing SPL queries. Proficiency in scripting languages (Python, Bash, PowerShell) for automation and integration. Familiarity with ITSI, and other Splunk premium apps is a plus. Splunk certifications (e.g., Splunk Certified Architect, Splunk Certified Admin) are highly desirable. Excellent problem-solving, communication, and documentation skills. Preferred Qualifications: Experience with cloud platforms (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes). Understanding of networking, firewalls, and endpoint security. Exposure to other log management.

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

Greeting From Peoplefy !! Shift: Rotational Mode: Hybrid Job Summary Sr. System Engineer Core Splunk Admin Linux Operating System Secondary Skills- • Any Cloud Experience Total (Min & Max)- 7-10 years - Min 6 Years relevant Shifts /Work timings- 24*7 shift WFO-all 5 days Skills Required- Linux, Unix, VMware, Ansible, L3 level support Good to have- Any cloud Location-Pune, Bangalore, Hyderabad Interested Candidates can share their updated cv on asha.ch@peoplefy.com

Job Description and key skills: Monitor Splunk infrastructure, logs & dashboards for anomalies. Respond to alerts & incidents as part of business support. Perform initial triage, escalate to L3 when required. Work on incident resolution within defined SLA’s. Document the RCA for major incidents. Ensure high availability & reliability of Splunk environments (indexers, SHs, forwarders, etc.). Perform routine health checks & system audits. Handle Splunk configuration changes (inputs.conf, outputs.conf, props.conf, etc.). Manage users' access & roles. Identifying & resolving performance bottlenecks in indexing & searching. Monitor ingestion rates, indexing latency, data missing & storage usage. Work on daily deployments to create, update, and delete the Splunk apps, add-ons & configuration in a controlled manner. Maintain & validate data onboarding process with BSA, BAs, etc. Using scripts (bash, Python, etc.) to automate routine tasks. Work with CI/CD pipelines for Splunk deployments. Integrate Splunk with tools like ServiceNow, AWS, git, Jenkins, etc. Strong hands-on with Splunk core (Indexer, SH, Forwarder) Strong knowledge of Linux, networking & cloud platforms (AWS, GCP) Familiarity with ITIL process, especially incident, problem & change management Tools : ServiceNow, Git, Jenkins, AWS, GCP Certifications: - Splunk Core Certified User / Splunk Core Certified Power User Splunk Enterprise Certified Admin Splunk Cloud Certified Admin Total Experience Expected: 06-08 years