85 Splunk Administration Jobs

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Enterprise Architecture and Design Good to have skills : Splunk Administration, Dynatrace AdministrationMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Tech Support Practitioner, you will act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world-class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Provide timely and effective technical support to clients.- Troubleshoot and resolve system or application issues.- Collaborate with internal teams to enhance system performance.- Document and maintain technical support processes.- Stay updated on industry trends and best practices. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Enterprise Architecture and Design.- Good To Have Skills: Experience with Splunk Administration.- Strong understanding of system architecture and design principles.- Knowledge of ITIL framework and incident management processes.- Familiarity with cloud technologies and troubleshooting methodologies. Additional Information:- The candidate should have a minimum of 2 years of experience in Splunk Enterprise Architecture and Design.- This position is based at our Pune office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Administration Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. You will collaborate with teams to ensure seamless integration and functionality of applications. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Develop and maintain applications according to business requirements.- Troubleshoot and debug applications to ensure optimal performance. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Strong understanding of application development principles.- Experience in configuring and optimizing applications for performance.- Knowledge of database management and integration.- Familiarity with software development lifecycle processes. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- no location constraints- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Technology Support Engineer Project Role Description : Resolve incidents and problems across multiple business system components and ensure operational stability. Create and implement Requests for Change (RFC) and update knowledge base articles to support effective troubleshooting. Collaborate with vendors and help service management teams with issue analysis and resolution. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Technology Support Engineer, you will be responsible for resolving incidents and problems across multiple business system components, ensuring operational stability, creating and implementing Requests for Change (RFC), and collaborating with vendors and service management teams for issue analysis and resolution. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Implement effective troubleshooting strategies.- Update knowledge base articles for operational support.- Collaborate with vendors for issue resolution. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk.- Strong understanding of Splunk Administration.- Experience with data analysis and problem-solving.- Knowledge of IT service management processes.- Familiarity with incident and problem resolution techniques. Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk.- This position is based at our Kolkata office.- A 15 years full-time education is required. Qualification 15 years full time education

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM), Splunk Administration, Splunk Enterprise Security, Splunk Phantom Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Splunk Engineer, you will be working within the Security Engineering & Technology Services team, responsible for understanding, researching, designing, developing, operating, and enhancing security solutions with the products client has acquired for consumption as a service offering across all of client. You will collaborate with Security Operations (mainly Cyber) teams to support in implementation of new technical solutions, on-board new data into Splunk and develop use cases to meet the business requirements Roles & Responsibilities:Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS SolutionBuilding Co-relation searches for Cyber Operation requirementsEvaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness auditStructure phased deliverables to link long term vision with time-boxed activities.Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully.Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Professional & Technical Skills: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud & SOARKnowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction.Knowledge of the Common Information Model, data models, enrichment, and automationGood experience on Splunk add-Ons installation / configuration to bring security logs into Splunk.Good understanding of the Security Domain.Documentation skills in order to provide high quality documentation for internal customers and technical teams. Additional Information:- The candidate should have a minimum of 8+ years of experience in Security Information and Event Management (SIEM) with 5+ yrs experience on Splunk SIEM.- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions.- This position is based at our Pune office with flexible locations as banglore and Chennai. Qualification 15 years full time education

Greetings !! We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers. Roles & Responsibilities: Splunk Deployment & Administration: Install, configure, and manage Splunk Enterprise and Splunk Cloud. Handle indexers, search heads, forwarders, and clustering. Optimize Splunk performance, storage, and scalability. Security & Splunk Monitoring Solutions: Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards. Troubleshoot security-related issues within Splunk. Customer Interaction & Troubleshooting: Engage with customers to understand their requirements and provide technical guidance. Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding. Splunk Architecture & Implementation: Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. Lead end-to-end Splunk implementations, migrations, and upgrades. Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics. Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools. Team Leadership & Customer Engagement: Lead and mentor a team of Splunk Administrators & Engineers. Interact with customers to gather requirements, design solutions, and conduct workshops etc. Review and improve Splunk use cases, dashboards, and data models. Optimization & Automation: Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration. Tune Splunk performance, search queries, and indexing strategies. Implement best practices for data onboarding, parsing, and CIM compliance. Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details. Current CTC: Expected CTC: Notice Period:

Job Summary We are seeking a highly skilled Principal Infra Developer with 8 to 12 years of experience to join our team. The ideal candidate will have expertise in Splunk Admin SRE Grafana ELK and Dynatrace AppMon. This hybrid role requires a proactive individual who can contribute to our infrastructure development projects and ensure the reliability and performance of our systems. The position does not require travel and operates during day shifts. Responsibilities Systems Engineer Splunk or ElasticSearch Admin Job Requirements Build Deploy and Manage the Enterprise Lucene DB systems Splunk Elastic to ensure that the legacy physical Virtual systems and container infrastructure for businesscritical services are being rigorously and effectively served for high quality logging services with high availability. Support periodic Observability and infrastructure monitoring tool releases and tool upgrades Environment creation Performance tuning of large scale Prometheus systems Serve as Devops SRE for the internal observability systems in Visas various data centers across the globe including in Cloud environment Lead the evaluation selection design deployment and advancement of the portfolio of tools used to provide infrastructure and service monitoring. Ensure tools utilized can provide the critical visibility on modern architectures leveraging technologies such as cloud containers etc. Maintain upgrade and troubleshoot issues with SPLUNK clusters. Monitor and audit configurations and participate in the Change Management process to ensure that unauthorized changes do not occur. Manage patching and updates of Splunk hosts andor Splunk application software. Design develop recommend and implement Splunk dashboards and alerts in support of the Incident Response team. Ensure monitoring team increases use of automation and adopts a DevOpsSRE mentality Qualification 6plus years of enterprise system logging and monitoring tools experience with a desired 5plus years in a relevant critical infrastructure of Enterprise Splunk and Elasticsearch 5plus yrs of working experience as Splunk Administrator with Cluster Building Data Ingestion Management User Role Management Search Configuration and Optimization. Strong knowledge on opensource logging and monitoring tools. Experience with containers logging and monitoring solutions. Experience with Linux operating system management and administration Familiarity with LANWAN technologies and clear understanding of basic network concepts services Strong understanding of multitier application architectures and application runtime environments Monitoring the health and performance of the Splunk environment and troubleshooting any issues that arise. Worked in 247 on call environment. Knowledge of Python and other scripting languages and infrastructure automation technologies such as Ansible is desired Splunk Admin Certified is a plus

Project Role :Application Tech Support Practitioner Project Role Description :Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills :Splunk Administration Good to have skills :NA Minimum 5 year(s) of experience is required Educational Qualification :a 15 years of full time education Summary:As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth functioning of systems and applications. Your typical day will involve interfacing with clients, accurately defining and resolving issues, and utilizing your expertise in Splunk Administration and UNIX Shell Scripting. Roles & Responsibilities: Act as the primary point of contact for clients, providing ongoing support and ensuring the smooth functioning of systems and applications. Accurately define client issues and interpret and design resolutions based on deep product knowledge. Utilize your expertise in Splunk Administration and UNIX Shell Scripting to troubleshoot and resolve technical issues. Collaborate with cross-functional teams to identify and resolve complex technical issues, utilizing exceptional communication skills to keep systems running smoothly. Stay updated with the latest advancements in technology and apply innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Expertise in Splunk Administration. Good To Have Skills:UNIX Shell Scripting. Strong understanding of system and application support, with a proven track record of delivering impactful solutions. Exceptional communication skills, with the ability to accurately define and interpret client issues. Solid grasp of troubleshooting and problem-solving techniques. Ability to collaborate effectively with cross-functional teams. Must have Skills :Splunk AdministrationGood to Have Skills :UNIX Shell ScriptingKey Responsibilities :a:Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms b:Experience with Splunk Searching and Reporting, Knowledge Objects administration, Clustering and Forwarder Management c:Support Splunk on Unix, Linux and Windows-based platforms Technical Experience :a:At least 5 years of experience in IT with minimum 3 years in Splunk b:Skills in technical areas which support the deployment and integration of Splunk based solutions, Splunk Apps and Add-ons for monitoring and data integrations- including Infrastructure, Network, OS, DB, Middleware, Storage; Virtualization, Cloud Architectures etc, c:Good to have knowledge on Java scripting, Python, shell scripting-based development Professional Attributes :a:Excellent customer facing skills b:Experience working with a global team c:Strong analytical and problem-solving skills Educational Qualification:a:15 years of full time educationAdditional Info :a:Good verbal and written communication skill Qualifications a 15 years of full time education

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and Design Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Tech Support Practitioner, you will act as the ongoing interface between the client and the system or application. You will be dedicated to quality, using exceptional communication skills to keep our world-class systems running. With your deep product knowledge, you will accurately define a client issue and interpret and design a resolution. Your typical day will involve providing ongoing support to clients, troubleshooting issues, and ensuring the smooth functioning of the system or application. Roles & Responsibilities: Expected to be an SME, collaborate and manage the team to perform. Responsible for team decisions. Engage with multiple teams and contribute on key decisions. Provide solutions to problems for their immediate team and across multiple teams. Ensure effective communication with clients to understand their issues and provide timely resolutions. Troubleshoot and resolve technical issues related to the system or application. Collaborate with cross-functional teams to identify and implement improvements to enhance system performance. Stay updated with the latest industry trends and technologies to provide proactive support and recommendations. Professional & Technical Skills: Must To Have Skills:Proficiency in Splunk Administration. Good To Have Skills:Experience with Splunk Enterprise Architecture and Design. Strong understanding of system and application support principles. Experience in troubleshooting and resolving technical issues. Knowledge of ITIL processes and best practices. Excellent communication and interpersonal skills to effectively interact with clients and cross-functional teams. Additional Information: The candidate should have a minimum of 5 years of experience in Splunk Administration. This position is based at our Bengaluru office. A 15 years full-time education is required. Qualifications 15 years full time education

Roles and Responsibilities Collaborate with cross-functional teams to develop custom solutions using Python scripts. Troubleshoot complex issues related to data ingestion, processing, and visualization in Splunk. Configure and manage indexers, search heads, and other components of the Splunk platform. Design, implement, and maintain large-scale Splunk environments across multiple sites. Develop and execute deployment plans for new Splunk instances on AWS cloud infrastructure.

Shift: Rotational Mode: Hybrid Job Summary Sr. System Engineer Core Splunk Admin Linux Operating System Secondary Skills- • Any Cloud Experience Total (Min & Max)- 7-10 years - Min 6 Years relevant Shifts /Work timings- 24*7 shift WFO-all 5 days Skills Required- Linux, Unix, VMware, Ansible, L3 level support Good to have- Any cloud Location-Pune Send your updated cv on varsha.si@peoplefy.com

Job Summary We are seeking a highly skilled Principal Infra Developer with 8 to 12 years of experience to join our team. The ideal candidate will have expertise in Splunk Admin SRE Grafana ELK and Dynatrace AppMon. This hybrid role requires a proactive individual who can contribute to our infrastructure development projects and ensure the reliability and performance of our systems. The position does not require travel and operates during day shifts. Responsibilities Systems Engineer Splunk or ElasticSearch Admin Job Requirements Build Deploy and Manage the Enterprise Lucene DB systems Splunk Elastic to ensure that the legacy physical Virtual systems and container infrastructure for businesscritical services are being rigorously and effectively served for high quality logging services with high availability. Support periodic Observability and infrastructure monitoring tool releases and tool upgrades Environment creation Performance tuning of large scale Prometheus systems Serve as Devops SRE for the internal observability systems in Visas various data centers across the globe including in Cloud environment Lead the evaluation selection design deployment and advancement of the portfolio of tools used to provide infrastructure and service monitoring. Ensure tools utilized can provide the critical visibility on modern architectures leveraging technologies such as cloud containers etc. Maintain upgrade and troubleshoot issues with SPLUNK clusters. Monitor and audit configurations and participate in the Change Management process to ensure that unauthorized changes do not occur. Manage patching and updates of Splunk hosts andor Splunk application software. Design develop recommend and implement Splunk dashboards and alerts in support of the Incident Response team. Ensure monitoring team increases use of automation and adopts a DevOpsSRE mentality Qualification 6plus years of enterprise system logging and monitoring tools experience with a desired 5plus years in a relevant critical infrastructure of Enterprise Splunk and Elasticsearch 5plus yrs of working experience as Splunk Administrator with Cluster Building Data Ingestion Management User Role Management Search Configuration and Optimization. Strong knowledge on opensource logging and monitoring tools. Experience with containers logging and monitoring solutions. Experience with Linux operating system management and administration Familiarity with LANWAN technologies and clear understanding of basic network concepts services Strong understanding of multitier application architectures and application runtime environments Monitoring the health and performance of the Splunk environment and troubleshooting any issues that arise. Worked in 247 on call environment. Knowledge of Python and other scripting languages and infrastructure automation technologies such as Ansible is desired Splunk Admin Certified is a plus

Project Role : Cloud Platform Engineer Project Role Description : Designs, builds, tests, and deploys cloud application solutions that integrate cloud and non-cloud infrastructure. Can deploy infrastructure and platform environments, creates a proof of architecture to test architecture viability, security and performance. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and Design Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Cloud Platform Engineer, you will be responsible for designing, building, testing, and deploying cloud application solutions that integrate cloud and non-cloud infrastructure. Your typical day will involve deploying infrastructure and platform environments, creating a proof of architecture to test architecture viability, security, and performance. You will play a crucial role in ensuring the success of cloud-based projects and driving innovation in cloud technology. Roles & Responsibilities: Expected to perform independently and become an SME. Required active participation/contribution in team discussions. Contribute in providing solutions to work-related problems. Collaborate with cross-functional teams to design and implement cloud-based solutions. Develop and maintain cloud infrastructure and platform environments. Perform testing and troubleshooting of cloud applications and infrastructure. Ensure the security and performance of cloud solutions. Provide technical guidance and support to team members. Professional & Technical Skills: Must To Have Skills:Proficiency in Splunk Administration. Good To Have Skills:Experience with Splunk Enterprise Architecture and Design. Strong understanding of cloud architecture and infrastructure. Experience in deploying and managing cloud-based applications. Knowledge of cloud security best practices. Familiarity with automation tools and scripting languages. Ability to troubleshoot and resolve issues in cloud environments. Additional Information: The candidate should have a minimum of 3 years of experience in Splunk Administration. This position is based at our Noida office. A 15 years full-time education is required. Qualifications 15 years full time education

Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : UNIX Shell Scripting Minimum 5 year(s) of experience is required Educational Qualification : a 15 years of full time education Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth functioning of systems and applications. Your typical day will involve interfacing with clients, accurately defining and resolving issues, and utilizing your expertise in Splunk Administration and UNIX Shell Scripting. Roles & Responsibilities: Act as the primary point of contact for clients, providing ongoing support and ensuring the smooth functioning of systems and applications. Accurately define client issues and interpret and design resolutions based on deep product knowledge. Utilize your expertise in Splunk Administration and UNIX Shell Scripting to troubleshoot and resolve technical issues. Collaborate with cross-functional teams to identify and resolve complex technical issues, utilizing exceptional communication skills to keep systems running smoothly. Stay updated with the latest advancements in technology and apply innovative approaches for sustained competitive advantage. Professional & Technical Skills: Must To Have Skills:Expertise in Splunk Administration. Good To Have Skills:UNIX Shell Scripting. Strong understanding of system and application support, with a proven track record of delivering impactful solutions. Exceptional communication skills, with the ability to accurately define and interpret client issues. Solid grasp of troubleshooting and problem-solving techniques. Ability to collaborate effectively with cross-functional teams. Must have Skills :Splunk AdministrationGood to Have Skills :UNIX Shell ScriptingKey Responsibilities :a:Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms b:Experience with Splunk Searching and Reporting, Knowledge Objects administration, Clustering and Forwarder Management c:Support Splunk on Unix, Linux and Windows-based platforms Technical Experience :a:At least 5 years of experience in IT with minimum 3 years in Splunk b:Skills in technical areas which support the deployment and integration of Splunk based solutions, Splunk Apps and Add-ons for monitoring and data integrations- including Infrastructure, Network, OS, DB, Middleware, Storage; Virtualization, Cloud Architectures etc, c:Good to have knowledge on Java scripting, Python, shell scripting-based development Professional Attributes :a:Excellent customer facing skills b:Experience working with a global team c:Strong analytical and problem-solving skills Educational Qualification:a:15 years of full time educationAdditional Info :a:Good verbal and written communication skill Qualifications a 15 years of full time education

Implement and manage Splunk for monitoring and analyzing machine data to ensure system performance and security.

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with team members to develop innovative solutions and enhance application functionality. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Develop and implement application features based on business requirements.- Troubleshoot and debug applications to ensure optimal performance.- Collaborate with cross-functional teams to integrate applications with existing systems.- Stay updated on industry trends and best practices in application development.- Provide technical guidance and support to junior team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk.- Strong understanding of data analysis and visualization techniques.- Experience with Splunk Administration.- Hands-on experience in designing and implementing applications.- Knowledge of software development lifecycle and methodologies. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk.- This position is based at our Hyderabad office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Administration Good to have skills : Incident Management, System Monitoring Tools & Techniques, SplunkMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Be actively involved in ensuring the security of the organization's digital assets and infrastructure. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Implement security measures to protect computer systems, networks, and data.- Conduct regular security assessments to identify vulnerabilities and risks.- Develop and implement security policies, protocols, and procedures.- Monitor security incidents and respond in a timely manner.- Provide guidance and support to junior security team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Incident Management, System Monitoring Tools & Techniques.- Strong understanding of security principles and best practices.- Knowledge of network security protocols and technologies.- Experience in implementing and managing security solutions.- Familiarity with regulatory compliance requirements. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 12 year(s) of experience is required Educational Qualification : BE Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with teams to develop innovative solutions and contribute to key decisions. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Expected to provide solutions to problems that apply across multiple teams- Lead the application development process- Implement best practices for application design and development- Conduct code reviews and ensure code quality Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk- Strong understanding of Splunk Administration- Experience in designing and implementing Splunk solutions- Knowledge of data analytics and visualization tools- Familiarity with IT infrastructure and application development processes Additional Information:- The candidate should have a minimum of 12 years of experience in Splunk- This position is based at our Bengaluru office- A BE degree is required Qualification BE

KEY Capabilities Experience in working with Splunk Enterprise, Splunk Enterprise Security & Splunk UEBA Minimum of Splunk Power User Certification Good knowledge in programming or Scripting languages such as Python (preferred), JavaScript (preferred), Bash, PowerShell, Bash, etc. Perform remote and on-site gap assessment of the SIEM solution. Define evaluation criteria & approach based on the Client requirement & scope factoring industry best practices & regulations Conduct interview with stakeholders, review documents (SOPs, Architecture diagrams etc.) Evaluate SIEM based on the defined criteria and prepare audit reports Good experience in providing consulting to customers during the testing, evaluation, pilot, production and training phases to ensure a successful deployment. Understand customer requirements and recommend best practices for SIEM solutions. Offer consultative advice in security principles and best practices related to SIEM operations Design and document a SIEM solution to meet the customer needs Experience in onboarding data into Splunk from various sources including unsupported (in-house built) by creating custom parsers Verification of data of log sources in the SIEM, following the Common Information Model (CIM) Experience in parsing and masking of data prior to ingestion in SIEM Provide support for the data collection, processing, analysis and operational reporting systems including planning, installation, configuration, testing, troubleshooting and problem resolution Assist clients to fully optimize the SIEM system capabilities as well as the audit and logging features of the event log sources Assist client with technical guidance to configure end log sources (in-scope) to be integrated to the SIEM Experience in handling big data integration via Splunk Expertise in SIEM content development which includes developing process for automated security event monitoring and alerting along with corresponding event response plans for systems Hands-on experience in development and customization of Splunk Apps & Add-Ons Builds advanced visualizations (Interactive Drilldown, Glass tables etc.) Build and integrate contextual data into notable events Experience in creating use cases under Cyber kill chain and MITRE attack framework Capability in developing advanced dashboards (with CSS, JavaScript, HTML, XML) and reports that can provide near real time visibility into the performance of client applications. Experience in installation, configuration and usage of premium Splunk Apps and Add-ons such as ES App, UEBA, ITSI etc Sound knowledge in configuration of Alerts and Reports. Good exposure in automatic lookup, data models and creating complex SPL queries. Create, modify and tune the SIEM rules to adjust the specifications of alerts and incidents to meet client requirement Work with the client SPOC to for correlation rule tuning (as per use case management life cycle), incident classification and prioritization recommendations Experience in creating custom commands, custom alert action, adaptive response actions etc. Qualification & experience Minimum of 3 to 6 years experience with a depth of network architecture knowledge that will translate over to deploying and integrating a complicated security intelligence solution into global enterprise environments. Strong oral, written and listening skills are an essential component to effective consulting. Strong background in network administration. Ability to work at all layers of the OSI models, including being able to explain communication at any level is necessary. Must have knowledge of Vulnerability Management, Windows and Linux basics including installations, Windows Domains, trusts, GPOs, server roles, Windows security policies, user administration, Linux security and troubleshooting. Good to have below mentioned experience with designing and implementation of Splunk with a focus on IT Operations, Application Analytics, User Experience, Application Performance and Security Management Multiple cluster deployments & management experience as per Vendor guidelines and industry best practices Troubleshoot Splunk platform and application issues, escalate the issue and work with Splunk support to resolve issues Certification in any one of the SIEM Solution such as IBM QRadar, Exabeam, Securonix will be an added advantage Certifications in a core security related discipline will be an added advantage.

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration. Why Gruve At Gruve, we foster a culture of innovation, collaboration, and continuous learning. We are committed to building a diverse and inclusive workplace where everyone can thrive and contribute their best work. If you re passionate about technology and eager to make an impact, we d love to hear from you. Gruve is an equal opportunity employer. We welcome applicants from all backgrounds and thank all who apply; however, only those selected for an interview will be contacted.

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Other Knowledge Base: Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Required Skills & Qualifications: B.E/B.Tech degree in computer science, Cybersecurity, or related field (preferred). 1-3 years experience as Soc Admin Strong knowledge of SIEM architecture, log sources, and event correlation. Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.). Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Soft Skills: Strong analytical and problem-solving skills. Excellent communication and documentation abilities. Ability to work independently and in a team. Must Have Skills: Hands-on experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration Configuring, maintaining, and troubleshooting SIEM solutions. Log source integration, parsing, and normalization. Strong knowledge of TCP/IP, DNS, HTTP, SMTP, FTP, VPNs, proxies, and firewall rules. Familiarity with Linux and Windows system administration.

Shift: 3:00 PM IST to 12.00 AM IST Mode: Hybrid Job Summary The Splunk Operations, Integrations and Development Specialist is responsible for building, operating, integrating, onboarding, and developing content within Splunk. The position requires the individual to be a highly knowledgeable Splunk application support and development along with comprehensive experience interacting with customers and building relationships. The Splunk Administrator is responsible for administering the Splunk Enterprise, Unix administration, Splunk integration management/data onboarding, Splunk user provisioning, and troubleshooting and supporting Splunk Universal Forwarders. The opportunity to join the Cyber Threat Systems team is available to the successful candidate able to engage on tasks independently, document and communicate their work efforts to a Scrum based project team and provide expert level technical support and Splunk development on an enterprise scale. Essential Responsibilities List primary and specific job duties performed daily in order of importance. Perform advanced Splunk administration. Advise, manage, support an enterprise class Splunk environment. Support system administration activities on Linux OS and Splunk Enterprise and related applications Participate in production support activities of Splunk. Participate in team 24x7x7 oncall rotation Design Splunk system to meet growth while maintaining balance between performance/stability and agility. Develops advanced scripts for manipulation of multiple data repositories to support analyst requirements. Onboard and normalize new security and privacy event data into Splunk Develops advanced reports, dashboards or alerts to meet the requirements of critical initiatives. Develops scalable security management tools and processes. Develops automation supporting Splunk application and data management. Create customized searches and applications using programming/development skills such as java, python, shell scripting, regular expression etc. Automate deployment, integration and testing of enterprise system and services Communicate clearly to technical and business audiences Be well organized with a healthy sense of urgency, and able to set, communicate, and meet aggressive deadlines and milestones Self-motivated, learns quickly and delivers results with minimal supervision Quickly understand and interpret customer problem and navigate through complex organizations Represent the group in a friendly, courteous, and professional manner Job Qualifications Bachelor's degree in Business Administration, Computer Science, Social Science, Mathematics, or related field and Minimum eight (8) years experience in IT or a related field. Additional equivalent work experience of three years of work experience may be substituted for degree requirement, in addition to minimum years of experience (11 years total) Minimum 5+ years of experience with Splunk Enterprise application administration and integration management. Minimum 5+ years of professional experience and administration of large scale Linux/Unix deployments Minimum 5+ years of experience with code deployment and revision control software (i.e. Git) Additional Requirements Solid understanding of regular expressions and development on a Linux platform Knowledge of Splunk Administration Understanding of enterprise logging & analytics platforms Infrastructure management and support experience Experience in using scripting languages to automate tasks and manipulate data. Experience working in a large enterprise environment Experience integrating solutions in a multi-vendor environment. Must have skills Hands on experience in Splunk administration Experience in administration of large scale Linux/Unix deployment

Hands on experience in Installation of Splunk components forwarder, Indexer, master and search head. •Experience in Universal Forwarder, CIM mapping, deployment server and Splunk indexer clusters. Maintaining High Availability of Splunk Enterprise

Must have hands on ITSI project experience Develop complex dashboards and optimize searching for users across the firm Support development of scripts (python, JavaScript, etc.) as needed in support of data collection or integration