108 Splunk Administration Jobs - Page 2

Project Role : Technology Support Engineer Project Role Description : Resolve incidents and problems across multiple business system components and ensure operational stability. Create and implement Requests for Change (RFC) and update knowledge base articles to support effective troubleshooting. Collaborate with vendors and help service management teams with issue analysis and resolution. Must have skills : Splunk Administration Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a Senior Engineer Splunk Observability & ITSI to lead the design, deployment, and optimization of observability solutions across our enterprise systems. This role requires deep expertise in Splunk Observability Cloud and Splunk ITSI (IT Service Intelligence) to provide real-time insights, improve system reliability, and drive actionable intelligence through telemetry and service modeling. Roles and responsibilities:- Lead architecture and implementation of observability platforms using Splunk APM, Infrastructure Monitoring, Log Observer, RUM, and Synthetic Monitoring.- Implement OpenTelemetry for distributed tracing and correlation between logs, metrics, and traces.- Define golden signals, SLIs, SLOs, and ensure end-to-end service health visibility.- Design and configure Splunk ITSI Glass Tables, KPIs, Service Trees, and Notable Events.- Integrate ITSI with logs, APM, infrastructure monitoring, and external event sources (e.g., ServiceNow, CMDB).- Develop correlation rules and predictive analytics using machine learning within ITSI.- Drive business-centric service monitoring using entity modeling and service mapping.- Create proactive monitoring with anomaly detection, baselining, and predictive alerting.- Enable faster incident triage and root cause analysis using AIOps capabilities of ITSI.- Integrate ITSI with incident management tools like PagerDuty, Opsgenie, or ServiceNow.- Collaborate with SREs, DevOps, application teams, and business owners to define observability goals.- Lead onboarding of new services into observability and ITSI environments.- Deliver dashboards, runbooks, and observability as code (automation via Terraform or CI/CD).-Professional and Technical skills:- Bachelors degree in Computer Science, Engineering, or related field.- 6+ years in observability, DevOps, or SRE roles.- Hands-on experience with Splunk ITSI, including Service Designer, KPI creation, Glass Tables, and Episode Review.- 3+ years of working experience with Splunk Observability Cloud tools (SignalFx, APM, RUM, Infrastructure Monitoring, Log Observer).- In-depth understanding of Open Telemetry, log aggregation, and metrics collection.- Strong experience with cloud-native technologies Kubernetes, Docker, AWS/Azure/GCP.- Scripting and automation skills (Python, Bash, Terraform).- Familiarity with ITSM/CMDB integration and service-centric monitoring.- Splunk Certifications (e.g., Splunk Core Certified Power User, Splunk ITSI Implementation, Observability Cloud Certified).- Familiarity with ITIL processes and integrations with ServiceNow, BMC, or other ITSM tools.- Experience with other observability/AIOps platforms (Datadog, Dynatrace, AppDynamics, Moogsoft, etc.).- Strong analytical and troubleshooting skills.- Excellent communication and documentation abilities.- Ability to lead initiatives and mentor junior engineers.- Proactive, collaborative, and business-outcome-driven mindset. Additional information:- The candidate should have minimum 3 years of experience.- The position is at our Gurugram office.- A 15 year full time education is required. Qualification 15 years full time education

As an Infra Dev Specialist, you will play a crucial role in managing and optimizing our infrastructure systems. With a focus on Splunk Admin, SRE, Grafana, ELK, and Dynatrace AppMon, you will ensure seamless operations and enhance system performance. This hybrid role requires adaptability to rotational shifts, offering a dynamic work environment without travel obligations. Responsibilities Manage and optimize infrastructure systems to ensure seamless operations and enhance system performance. Implement and maintain Splunk Admin solutions to monitor and analyze system data effectively. Utilize SRE practices to improve system reliability and reduce downtime. Develop and maintain Grafana dashboards for real-time data visualization and monitoring. Administer ELK stack components to ensure efficient log management and analysis. Leverage Dynatrace AppMon for application performance monitoring and troubleshooting. Collaborate with cross-functional teams to identify and resolve infrastructure issues promptly. Conduct regular system audits to ensure compliance with industry standards and best practices. Provide technical support and guidance to team members on infrastructure-related matters. Participate in rotational shifts to ensure 24/7 infrastructure support and monitoring. Contribute to the development and implementation of infrastructure governance, risk, and compliance strategies. Stay updated with the latest industry trends and technologies to enhance infrastructure capabilities. Document infrastructure processes and procedures for knowledge sharing and continuity. Certifications Required : Splunk Certified Admin

Key Responsibilities Process Day to day Operational issues, requests and Project tasks Incident response and resolution within SLA's with excellent analytical and troubleshooting skills Providing all the necessary details to leads about the issue, steps taken, recommendation and any other relevant information Ticket Status Check and Update Respond to False Positive Alerts Incident Escalation and Progress Monitoring Create, review, update, and maintain Standard Operating Procedures. Prepare RCA for the escalated incidents. Perform the Shift handovers Security Incident Response: Leads the escalation as a point for security incidents. Analyze & investigate cyber threats on a real-time/day-to-day basis, involving alerts review, log analysis, and event/incident correlations. Prepare Document and Maintain Procedures, Response Plan, Runbooks, and associated processes for continuous improvement. Assist Analyst for security event and initial incident response to detected threats. Regularly review and recommend changes to policies or controls as needed to enhance security. Identifies potential gaps and offers solutions to include internal team needs, product improvements and client security posture. Develop reporting with focused messages to enable the stakeholders to understand their and responsibilities. Train and mentor, the peers and juniors in the team. SPLUNK Managing Splunk components such as indexer, forwarder, search head, etc Prepare Splunk dashboards. Install, Configure and Troubleshoot Universal forwarders. Triage of non-security alerts based on priority, problem identification and escalation. Escalate to designated contacts within Stratogent and Customer for issues outside SOPs, or when SOPs fail to resolve the issue. Work directly with delivery teams or customers to gather logging requirements. Convert Logging requirements into Splunk designs following best practices. Perform environment health checks. Update and / or create technical documentation. Must-have Skills: Prior Working Experience Must have worked on Splunk Performing incident handling, evidence acquisition, endpoint and Network,and Security Incident management Customer-focused Excellent communication skills (reading, writing, speaking and listening) Highly self-motivated and directed. Excellent attention to detail. Flexibility and willingness to work on different and multiple technologies Ability to effectively prioritize, organize and execute tasks in a high-pressure environment Good to have skills: Prior Work Experience Worked on any of the IAM and PAM tools. Certifications in Enterprise Admin or Cloud Admin of Splunk is an advantage Prior training and certification in communication is added advantage

About The Role Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Administration Good to have skills : Dynatrace AdministrationMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. A typical day involves collaborating with team members to understand project needs, developing application features, and ensuring that the applications function seamlessly within the existing infrastructure. You will also engage in troubleshooting and optimizing applications to enhance performance and user experience, while maintaining documentation and adhering to best practices in software development. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the development and implementation of application features based on user requirements.- Conduct testing and debugging of applications to ensure functionality and performance. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Dynatrace Administration.- Strong understanding of application development methodologies.- Experience with configuration management and deployment processes.- Familiarity with troubleshooting and performance tuning of applications. Additional Information:- The candidate should have minimum 3 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Splunk Engineer / Administrator Security Focus Location: Hyderabad, Bangalore, Gurugram, Pune, Mumbai, Kolkata (Hybrid) Shift Timings: 2 PM 11 PM IST CTC: 8 to 18LPA Experience: 4 to 8 Years Role Overview We are seeking a Splunk Engineer/Administrator with strong expertise in Splunk platform administration and security use cases . The ideal candidate will have hands-on experience in deploying, configuring, and maintaining Splunk environments, along with supporting security operations by designing and enhancing security-focused use cases, dashboards, and reports. This role requires both engineering/admin skills and the ability to align Splunk implementations with enterprise security objectives . Key Responsibilities Splunk Administration & Engineering: Install, configure, upgrade, and maintain Splunk Enterprise/Enterprise Security (ES). Manage Splunk components (indexers, search heads, heavy/universal forwarders, deployment server). Onboard data sources, parse logs, create field extractions, and optimize ingestion pipelines. Ensure Splunk platform performance, availability, and scalability. Security & Use Case Development: Develop and enhance security use cases, alerts, dashboards, and correlation rules in Splunk. Work closely with SOC teams to deploy detection logic, escalation rules, and threat hunting dashboards. Perform security incident analysis and triage using Splunk ES. Deployment & Integration: Drive Splunk deployments for new use cases and applications across customer environments. Collaborate with IT/security stakeholders to integrate Splunk with SIEM, SOAR, IAM, and other security tools. Operations & Support: Perform advanced troubleshooting of Splunk ingestion and search performance issues. Automate admin tasks using scripting (Python, Shell, or PowerShell). Support patching, upgrades, license management, and access control. Collaboration & Innovation: Partner with Deloitte internal teams and client stakeholders to deliver security-focused Splunk solutions. Leverage industry best practices to improve Splunk adoption and optimize operational efficiency. Must-Have Skills 4+ years of IT experience with 3+ years in Splunk administration/engineering . Proven expertise in Splunk Enterprise/Enterprise Security administration (indexer/search head clustering, forwarder management, upgrades). Strong knowledge of log ingestion, parsing, and data onboarding . Hands-on experience in building security detections, dashboards, correlation rules . Good understanding of security operations workflows (SOC, SIEM, incident response). Proficiency with Linux/Unix environments and basic scripting (Python, Shell, PowerShell). Excellent troubleshooting and performance tuning skills. Good-to-Have Skills Splunk Certified Admin / Architect / Power User. Knowledge of cloud-hosted Splunk (AWS/Azure/GCP) . Familiarity with SOAR tools (Phantom, XSOAR, etc.). Exposure to enterprise security frameworks (MITRE ATT&CK, NIST, ISO 27001).

Project Role : Technology Support Engineer Project Role Description : Resolve incidents and problems across multiple business system components and ensure operational stability. Create and implement Requests for Change (RFC) and update knowledge base articles to support effective troubleshooting. Collaborate with vendors and help service management teams with issue analysis and resolution. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Technology Support Engineer, you will be responsible for resolving incidents and problems across multiple business system components, ensuring operational stability, creating and implementing Requests for Change (RFC), and collaborating with vendors and service management teams for issue analysis and resolution. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Implement effective troubleshooting strategies.- Update knowledge base articles for operational support.- Collaborate with vendors for issue resolution. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk.- Strong understanding of Splunk Administration.- Experience with data analysis and problem-solving.- Knowledge of IT service management processes.- Familiarity with incident and problem resolution techniques. Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk.- This position is based at our Kolkata office.- A 15 years full-time education is required. Qualification 15 years full time education

Role & responsibilities Responsibilities Manage and optimize infrastructure systems to ensure seamless operations and enhance system performance. Implement and maintain Splunk Admin solutions to monitor and analyze system data effectively. Utilize SRE practices to improve system reliability and reduce downtime. Develop and maintain Grafana dashboards for real-time data visualization and monitoring. Administer ELK stack components to ensure efficient log management and analysis. Leverage Dynatrace AppMon for application performance monitoring and troubleshooting. Collaborate with cross-functional teams to identify and resolve infrastructure issues promptly. Conduct regular system audits to ensure compliance with industry standards and best practices. Provide technical support and guidance to team members on infrastructure-related matters. Participate in rotational shifts to ensure 24/7 infrastructure support and monitoring. Contribute to the development and implementation of infrastructure governance, risk, and compliance strategies. Stay updated with the latest industry trends and technologies to enhance infrastructure capabilities. Document infrastructure processes and procedures for knowledge sharing and continuity. Certifications Required : Splunk Certified Admin

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

Role & responsibilities Overall experience of at least 3+ years as SIEM Splunk Enterprise Security administrator. Hands-on experience with Splunk enterprise security (SIEM), security tools and devices, operating systems, and/or networking devices desired. Proven skills and experience in Use case development, Log source integration, log source parsing. Experience working across diverse teams to facilitate solutions Demonstrates proven expertise as in administering Splunk Enterprise Security (SIEM) environment. Should have the following skills: Splunk Certified professional having at least Splunk Admin user certification level preferrable. Good experience in Splunk administration and troubleshooting Experience in integration of Splunk with log sources of different types including but not limited to security devices, network devices, web applications, custom applications and so on. Experience in tuning and troubleshooting Splunk premium apps like Enterprise Security, Phantom and UBA. Comfortable in writing regular expression to extract fields from custom log sources. Expertise in developing custom use cases using Splunk search language to correlate and alert on logs from multiple sources. Hands-on experience in creating dashboard and reports using SPL queries and XML. Good knowledge of information security and IT operations domain. Proficiency in client and server operating systems including Linux and Windows General networking and system troubleshooting skills (firewalls, routing, NAT, etc.) Ability to autonomously prioritize and successfully deliver across a portfolio of projects Good consulting skills with ability to manage client expectations Preferred candidate profile

position: Contract to Hire(C2H) Skill: SPLUNK ADMIN , ITSI Experience:9+ Location: Remote Notice Period: Immediate to 15 Days Job Overview We are seeking a skilled Splunk ITSI Engineer to join our team. The ideal candidate will have extensive experience with Splunk Enterprise and Splunk IT Service Intelligence (ITSI) and will be responsible for designing, implementing, and maintaining our Splunk ITSI environment. Key Responsibilities Design and implement Splunk Enterprise and ITSI infrastructure to provide high availability across multiple data centers Develop and maintain glass tables, dashboards, alerts, reports, and KPIs in Splunk ITSI Perform requirements gathering sessions with customers to develop scope and design for new and existing content Integrate Splunk with various data sources and security tools to enhance IT operations monitoring Optimize Splunk performance by configuring indexing and search activities across different machines Troubleshoot and resolve technical issues related to Splunk ITSI Create documentation for build, deployment, and sustainment processes Analyze and interpret large volumes of machine-generated data Develop visualization dashboards and indicators using statistical behavior models and machine learning Collaborate with cross-functional teams to modernize applications and support cloud integration efforts

Your Role Administer and develop solutions usingSplunkandSplunk Security Essentialsto support enterprise security monitoring and analytics. Design, implement, and maintain Splunk dashboards, alerts, and reports to provide actionable insights into security events. UtilizeUNIX shell scripting or Pythonto automate data ingestion, parsing, and enrichment processes. Lead and manage security-related projects from planning through execution, ensuring timely delivery and alignment with business goals. Collaborate with cross-functional teams to define requirements, manage risks, and ensure stakeholder satisfaction. Your Profile 5 to 10 yearsof experience in IT security with a strong focus onSplunk administration and development. Proficiency inSplunk Security Essentials, data onboarding, and custom dashboard creation. Strong scripting skills inUNIX shellorPythonfor automation and integration. Solid understanding ofAgile/Scrum methodologiesand project lifecycle management. Proven experience in leading cross-functional teams and managing complex security projects. What You Will Love Working at Capgemini Work on cutting-edge security analytics platforms likeSplunkin enterprise-scale environments. Lead impactful projects that enhance cybersecurity posture for global clients. Clear career progression paths from engineering to leadership and consulting roles. Collaborate with diverse teams in a supportive, inclusive, and innovation-driven culture. Gain exposure to modern security frameworks, automation tools, and real-time threat intelligence.

As a Splunk Developer with AWS Knowledge, you will be joining a prestigious MNC company on a contract basis in Chennai. With over 5 years of experience, you will be responsible for leveraging your expertise in Datadog, AWS, and Splunk to ensure the smooth and reliable operation of critical applications and infrastructure. Your role will involve proactively monitoring, troubleshooting, and resolving issues to maintain optimal performance and availability. Your responsibilities will include implementing, maintaining, and enhancing Datadog monitoring dashboards and alerts, analyzing monitoring data to identify performance bottlenecks, and resolving alerts to minimize service disruptions. You will also provide timely support for application-related issues, collaborate with development teams to address performance issues, and assist in deployment processes for a seamless transition to production. In addition, you will monitor and manage AWS resources to ensure optimal performance and cost efficiency, troubleshoot AWS-related issues, and participate in cloud infrastructure projects. You will configure and maintain Splunk indexes, searches, dashboards, and alerts, analyze log data to troubleshoot system and application issues, and implement log management best practices. Furthermore, you will be involved in incident response activities, document incident response procedures, and collaborate with various teams to communicate technical information effectively. Staying updated on the latest technologies and best practices in monitoring, application support, and cloud computing will be essential to excel in this role. To qualify for this position, you must have strong experience in Datadog monitoring and alerting, hands-on experience with AWS cloud services such as EC2, and familiarity with Splunk log management and analysis. Your ability to work collaboratively, troubleshoot effectively, and communicate technical details to diverse audiences will be crucial in ensuring the efficient operations of the company's applications and infrastructure.,

Your role This position is responsible for administering the Splunk platforms for enterprise Security Information and Event Management (SIEM). The role involves working with asset owners to ensure the timely and efficient collection of computer security events and logs for the purpose of detecting and responding to information security incidents. Maintain all components of a distributed SPLUNK infrastructure including indexer clusters, search head clusters, and deployment servers. Provide overall management of the SPLUNK platform. Standardize SPLUNK forwarder deployment, configuration, and maintenance across Unix and Windows platforms. Troubleshoot SPLUNK server and forwarder problems and issues. Assist internal users in designing and maintaining production-quality dashboards. Monitor the SPLUNK infrastructure for capacity planning. Implement change requests and engineering tasks. Lead technical discussions in customer governance calls. Participate in technical audits. Identify opportunities for automation, standardization, and stabilization. Prepare/update/review run books, SOPs, and knowledge articles. Plan, prepare, and execute change processes and implementations. Perform OS-level performance monitoring and troubleshooting. Monitor and troubleshoot application and database layers (e.g., Apache, Tomcat, MySQL). Administer and maintain a 24/7 highly available Splunk environment. Work closely with clients, technicians, and managerial staff. Experience with Databricks, Kafka, and NiFi is an added advantage. Your profile Splunk Administrator with 4 to 8 years experience Dashboards, reports creation and Monitoring Experience with Splunk Phantom as well, would be given preference Work location Bengaluru,Mumbai,Pune & Hyderabad What Youll Love About Working Here You can shape yourcareerwith us. We offer a range of career paths and internal opportunities within Capgemini group. You will also get personalized career guidance from our leaders. You will get comprehensive wellness benefits including health checks, telemedicine, insurance with top-ups, elder care, partner coverage or new parent support via flexible work. At Capgemini, you can work oncutting-edge projectsin tech and engineering with industry leaders or createsolutionsto overcome societal and environmental challenges.

You are a Splunk Developer with AWS knowledge who can start immediately. This is a contract position with an MNC company based in Chennai. You should have at least 5 years of experience. As a Datadog Monitoring & Application Support Engineer, you will be responsible for ensuring the smooth and reliable operation of critical applications and infrastructure. Leveraging your expertise in Datadog, AWS, and Splunk, you will proactively monitor, troubleshoot, and resolve issues to ensure optimal performance and availability. Your responsibilities will include implementing, maintaining, and enhancing Datadog monitoring dashboards and alerts, analyzing monitoring data for performance bottlenecks, providing support for application-related issues, monitoring and managing AWS resources, configuring and maintaining Splunk indexes, participating in incident response activities, and effectively communicating technical information to both technical and non-technical audiences. To qualify for this role, you must have strong experience with Datadog monitoring and alerting, experience with AWS cloud services such as EC2, and experience with Splunk log management and analysis. It is essential to stay current on the latest technologies and best practices in monitoring, application support, and cloud computing.,

Role Purpose The purpose of this role is to support delivery through development and deployment of tools. Extensive working knowledge of Splunk administrator and various components (indexer, forwarder, search head, deployment server), as Splunk system administrator. Setting up Splunk Forwarding for new application tiers introduced into the environment. Identifying bad searches/dashboards and partnering with the creators to improve performance. Troubleshooting Splunk performance issues / Opening support cases with Splunk. Monitor the Splunk infrastructure for capacity planning and optimization.. Experience with any Observability tools such as Grafana, Prometheus and also tenants of Observability (Monitoring, Logging and/or tracing) is a plus. Experience with any programming language: Java/GoLang/Python is a plus. Experience working with Linux environment and Unix scripting. Experience with CI/CD: pipeline management with GitHub, Ansible is a plus. Installing, configuration and managing of datadog tool. Creating alerts,dashboards and other metrics in datadog Mandatory Skills: Splunk AIOPS. Experience:5-8 Years.

Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as SME experience on Splunk ITSI .

About The Role Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : a 15 years of full time education Summary :As an Application Tech Support Practitioner, you will be responsible for providing ongoing support to clients and ensuring the smooth functioning of systems and applications. Your typical day will involve interfacing with clients, accurately defining and resolving issues, and utilizing your expertise in Splunk Administration and UNIX Shell Scripting. Roles & Responsibilities:- Act as the primary point of contact for clients, providing ongoing support and ensuring the smooth functioning of systems and applications.- Accurately define client issues and interpret and design resolutions based on deep product knowledge.- Utilize your expertise in Splunk Administration and UNIX Shell Scripting to troubleshoot and resolve technical issues.- Collaborate with cross-functional teams to identify and resolve complex technical issues, utilizing exceptional communication skills to keep systems running smoothly.- Stay updated with the latest advancements in technology and apply innovative approaches for sustained competitive advantage. Professional & Technical Skills: - Must To Have Skills: Expertise in Splunk Administration.- Good To Have Skills: UNIX Shell Scripting.- Strong understanding of system and application support, with a proven track record of delivering impactful solutions.- Exceptional communication skills, with the ability to accurately define and interpret client issues.- Solid grasp of troubleshooting and problem-solving techniques.- Ability to collaborate effectively with cross-functional teams. Must have Skills :Splunk AdministrationGood to Have Skills :UNIX Shell ScriptingKey Responsibilities :a:Standardized Splunk agent deployment, configuration and maintenance across a variety of UNIX and Windows platforms b:Experience with Splunk Searching and Reporting, Knowledge Objects administration, Clustering and Forwarder Management c:Support Splunk on Unix, Linux and Windows-based platforms Technical Experience :a:At least 5 years of experience in IT with minimum 3 years in Splunk b:Skills in technical areas which support the deployment and integration of Splunk based solutions, Splunk Apps and Add-ons for monitoring and data integrations- including Infrastructure, Network, OS, DB, Middleware, Storage; Virtualization, Cloud Architectures etc, c:Good to have knowledge on Java scripting, Python, shell scripting-based development Professional Attributes :a:Excellent customer facing skills b:Experience working with a global team c:Strong analytical and problem-solving skills Educational Qualification:a:15 years of full time educationAdditional Info :a:Good verbal and written communication skill Qualification a 15 years of full time education

About The Role Project Role : Application Support Engineer Project Role Description : Act as software detectives, provide a dynamic service identifying and solving issues within multiple components of critical business systems. Must have skills : Splunk Administration Good to have skills : Cloud InfrastructureMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Support Engineer, you will act as software detectives, providing a dynamic service identifying and solving issues within multiple components of critical business systems. Your typical day will involve troubleshooting and resolving application-related issues to ensure seamless operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Proactively identify and resolve application issues.- Collaborate with cross-functional teams to troubleshoot and resolve system problems.- Implement best practices for application support and maintenance.- Document troubleshooting steps and solutions for future reference.- Provide training and guidance to junior team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Cloud Infrastructure.- Strong understanding of Splunk architecture and components.- Knowledge of scripting languages for automation tasks.- Experience in monitoring and maintaining application performance.- Ability to analyze and interpret application logs for troubleshooting. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

About The Role Project Role : Application Tech Support Practitioner Project Role Description : Act as the ongoing interface between the client and the system or application. Dedicated to quality, using exceptional communication skills to keep our world class systems running. Can accurately define a client issue and can interpret and design a resolution based on deep product knowledge. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Tech Support Practitioner, you will act as the ongoing interface between the client and the system or application. You will be dedicated to quality, using exceptional communication skills to keep our world-class systems running. With your deep product knowledge, you will accurately define a client issue and interpret and design a resolution. Your typical day will involve providing ongoing support to clients, troubleshooting issues, and ensuring the smooth functioning of the system or application. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Ensure effective communication with clients to understand their issues and provide timely resolutions.- Troubleshoot and resolve technical issues related to the system or application.- Collaborate with cross-functional teams to identify and implement improvements to enhance system performance.- Stay updated with the latest industry trends and technologies to provide proactive support and recommendations. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Splunk Enterprise Architecture and Design.- Strong understanding of system and application support principles.- Experience in troubleshooting and resolving technical issues.- Knowledge of ITIL processes and best practices.- Excellent communication and interpersonal skills to effectively interact with clients and cross-functional teams. Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full-time education is required. Qualification 15 years full time education

About the Role We are seeking a skilled SIEM Administrator to manage and optimize different SIEM solutions. The ideal candidate will be responsible for system administration, log integration, troubleshooting, Deployment, Implementation and maintaining security posture for the organization. Key Responsibilities SIEM Administration: Install, configure, maintain, and upgrade SIEM components. (IBM Qradar SIEM, DNIF, Splunk & Securonix). Log Management: Onboard, parse, and normalize logs from various data sources (firewalls, servers, databases, applications, etc.) Custom log source integration and parser development. System Monitoring & Troubleshooting: Ensure SIEM tools are functioning optimally. Monitor & regular health check perform for SIEM tools. troubleshoot system errors and resolve performance issues. Conduct regular performance tuning and capacity planning Perform root cause analysis for system failures & performance issues. Optimize system performance and storage management for SIEM Integration & Automation : Integrate third-party security tools (firewalls, EDR, threat intelligence feeds) with SIEM. Compliance & Audits: Ensure log retention policies comply with regulatory standards. Develop & enforce SIEM access controls & user roles/permissions. Documentation & Training: Document system configurations, SOP’s & troubleshooting documents. Prepare monthly/ weekly reports and PPT, onboarding documentation as per business/ client requirement. Dashboard & Report Development: Create & maintain custom dashboards & reports Optimize searches & reports for performance and efficiency. Hands on experience with Linux OS & Windows OS Basic to mediator level knowledge in networking skills Should be familiar with Azure, AWS or GCP products Basic Qualifications B.E./B.Tech in Computers or related field (preferred). 4+ Years of Experience in SOC Administration. Strong knowledge of SIEM architecture, log sources, and event correlation. Preferred Qualifications Proficiency in log management, regular expressions, and network security concepts. Experience integrating SIEM with various security tools (firewalls, IDS/IPS, antivirus, etc.) Scripting knowledge (Python, Bash, or PowerShell) is a plus. Training or Certificate on Splunk or IBM Qradar Preferred. Experience with SIEM tools like IBM QRadar, Splunk, Securonix, LogRhythm, Microsoft Sentinel, DNIF etc. Proficiency in IBM Qradar & Splunk administration. Configuring, maintaining, and troubleshooting SIEM solutions. Strong analytical and problem-solving skills. Excellent communication and documentation abilities.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Administration Good to have skills : Splunk, Incident Management, System Monitoring Tools & TechniquesMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Be actively involved in ensuring the security of the organization's digital assets and infrastructure. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Implement security measures to protect computer systems, networks, and data.- Conduct regular security assessments to identify vulnerabilities and risks.- Develop and implement security policies, protocols, and procedures.- Monitor security incidents and respond in a timely manner.- Provide guidance and support to junior security team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Incident Management, System Monitoring Tools & Techniques.- Strong understanding of security principles and best practices.- Knowledge of network security protocols and technologies.- Experience in implementing and managing security solutions.- Familiarity with regulatory compliance requirements. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Cloud Platform Engineer Project Role Description : Designs, builds, tests, and deploys cloud application solutions that integrate cloud and non-cloud infrastructure. Can deploy infrastructure and platform environments, creates a proof of architecture to test architecture viability, security and performance. Must have skills : Splunk Administration Good to have skills : Splunk Enterprise Architecture and DesignMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Cloud Platform Engineer, you will be responsible for designing, building, testing, and deploying cloud application solutions that integrate cloud and non-cloud infrastructure. Your typical day will involve deploying infrastructure and platform environments, creating a proof of architecture to test architecture viability, security, and performance. You will play a crucial role in ensuring the success of cloud-based projects and driving innovation in cloud technology. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work-related problems.- Collaborate with cross-functional teams to design and implement cloud-based solutions.- Develop and maintain cloud infrastructure and platform environments.- Perform testing and troubleshooting of cloud applications and infrastructure.- Ensure the security and performance of cloud solutions.- Provide technical guidance and support to team members. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration.- Good To Have Skills: Experience with Splunk Enterprise Architecture and Design.- Strong understanding of cloud architecture and infrastructure.- Experience in deploying and managing cloud-based applications.- Knowledge of cloud security best practices.- Familiarity with automation tools and scripting languages.- Ability to troubleshoot and resolve issues in cloud environments. Additional Information:- The candidate should have a minimum of 3 years of experience in Splunk Administration.- This position is based at our Noida office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Splunk Administration Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with teams to develop innovative solutions and ensure seamless application functionality. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead and mentor junior professionals- Implement best practices for application development- Stay updated on industry trends and technologies Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Administration- Strong troubleshooting and problem-solving skills- Experience in designing and implementing scalable applications- Knowledge of application security best practices- Experience in performance tuning and optimization Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk Administration- This position is based at our Bengaluru office- A 15 years full-time education is required Qualification 15 years full time education

Role & responsibilities The experience should be around 10 years and package can be INR 12-15 Lakhs per annum. I will appreciate on sharing of the profiles on priority, please. JD as below. Level L4. Location – Chennai. Time Zone – Australian Business Hours. Job Description (JD) highly skilled Splunk ITSI Admin with solid experience in Splunk Administration. The successful candidate will manage the configuration, deployment, and maintenance of Splunk IT Service Intelligence (ITSI), as well as other Splunk components in a complex environment. The role will involve building and maintaining dashboards, alerts, and KPI-driven visualizations to provide real-time insights and monitoring capabilities. Key Responsibilities: Splunk ITSI Management: Administer and manage Splunk ITSI modules, including service and KPI creation, glass table design, and correlation searches. Create and maintain ITSI Service Health Scores and Glass Tables to provide real-time visualization of critical services and their KPIs. Fine-tune ITSI correlation searches to optimize event correlation and incident management. Design and implement KPI-based thresholds and alerts for service health monitoring and event detection. Splunk Dashboard & Visualization: Design, develop, and maintain custom dashboards in Splunk and Splunk ITSI using SPL, panels, and visualization techniques. Create dashboards for real-time monitoring, reporting, and performance tracking based on IT operational data Splunk Alerts & Monitoring: Design, configure, and maintain alerts based on defined KPI thresholds, searches, and correlation rules in Splunk and Splunk ITSI. Create and maintain ITSI Episode Review policies to manage events and incidents efficiently. Automate alert management workflows for efficient incident response. Splunk Administration: Operational Support: Act as a subject matter expert (SME) for Splunk ITSI and Splunk Dashboards within the organization. Troubleshoot and resolve performance, configuration, and indexing issues in Splunk and ITSI. Ensure compliance with security standards, policies, and audit requirements. Performance & Capacity Planning: Automation & Optimization: Automate Splunk configurations using deployment server, REST APIs, or orchestration tools. Continuously optimize Splunk Dashboards for performance and efficiency. Incident Management & Reporting: Work with Service Operations Teams to create proactive monitoring alerts. Generate and maintain reports for system performance, availability, and capacity. Assist in the development and delivery of regular reports, alerts, and dashboards for business stakeholders using Splunk and ITSI. Required Qualifications: 5+ years of experience working with Splunk as an admin, including multi-site indexer clusters. 2+ years of experience managing and deploying Splunk ITSI with in-depth knowledge of service monitoring, glass tables, KPI creation, and episode management. Expertise in creating and managing Splunk Dashboards and Alerts using SPL and ITSI. Strong skills in SPL (Search Processing Language) for building queries, reports, and dashboards. Proficiency in creating alerts, managing correlation searches, and configuring escalation workflows. Experience with scripting languages like Python or Shell for automation purposes. Strong understanding of networking concepts, Linux administration, and security monitoring. Experience with data onboarding, parsing, indexing, and knowledge object creation in Splunk. Splunk certifications (Splunk Admin, Splunk ITSI Implementation) are a strong plus.

Position : SIEM Engineer (Splunk Administrator--Cyber Security Domain) Working Time : 06:00 PM to 03:00 AM IST(US EST Time zone) Working Mode: Work From Home/Remote Office Address : Cyber Towers, Quadrant 3, 3rd floor, Madhapur, Hyderabad -- 500081 Experience Level: 5 to 10 Years Responsibilities: Architect, deploy, and maintain Splunk for SIEM use cases including log ingestion, data normalization, and incident correlation. Manage and optimize Microsoft Defender for Endpoint, Identity, Cloud, Office 365, and other Defender tools to maximize protection and visibility. Develop custom queries, detection rules, workbooks, and automation playbooks to improve threat detection and response efficiency. Lead the design and implementation of security monitoring, including data connectors, analytics rules, and incident automation. Collaborate with threat analysts and incident response teams to triage, investigate, and respond to security alerts and incidents. Provide technical guidance in security best practices, incident response procedures, and threat hunting using Microsoft security tools. Continuously assess the security landscape and recommend improvements to policies, tools, and configurations. In addition to strong technical acumen, the ideal candidate will bring excellent communication and client-facing skills to collaborate directly with customers, understand their security needs, and deliver tailored solutions that align with their risk posture and compliance requirements. Outcomes: Integration & Optimization: Integrate and optimize Splunk to improve visibility and automate threat detection workflows Threat Detection: Utilize Splunk AI-powered analytics to dashboard reports and automate critical reporting functions Automation & Playbook Development: Develop automated detection and response playbooks based on Microsoft data feeds, streamlining incident management and reducing time to resolution. Collaboration & Knowledge Sharing: Work closely with other security and IT teams to share threat intelligence, optimize SIEM use, and contribute to security strategy development. Reporting & Documentation: Develop and maintain dashboards, reports, and documentation related to Microsoft Sentinel deployment, performance, and incident metrics. Continuous Improvement: Continuously evaluate Microsoft Sentinel capabilities and other relevant security tools to recommend improvements and refine detection capabilities. Required Qualifications: 4+ years of SIEM experience in Splunk Hands-on experience with other SIEM platforms (Splunk) and integrating them with endpoint security tools. Strong understanding of cybersecurity principles, threat detection, and SIEM management. Proficiency in scripting and automation (Python, PowerShell, etc.). Experience with cloud security (AWS, Azure, GCP) and cloud-native SIEM solutions is a plus. Bachelors degree in Computer Science, Information Security, or a related field (or equivalent experience) Preferred Qualifications: 5+ years of experience in cybersecurity in a SOC or security engineering capacity. Proven hands-on expertise with Microsoft Sentinel and Microsoft Defender suite. Deep knowledge of Splunk Query Language (SPL) and building custom analytics rules and workbooks in Splunk. Strong experience in customer-facing roles. Experience with incident response, threat detection, and threat hunting techniques. Strong understanding of cloud security, especially in Azure environments. Familiarity with MITRE ATT&CK, NIST, and other security frameworks. Experience integrating Splunk with third-party solutions (e.g., threat intel feeds, ticketing systems). Key Skills: Technical Skills: Microsoft Security platform, SIEM tools, security automation, machine learning for cybersecurity, network security. Analytical Skills: Strong ability to analyze large datasets and correlate logs/events. Communication Skills: Excellent verbal and written communication skills for collaborating with cross-functional teams and providing clear reporting. Problem-Solving: Strong troubleshooting skills with the ability to resolve complex security issues quickly and effectively.