18 Splunk Es Jobs

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Splunk Security Information and Event Management (SIEM), Splunk Administration, Splunk Enterprise Security, Splunk Phantom Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Splunk Engineer, you will be working within the Security Engineering & Technology Services team, responsible for understanding, researching, designing, developing, operating, and enhancing security solutions with the products client has acquired for consumption as a service offering across all of client. You will collaborate with Security Operations (mainly Cyber) teams to support in implementation of new technical solutions, on-board new data into Splunk and develop use cases to meet the business requirements Roles & Responsibilities:Building, maintaining, and operating Splunk Enterprise and Splunk Enterprise Security SaaS SolutionBuilding Co-relation searches for Cyber Operation requirementsEvaluating and analysing business requirements and designing suitable solutions, challenging requirements where necessary Managing, co-ordinating and implementing technical project activities and enhancements to services Conducting Incident/ Problem/ Recovery activities Supporting the Joint Operations Centre and incident response teams for detected security events. Creating and maintaining accurate and high-quality documentation Supporting Operational effectiveness auditStructure phased deliverables to link long term vision with time-boxed activities.Support the project delivery phase including testing and training, to ensure the agreed business solutions are delivered successfully.Work closely with developers and testers, to ensure delivery of the functionality on time and with quality. Professional & Technical Skills: Knowledge of Splunk Enterprise architecture, distributed components (indexer clusters, forwarders, search head clusters, deployment servers) , knowledge of Splunk Cloud & SOARKnowledge of Splunk Enterprise Security at administration and use case level Knowledge on on-boarding new data into Splunk, Splunk Forwarders - data ingestion, extraction.Knowledge of the Common Information Model, data models, enrichment, and automationGood experience on Splunk add-Ons installation / configuration to bring security logs into Splunk.Good understanding of the Security Domain.Documentation skills in order to provide high quality documentation for internal customers and technical teams. Additional Information:- The candidate should have a minimum of 8+ years of experience in Security Information and Event Management (SIEM) with 5+ yrs experience on Splunk SIEM.- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions.- This position is based at our Pune office with flexible locations as banglore and Chennai. Qualification 15 years full time education

Greetings !! We are looking for a skilled Splunk Administrator with hands-on experience in deploying and managing Splunk Enterprise and Splunk Cloud. The ideal candidate should have experience in Splunk Enterprise Security (ES), Splunk UBA, and IT Service Intelligence (ITSI). This role requires strong technical skills, along with the ability to communicate effectively with customers. Roles & Responsibilities: Splunk Deployment & Administration: Install, configure, and manage Splunk Enterprise and Splunk Cloud. Handle indexers, search heads, forwarders, and clustering. Optimize Splunk performance, storage, and scalability. Security & Splunk Monitoring Solutions: Implement and manage Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Configure correlation searches, threat intelligence feeds, risk-based alerting (RBA), and dashboards. Troubleshoot security-related issues within Splunk. Customer Interaction & Troubleshooting: Engage with customers to understand their requirements and provide technical guidance. Troubleshoot and resolve Splunk-related issues, logs ingestion, parsing, and data onboarding. Splunk Architecture & Implementation: Design, deploy, and optimize Splunk Enterprise and Splunk Cloud environments. Lead end-to-end Splunk implementations, migrations, and upgrades. Manage search head clustering, indexer clustering, and data retention policies. Security & Observability Solutions: Architect and configure Splunk Enterprise Security (ES), Splunk UBA, and ITSI. Implement risk-based alerting (RBA), custom correlation searches, and advanced analytics. Integrate Splunk with SOAR, cloud platforms (AWS, Azure, GCP), and third-party security tools. Team Leadership & Customer Engagement: Lead and mentor a team of Splunk Administrators & Engineers. Interact with customers to gather requirements, design solutions, and conduct workshops etc. Review and improve Splunk use cases, dashboards, and data models. Optimization & Automation: Develop custom scripts (Python, Bash, PowerShell) for automation and orchestration. Tune Splunk performance, search queries, and indexing strategies. Implement best practices for data onboarding, parsing, and CIM compliance. Interested can share their updated resume to gayathri.ramaraj@locuz.com along with the below mentioned details. Current CTC: Expected CTC: Notice Period:

Roles and Responsibilities Collaborate with cross-functional teams to develop custom solutions using Python scripts. Troubleshoot complex issues related to data ingestion, processing, and visualization in Splunk. Configure and manage indexers, search heads, and other components of the Splunk platform. Design, implement, and maintain large-scale Splunk environments across multiple sites. Develop and execute deployment plans for new Splunk instances on AWS cloud infrastructure.

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30669 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity " FICO is seeking a Cyber/Cloud security Lead Engineer with Engineering experience to implement detections of Cloud and Container security.As a part of your role, you will be responsible for implementing automations to manage the Cloud and Container security solution. This role is specifically to build prototypes and orchestrate the manual tasks using automation in the cloud security space ." - Sr Director, Cyber Security What Youll Contribute Experience in Designing, Engineering, and Securing complex infrastructure architectures. Security relevant experience with AWS and implementing best practices regarding securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Experience in Python scripting or programming languages with an automation mindset. Experience working on Multi account, multi region infrastructure setup. Should have experience with AWS Org, Cross account access and working with services like CloudWatch, CloudTrail, GuardDuty, Security Hub, AWS Inspector, AWS SSM and other security related services. Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket (Bitbucket is desirable). Experience with agile project management tools like JIRA, Confluence (JIRA is desirable). Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). What Were Seeking 3 or more years of Engineering experience specifically implementating automations using Python in AWS Public cloud environment. Experience working on containerized solutions with Docker, Kubernetes using ECR, ECS and EKS services in AWS. 2 or more years of security relevant experience with AWS and implementing best practices in regards to securing cloud infrastructure and cloud services (AWS certifications are desirable). Experience with tools like AWS CLI and creating resources in the cloud infra using Infra as a code (Terraform is desirable). Should have knowledge on CI/CD tools like Jenkins (especially pipelines creation). Experience with source control tools like Git, Bitbucket. Experience with agile project management tools like JIRA, Confluence. Experience working with artifactory tools like jfrog, Nexus (jfrog is desirable). Experience implementing automations using serverless platforms in the Cloud environment. Experience in working with Cloud security posture management (CSPM) with open source tooling or SAAS based product. Experience on integration with SIEM tool like Splunk Cloud. Experience with regulated environments in regards to exceeding published controls such as PCI-DSS, CIS, NIST, and/or STIG and meeting compliance. Our Offer to You An inclusive culture strongly reflecting our core values:Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

Implement and manage Splunk for monitoring and analyzing machine data to ensure system performance and security.

The Splunk Developer role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Splunk Developer domain.

Infrastructure Engineering Senior Advisor - HIH - Evernorth Position Overview As a Splunk / Cribl Sr. Engineer (Infrastructure Engineering Senior Advisor) for Cigna’s Enterprise Logging Team you’ll provide operations, engineering, design and troubleshooting support for the teams on premise and SaaS based logging products. You’ll also be working with peers and customers gathering requirements, onboarding data, and assist with searches, dashboards, reports, and knowledge objects. The role will require you to use your hands-on technical expertise with Splunk Enterprise, Splunk Cloud, Cribl and AWS to come up with solutions for technical and business problems. You should have continuous learning and engineering mindsets along with the ability to adapt new technologies to improve Splunk and Cribl on premise and cloud operations. Responsibilities Support systems engineering lifecycle activities for large hybrid Splunk and Crib deployments, including requirements gathering, design, testing, implementation, operations, and documentation. Lead troubleshooting efforts and identify root cause of problems across the enterprise logging environment. Work on and lead projects that drive continuous improvement, enhancements of products, services offerings, and governance.Coach and mentor customers and staff that may need technical assistance or guidance.Partner with Agile Program and Product Management leads to develop, plan, and execute large initiatives.Available On-Call 24x7 support on a rotational schedule. Qualifications Required Skills: Strong written and verbal communication skills with the ability to interact with all levels of the organization. Strong influencing/negotiation skills. Strong interpersonal/relationship management skills. Strong time and project management skills. Skilled in operations, support and engineering with of the following products – Linux, Splunk Enterprise, Splunk Cloud, Cribl Stream and AWS Familiarity with agile methodology including SCRUM team leadership. Familiarity with modern delivery practices such as continuous integration, behavior/test driven development, and specification by example. Required Experience & Education: 13-16 years of experience requiredBachelor’s degree or equivalent degree and work experience is requiredA minimum of 12 years of experience supporting, operating, and managing large Splunk environments. At least 2 years specifically is with Splunk Cloud.A minimum of 8 years of experience supporting and managing Cribl Stream deployments.Experience with Splunk Premium Applications, IT Service Intelligence and Enterprise Security.A minimum of 3-4 years with AWS Services and implementations with a working knowledge of core AWS products including S3, Terraform, ALB/NLB, EC2, PrivateLink and VPCsAWS, Cribl and Splunk certifications, such as Splunk Certified Architect or AWS Associate, are highly desirable.At least 8 years of experience with LAN/WAN technologies and clear understanding of basic network concepts and services.11 to 13 years of experience with Linux operating system management or administration.Demonstrated proficiency in scripting and programming languages (e.g., Python, PowerShell) for custom Splunk app development.Experience with Ansible and leveraging playbooks for task automation. Location & Hours of Work (Specify whether the position is remote, hybrid, in-office and where the role is located as well as the required hours of work) Equal Opportunity Statement Evernorth is an Equal Opportunity Employer actively encouraging and supporting organization-wide involvement of staff in diversity, equity, and inclusion efforts to educate, inform and advance both internal practices and external work with diverse client populations. About Evernorth Health Services Evernorth Health Services, a division of The Cigna Group, creates pharmacy, care and benefit solutions to improve health and increase vitality. We relentlessly innovate to make the prediction, prevention and treatment of illness and disease more accessible to millions of people. Join us in driving growth and improving lives.

Role & responsibilities Job Description: Senior Splunk Engineer About the Role: We are looking for a Splunk Level 3 Engineer with a strong Linux background to design, implement, and optimize Splunk solutions for enterprise-level security, observability, and operational intelligence. You will play a key role in developing and maintaining a high-performing Splunk environment, ensuring real-time monitoring, analytics, and automation across IT infrastructure and security domains. Key Responsibilities: Splunk Architecture & Administration Design, deploy, and manage large-scale Splunk environments (Enterprise Security, ITSI, Observability, Cloud, or Hybrid). Configure and optimize Splunk components such as indexers, search heads, forwarders, and clustering. Implement best practices for data ingestion, parsing, and indexing to ensure high availability and performance. Security & Observability Develop and manage Splunk dashboards, alerts, and reports for security monitoring (SIEM), IT operations, and business analytics. Integrate Splunk with various security tools ( SOAR, EDR, Firewalls, IDS/IPS ) to enhance threat detection and response. Implement anomaly detection, predictive analytics, and correlation searches. Implement logging best practices for Linux servers , applications and containers . Automation & Optimization Automate Splunk deployments using Infrastructure-as-Code (IaC) tools such as Ansible, Terraform, or Python scripts . Tune searches, optimize queries, and improve system efficiency to handle high-volume data ingestion. Develop Splunk apps and custom scripts for data enrichment and automation. Collaboration & Support Work closely with Security, DevOps, and Infrastructure teams to integrate Splunk into enterprise workflows. Provide technical leadership, mentorship, and training to junior Splunk engineers. Troubleshoot Splunk performance issues, logs, and data pipeline challenges. Qualifications & Skills: Must-Have: 5+ years of hands-on Splunk engineering experience (design, deployment, tuning, and troubleshooting). Expertise in Splunk architecture, SPL (Search Processing Language) , and dashboard development. Experience with Splunk Enterprise Security (ES), IT Service Intelligence (ITSI), or Splunk Observability Suite . Strong scripting skills ( Python, Bash, PowerShell ) for automation and data enrichment. Familiarity with Linux security hardening and system auditing . Preferred: Experience with cloud-based Splunk ( AWS, Azure, GCP ) and integrations with cloud-native logging solutions. Familiarity with Infrastructure-as-Code ( Terraform, Ansible ) and CI/CD pipelines. Certifications such as Splunk Certified Admin, Splunk Certified Architect, or Splunk Certified Security Analyst or RHCE (Red Hat Certified Engineer) . Preferred candidate profile

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers. Skills (competencies)

Role & responsibilities Overall experience of at least 5+ years as SIEM Splunk Enterprise Security administrator. Hands-on experience with Splunk enterprise security (SIEM), security tools and devices, operating systems, and/or networking devices desired. Proven skills and experience in Use case development, Log source integration, log source parsing. Experience working across diverse teams to facilitate solutions

The Technical Services Implementation Engineer (L2) is a developing subject matter expert, responsible for ensuring that client solution requirements are resolved in line with Service Level Agreements (SLA). This role performs configurations, action installations and attend to break/fix events. What you'll be doing Key Responsibilities: B.E.B. Tech in Computer Science/ ElectronicsECE EE ECS IT Engineering/MCA/BCA At least one SIEM solution certifications with one or more SIEM/ Security solutions (i.e., RSA NetWitness, Splunk ES, Elastic ELK, HP ArcSight, IBM QRadar Log Rhythm). At least one L3 level security certifications viz. CCIE/CISSP/CISA/CCNP etc. Minimum 7 years of experience in handling security related products& services in an organization and out of total experience, 5 years of minimum experience should be as an L2 in SOC management. Person should have adequate knowledge of Check point firewall and IPS and Cisco firewall and IPS, McAfee IPS, Web Application Firewall, DDOS and other security devices Administration of SIEM environment (eg: deployment of solution, user management, managing the licenses, upgrades and patch deployment, addition or deletion of log sources, configuration management, change management, report management, manage backup and recovery etc) Construction of SIEM content required to produce Content Outputs (e.g., filters, active lists, correlation rules, reports, report templates, queries, trends, variables) Integration of customized threat intelligence content feeds provided by the Threat Intelligence & Analytics service Identifies possible sensor improvements to prevent incidents Collects/updates threat intelligence feeds from various sources Creates situational awareness briefings Co-ordinates with the different departments for incident analysis, containment and remediation Liaise with Security monitoring team to discover repeatable process that lead to new content development Provides engineering analysis and architectural design of technical solutions Device integration, Creation of Co relation rules and Parser development Sound analytical and troubleshooting skills Good Team Management and co-ordination skills Academic Qualifications and Certifications: Bachelor's degree or equivalent in Computer Science Information Technology Degree or equivalent together with specialized training in new technologies and legacy systems or equivalent. Required Experience: Moderate level of experience in a technical implementation engineering or similar role. Demonstrated experience engaging with clients and conducting presentations. Demonstrated project administration and documentation experience.

Role & responsibilities Design and implement scalable and secure Splunk environments, including Splunk Enterprise, Splunk Cloud, and Splunk On-Premises. Lead Splunk-related projects, including Splunk deployment, configuration, and optimization. Develop and maintain Splunk architectures, including Splunk indexes, data models, and dashboards. Collaborate with cross-functional teams to design and implement Splunk solutions, including Splunk search heads, indexers, and forwarders. Develop and maintain Splunk configurations, including Splunk inputs, outputs, and transforms. Optimize Splunk performance, including Splunk indexing, searching, and reporting. Develop and maintain Splunk dashboards and visualizations, including Splunk charts, tables, and maps. Collaborate with the Splunk team to develop and maintain Splunk best practices and standards. Stay up-to-date with the latest Splunk technologies, trends, and best practices. Participate in code reviews, testing, and deployment of Splunk solutions. Collaborate with the DevOps team to develop and maintain DevOps processes and standards. Preferred candidate profile 5+ years of experience in Splunk, including experience in designing and implementing scalable and secure Splunk environments. Strong understanding of Splunk architecture, including Splunk Enterprise, Splunk Cloud, and Splunk On-Premises. Experience with Splunk deployment, configuration, and optimization, including Splunk search heads, indexers, and forwarders. Experience with Splunk data models, including Splunk indexes, data models, and dashboards. Experience with Splunk visualizations, including Splunk charts, tables, and maps. Strong analytical and problem-solving skills, with the ability to analyze complex system performance issues and develop effective solutions. Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams. Experience with agile development methodologies, including Scrum and Kanban. Familiarity with business architecture and enterprise architecture frameworks. Experience with IT service management (ITSM) tools, including ServiceNow and BMC Helix. Perks and benefits Competitive salary and benefits package. Opportunities for career growth and professional development. Collaborative and dynamic work environment. Flexible working hours and remote work options. Access to cutting-edge development tools and technologies. Recognition and rewards for outstanding performance.

Ensure effective implementation and operation of the SIEM system (Splunk), protect the organization's network and systems from security threats and incidents, collect and analyze security event data, provide timely and accurate information to incident response teams, support the investigation and remediation of security incidents. SIEM System Setup & Integration Event Data Collection & Analysis Real-Time Monitoring & Incident Detection Incident Response & Remediation Reporting & Documentation Roles and Responsibilities SIEM Deployment & Configuration Use Case Development & Correlation Rules Threat Detection & Incident Response Performance Optimization & Health Monitoring Compliance & Security Best Practices Collaboration & Documentation

Hope you are doing good! Excellent Opportunity with LKQ India (Fortune 500 Company & Nasdaq Listed) at Bangalore location. Experience: 7 to 15 Years Work Location: Bannerghatta Rd, Bangalore Role:: Permanent Job Description: Configure and Administer Splunk SIEM (Security Incident and Event Management) tool. Administer Email Gateway technologies (Microsoft Defender /Abnormal Security). Zscaler proxy log analysis and leverage for investigation. Crowdstrike Endpoint detection and response platform and policy management. Analyze and assess security incidents and escalate to appropriate internal teams for additional assistance. Responsible for investigating incidents, analyzing attack methods, researching new defense techniques and tools, developing security policy, and documenting procedures for SOC. Malware analysis and other attack analysis to extract indicators of compromise. Perform data security event correlation between various systems. Prepare reports, summaries, and other forms of communication that may be both internal and client facing. Periodic upgradation/creation of correlation rules based on emerging threats and requirement following MITRE Attack US-Cert and other TTP sources. Lead Information security analyst, having an experience of 4+ years in incident management, log analysis and troubleshooting of network and security related issues. Comprehensive management and technical experience in building and leading large-scale SOC (Security Operations Center) Strong hands-on experience in security management tools like Splunk Security Incident and Event Management (SIEM) Good experience in working/communicating with cross-functional IT infrastructure teams like network, system, database, application, security to build and manage effective security operations. Building Security Operations Center and/or Incident Response Team from scratch. Implementation-of and building-content-in technologies like SIEM, SOAR and Cloud Security Solutions. Building Security Metrics that will help customers/management to understand the effectiveness and gaps in Incident Management and over all Cyber Security posture. Working with customers requirement gathering, on-boarding, technical discussions, report walk-throughs. Working alongside teams like Compliance and VAPT Exposure to related areas of cybersecurity including Host Security, Network Security, IAM, Vulnerability Management, Penetration Testing, Compliance etc. Develop security scope, KPIs, policies and procedures for various SOC activities. Defined workflows for the day-to-day operations of SOC Ensure timeline, scope, quality & resource is managed accordingly with committed deliverables. Developed Playbooks for analysis and incident remediation Participate in security design discussion with various teams (technical and management) and provide advice on how SOC can be used effectively. Installing, updating, upgrading SIEM solution. On-boarding log sources and working on log source issues. Create and fine-tune content in SIEM Correlation Rules, Dashboards, Reports, Lists etc. Interact with SIEM vendor TAC (support) to fix any issues with SIEM. Mentor L1 and L2 security analyst. Assist in analysis of P1 alerts and alerts that require involvement of multiple teams. Evaluate new solutions for SOC team. Experience in creating reports and KPIs for C-level audience. Experience of Integrating tools with SOAR and designing incident response workflows in SOAR platform. Hands-on Experience in writing custom scripts (Python and Regex) for task automation. Interested candidates, kindly fill up the below details and share updated resume to ajupendra@LKQCORP.com Years of Experience:: Current CTC :: Excepted CTC :: Current Location :: Currently you have PF / Provident Fund deduction with your company ? :: Notice Period ::

About The Role : Key Responsibilities : Implement, configure, and administer Splunk Enterprise in a distributed environment. Develop and maintain advanced Splunk dashboards, reports, alerts, and visualizations to monitor network performance and security. Integrate Splunk with various data sources including network devices, security appliances, and other IT infrastructure. Utilize Networking knowledge (Cisco, Juniper etc) to integrate Splunk with network devices and applications and customize reports and dashboards Lead as well as contribute to RFPs involving Splunk as one of the solution components Develop and maintain documentation related to Splunk architecture, configuration, and best practices. Conduct training sessions and workshops for Internal Teams on leveraging Splunk for network monitoring and analysis. Technical Skills Proficiency in Splunk Enterprise Security, Splunk IT Service Intelligence, Splunk Cloud and related Splunk apps/add-ons. Strong knowledge of Cisco/Juniper networking principles, protocols, and technologies. Experience with network devices (routers, switches, firewalls) and an understanding of network architecture. Knowledge of IT security principles and experience with security information and event management (SIEM). Familiarity with scripting languages (Python, Bash, etc.) for automation. Familiarity with Network monitoring tools and techniques Familiarity with virtualization and cloud technologies (AWS, Azure, VMware). Experience with infrastructure as code and automation tools would be a plus (e.g., Ansible, Terraform).

Role & responsibilities Design and implement scalable and secure Splunk environments, including Splunk Enterprise, Splunk Cloud, and Splunk On-Premises. Lead Splunk-related projects, including Splunk deployment, configuration, and optimization. Develop and maintain Splunk architectures, including Splunk indexes, data models, and dashboards. Collaborate with cross-functional teams to design and implement Splunk solutions, including Splunk search heads, indexers, and forwarders. Develop and maintain Splunk configurations, including Splunk inputs, outputs, and transforms. Optimize Splunk performance, including Splunk indexing, searching, and reporting. Develop and maintain Splunk dashboards and visualizations, including Splunk charts, tables, and maps. Collaborate with the Splunk team to develop and maintain Splunk best practices and standards. Stay up-to-date with the latest Splunk technologies, trends, and best practices. Participate in code reviews, testing, and deployment of Splunk solutions. Collaborate with the DevOps team to develop and maintain DevOps processes and standards. Preferred candidate profile 5+ years of experience in Splunk, including experience in designing and implementing scalable and secure Splunk environments. Strong understanding of Splunk architecture, including Splunk Enterprise, Splunk Cloud, and Splunk On-Premises. Experience with Splunk deployment, configuration, and optimization, including Splunk search heads, indexers, and forwarders. Experience with Splunk data models, including Splunk indexes, data models, and dashboards. Experience with Splunk visualizations, including Splunk charts, tables, and maps. Strong analytical and problem-solving skills, with the ability to analyze complex system performance issues and develop effective solutions. Excellent communication and collaboration skills, with the ability to work effectively with cross-functional teams. Experience with agile development methodologies, including Scrum and Kanban. Familiarity with business architecture and enterprise architecture frameworks. Experience with IT service management (ITSM) tools, including ServiceNow and BMC Helix. Nice to Have: Experience with Splunk Cloud, including Splunk Cloud deployment, configuration, and optimization. Experience with Splunk On-Premises, including Splunk On-Premises deployment, configuration, and optimization. Experience with Splunk data analytics, including Splunk data modeling and data visualization. Experience with Splunk machine learning, including Splunk machine learning algorithms and models. Experience with Splunk security, including Splunk security best practices and standards. Perks and benefits Competitive salary and benefits package. Opportunities for career growth and professional development. Collaborative and dynamic work environment. Flexible working hours and remote work options. Access to cutting-edge development tools and technologies. Recognition and rewards for outstanding performance.

Roles & Responsibilities: Experience in Splunk implementations and use case creation. Experience with Splunk ES, Splunk ITSI, Splunk UBA, Splunk SOAR Experience in any other SIEM along with Splunk is an advantage. Splunk Certification (Splunk Power User, Splunk Admin, Splunk Cloud Admin etc) Should be ready for travelling wherever projects demand

Roles & Responsibilities: Experience in Splunk implementations and use case creation. Experience with Splunk ES, Splunk ITSI, Splunk UBA, Splunk SOAR Experience in any other SIEM along with Splunk is an advantage. Splunk Certification (Splunk Power User, Splunk Admin, Splunk Cloud Admin etc) Should be ready for travelling wherever projects demand