7 Splunk Itsi Jobs

Role Profile: Splunk Engineer Shift: 7 pm IST to 4 am IST Responsibilities Architect, engineer, implement, and administer Splunk solutions in highly available, redundant, distributed computing environments. Lead design and deployment of new Splunk environments, including clustered, multi-site, and large-scale configurations. Perform Splunk forwarder deployment, configuration, and troubleshooting across diverse platforms. Integrate, curate, and normalize diverse log sources into Splunk, ensuring CIM compliance and high data fidelity. Configure and maintain Splunk dashboards, searches, and alerts to meet PCI DSS logging requirements, and deliver evidentiary reports to auditors to support compliance verification Develop advanced content for SIEM correlation, including custom correlation searches, dashboards, and alerts. Administer, maintain, and tune Splunk components (Indexers, Search Heads, Forwarders, Cluster Masters, Deployer, Deployment Server, and License Master). Proactively monitor platform health using internal logs, KPIs, and custom monitoring solutions to identify and address performance bottlenecks. Lead capacity planning, storage forecasting, and continuity of operations for large Splunk deployments. Optimize Splunk performance through configuration tuning, search optimization, and data model acceleration strategies. Troubleshoot complex ingestion, performance, and search-related issues, identifying root causes and implementing sustainable fixes or workarounds. Reproduce customer or internal issues, document findings, and work with Splunk Support or vendor engineers for resolution. Create, maintain, and enforce Splunk engineering documentation, including SOPs, design diagrams, architecture runbooks, and KB articles. Develop custom scripts and automation tools (e.g., Python, Bash, PowerShell) to improve Splunk administration, onboarding, and operational workflows. Utilize Splunk APIs for integration with enterprise tools and automation frameworks. Serve as a technical escalation point for Splunk Engineer I/II and Splunk Admin roles. Administer, tune, and troubleshoot Splunk Enterprise Security, maintaining data models, correlation searches, and notable events pipeline. Configure and manage HEC (HTTP Event Collector) connections and onboard new data sources. Manage Splunk RBAC (Role-Based Access Control) including SAML and AD group integrations for search heads and API endpoints. Collaborate with security, infrastructure, application, and DevOps teams to ensure Splunk aligns with enterprise monitoring, compliance, and operational goals. Design and implement Splunk solutions supporting compliance frameworks (e.g., PCI DSS, HIPAA, SOX), including dashboard/report development and audit evidence. Research, evaluate, and implement new Splunk apps, add-ons, and integrations to enhance platform capabilities. Mentor junior Splunk engineers and guide cross-functional teams on Splunk best practices, search optimization, and data onboarding. Requirements 8+ years of IT experience in technical engineering, security operations, or infrastructure roles. 5+ years of direct, hands-on Splunk engineering and administration experience in large-scale, distributed environments. Expert-level knowledge of Splunk Enterprise and Splunk Enterprise Security, including architecture, clustering, and scaling strategies. Proficiency in Linux/Unix administration and shell scripting. Strong knowledge of Splunk APIs, including use for automation and tool integrations. Expertise in regex, field extractions, and key-value parsing. Strong programming/scriptingskills in one or more languages (Python, Bash, PowerShell, Perl, JavaScript). Experience with storage systems (DAS, SAN, object storage) and understanding of their performance implications for Splunk indexing. Solid understanding of networking (switches, routers, firewalls, load balancers, DNS, SSL/TLS) and how it impacts Splunk architecture. Familiarity with Enterprise Management and automation tools. Experience with Splunk ITSI (preferred) and other premium Splunk apps. Strong knowledge of data formats including JSON, XML, and CSV. Demonstrated experience delivering Splunk-based compliance reporting and audit support. Strong communication skills for interacting with technical and non-technical stakeholders. Proven ability to lead projects, mentor team members, and provide architectural guidance. Education & Certifications Bachelor's degree in Computer Science, Information Systems, or related technical field (or equivalent experience). Splunk Certified Architect and/or Splunk Certified Consultant preferred. Additional certifications in security, cloud, or automation tools are a plus.

10+ years of relevant experience, with at least 5 years architecting and deploying Splunk solutions, specifically Splunk ITSI. Splunk ITSI Certified Architect strongly preferred. Required Candidate profile Proven hands-on exp in deployment, configuration, & architectural design in complex IT environments involving Networks, Cloud platforms (AWS, Azure, GCP), On- premises Data Centers, & IoT ecosystems.

You should have experience working with Confluent Kafka. You must possess a strong knowledge of Kafka architecture, Kraft mode (Kafka Raft), Kafka Connect, Kafka Streams, and KSQL. It is essential to have proficiency in scripting languages such as Python, Bash, and automation tools like Ansible and Terraform. Experience with monitoring tools like Prometheus, Grafana, Dynatrace, and Splunk ITSI is required. Understanding of security best practices for Kafka including SSL/TLS, Kerberos, and RBAC is crucial. Strong analytical and problem-solving skills are necessary for this role. Excellent communication and collaboration skills are also expected.,

The Splunk ITSI Architect will lead the architecture and strategic implementation of Splunk IT Service Intelligence (ITSI) across complex IT environments. Your role involves designing scalable, highly available solutions, integrating with various IT systems, and optimizing Splunk ITSI's functionality to enhance organizational service management and operational intelligence. You will be responsible for architecting, designing, and implementing comprehensive Splunk ITSI solutions tailored to multi-layered environments including Network, Cloud, On-premises Data Centers, and IoT. Additionally, you will provide technical leadership, collaborate with stakeholders to define monitoring requirements, develop and maintain customized dashboards, and set standards for integrating ITSI with multiple platforms. As the Splunk ITSI Architect, you must ensure scalability, performance optimization, reliability, and high availability of Splunk ITSI across diverse infrastructure environments. Mentoring junior team members and providing extensive knowledge transfer within teams will also be part of your responsibilities. Qualifications for this role include a Bachelor's degree in Computer Science or related field, 10+ years of relevant experience with at least 5 years working with Splunk solutions, and Splunk ITSI Certified Architect strongly preferred. You should have deep technical expertise in Splunk architecture, data ingestion strategies, and experience with integration frameworks and APIs. Strong problem-solving, analytical, leadership, and communication skills are essential for this role. The Splunk ITSI Implementation Expert will execute the deployment, configuration, and continuous improvement of Splunk IT Service Intelligence (ITSI) across integrated environments including Network, Cloud, On-premises Data Centers, and IoT. In this role, you will translate operational requirements into technical configurations, integrate complex data sources, create KPIs, dashboards, and alerts, and ensure efficient operational monitoring. Responsibilities include deploying, configuring, and maintaining Splunk ITSI solutions, translating requirements into effective dashboards and alerts, configuring advanced correlation searches, and performing technical integrations with various IT monitoring tools. You will support ongoing maintenance activities, document technical implementations, and work collaboratively with cross-functional teams. Qualifications for this position include a Bachelor's degree in Computer Science or Information Systems, 6+ years of IT experience with at least 3-4 years hands-on experience with Splunk ITSI, and Splunk ITSI Certified Administrator or Power User strongly preferred. Strong proficiency in Splunk SPL scripting, dashboard creation, event correlation, and communication skills are necessary for this role.,

• 5+ years experience in SPLUNK core/ITSI implementation preferably in service provider network with strong UNIX/Windows knowledge. • Should possess strong scripting knowledge in PERL, Shell/VB, Python etc. • Should have experience in Integrations with other tools. • Should have strong understanding of Splunk development, Implementation Administration • Should have worked on various monitoring Solution (Storage, backup, server, Network, APM, etc.) • Should have been part of the team in High Availability configuration in complex environment. • Experience with REST and web services interfaces, XML, JSON • Integration with Monitoring like SCOM, CAUIM, Solarwind with Splunk ITSI • Experience in Splunk Dashboard development. Plus • Experience in working as a part of a team involved in the implementation of SPLUNK for big Global customer. • Should be a fast learner of various other tools and integrate where possible. • Should possess good communication and interpersonal skills • Out of the Box Thinker with technical Savoir-faire • To adhere to quality standards, regulatory requirements and company policies • To provide support for on call escalations and doing incident and problem management • To independently resolve tickets and ensure that the agreed SLA of ticket volume and time are met for the team • To ensure positive customer experience and CSAT through First Call Resolution and minimum rejected resolutions or Reopen Cases • Work on value adding activities such Knowledge base update and management, Training freshers, coaching analysts and conducting interviewsorparticipation in hiring drives • To participate or contribute on EN business in creation of proposals to drive Service improvement plans

Arctiq is a leader in professional IT services and managed services across three core Centers of Excellence: Enterprise Security, Modern Infrastructure and Platform Engineering. Renowned for our ability to architect intelligence, we connect, protect, and transform organizations, empowering them to thrive in today's digital landscape. Arctiq builds on decades of industry expertise and a customer-centric ethos to deliver exceptional value to clients across diverse industries. Arctiq is currently seeking a candidate to fulfill the role of a Splunk Consultant within our managed services practice. This position requires expertise in Splunk and related technologies, and a passion for continuous learning. In this role you will have an opportunity to deliver Splunk services to our managed services customers, and occasionally work within our professional services with new clients. Lead project delivery by defining, maintaining and communicating systems requirements, solution approach & design, standards and standardized methodologies across the enterprise. Develop and assist clients with creating requirements, identifying gaps and translating business requirements into technical solutions. Regularly develop methods of improvement for internal processes related to Splunk administration. Work closely with clients to execute a common strategy across multiple functions. Define and implement effective and efficient solutions to challenges and opportunities. Seize opportunities to make use of Splunk technology to drive greater operational intelligence. Create and maintain documentation related to implementations at managed clients. Possesses Splunk ES, ITSI, or Cloud accreditations. Experience with storage technologies, platform administration on Linux and Windows, computer networks, experience with AWS or Azure and experience with many of today's security tool sets. Creating production quality dashboards, reports and threshold alerting mechanisms. Experience with other Splunk products (eg. Splunk UBA, Splunk Observability Cloud, Splunk SOAR). Proficiency in developing add-ons or DevOps. Expertise with MITRE and developing security use cases. Have a strong background working in the IT and IT Security arena. Splunk Enterprise Experience: 5-8 years experience implementing or administering large scale business systems with at least three large scale implementations. Expert in working across Splunk and related utilities. At a minimum, is a Splunk Core Certified Consultant. Have a bachelor's degree in computer science or a related field, or have a minimum of 5 years relevant experience. Excellent planning and execution skills with a demonstrable history of establishing and meeting impactful goals and objectives with regards to data integration. Ability to work in project teams and complete individual tasks in a timely manner. Have a sense of personal accountability. Must be a U.S. Citizen, working within the continental US, and will be subject to standard background checks. Arctiq is an equal opportunity employer. If you need any accommodations or adjustments throughout the interview process and beyond, please let us know. We celebrate our inclusive work environment and welcome members of all backgrounds and perspectives to apply. We thank you for your interest in joining the Arctiq team! While we welcome all applicants, only those who are selected for an interview will be contacted.,

Shifts timing UK Shifts Working day – 5 days Mode of work – Work from office Full Time position Job location - Citrine Bagmane World Technology Center, Marathahalli, Outer Ring Rd, Doddanekundi, Mahadevapura JD : Primary Responsibilities: As a Splunk Engineer, you will be involved in the deployment or enhancement of client Infrastructure monitoring implementation of Splunk’s Cloud solutions that use big data to solve complex IT Operations challenges. Work includes: Engineer, configure, administer, and support enterprise observability solution, including both Splunk Cloud, Splunk ITSI and Splunk Infrastructure Monitoring Enterprise Edition. Develop ITSI glass tables, service trees, Entity design, KPI’s and correlation searches. Development of front-end searches, dashboards, and reports that are used for ops Analysts and IT engineers for advanced threat detection. Front-end development includes writing queries with Splunk’s SPL (Search Processing Language). Perform root-cause analysis of any issues that arise post-implementation and work on solutions related to issue fixing. Create low-level design artifacts independently and high-level design artifacts with guidance and supports prototyping through the creation of POCs. Scaling will also include expansion of use cases and bringing new data sources into Splunk. Performing Splunk health checks, including review of existing deployment architecture and Splunk search performance. Making necessary recommendations and corrections for optimization of system and platform performance. Perform knowledge transfer to Ops Analysts and IT Engineers regarding Splunk use and performance. Partner with risk, compliance, and cybersecurity teams, to meet corporate log management and SIEM policies, requirements, and standards. Develop ingestion, onboarding and management efficiencies through automation and architectural enhancements. Develop, improve, and automate processes for log management. Design and implement dashboards and reports to meet business and user requirements. Partner with various user areas to understand their needs and facilitate the maturation of our log and SIEM posture. Maintain 24x7 uptime. Continually identify and evaluate opportunities to improve performance, availability, and stability.