Splunk Engineer

Information Technology
in Chicago
, IL
Reference: 19-02847


  • 4 to 5 years minimum experience with Splunk
  • 5+ years Unix/Linux system administration experience
  • Installing and configuring Splunk apps in a clustered environment
  • Administering Splunk knowledge objects
  • Creating roles and user authentication
  • Integrating events from non-traditional log services
  • Administering Splunk cluster components (search head cluster, indexer cluster and distributed management console) including version upgrades, permissions, and audit compliance
  • Support large-scale deployments with data feeds from multiple data centers
  • Develop Splunk correlation searches to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics
  • Understanding of parsing patterns utilizing tools, such as, Regex, Awk, SED, etc.
  • Strong experience in Python, Shell and SQL
  • Certified Splunk Architect preferred