SUMMARY

• Around 6.5 + years of experience in various places of software development and experience in configuring and implementing splunk server.
• Expertise in customizing splunk for monitoring, Application management and security.
• Streamlined operations, realize efficiencies and cost saving by integrating teams across service lines, resulting in savings.
• Expertise in Installation, Configuration, Migration, Trouble - Shooting and Maintenance of Splunk, Passionate about Machine data and operational Intelligence.
• Reduced expenses through staff management, increasing efficiency through automation, while maintaining service delivery and meeting service level agreements.
• Experience in performance testing, application monitoring and website support for banking, insurance, manufacturing, and retail industries.
• Designed scripts to automate Splunk forwarder maintenance and alerts.
• Troubleshoot Splunk infrastructure components, performance issue and license usage in coordination with infrastructure support teams.
• Designing and maintaining production-quality Splunk dashboards.
• Setup non-auto ticketing monitoring test alerts to the monitoring team for all Business Units platforms in ITSI to enable investigation of alerts for accuracy and research purposes.
• Ability to build business & operational intelligence dashboards and glass tables using Splunk.
• Splunk Enterprise Deployments and enabled continuous integration on as part of configuration management.
• Perform initial installation and configuration of new SIEM/Log Management deployments in hosted environments.
• Configured and developed complex dashboards and reports on Splunk.
• Onboard and cleanse data sources using CIM best practices for field extraction and Splunk Data Model optimizations.
• Troubleshooting Splunk feed issues and data ingestion for remote locations.
• Experience with Splunk UI/GUI development and operations roles.
• Worked in data-flow design for data ingestion, transformation and analytics layers.
• Expertise in creating and customizing Splunk applications, searches and dashboards as desired by IT teams and business.
• Experience managing global support teams, which included training, managing priorities, and establishing procedures to maintain quality support.
• Proven track record of identifying and resolving performance and availability issues using industry standard monitoring tools.
• Involved in ITSM change management Process for production changes.
• Standardize Splunk forwarder deployments, configurations and maintenance across a variety of UNIX and Windows platforms.
• Experience in creating regex expressions to extract the fields.
• Experience in working with Splunk authentication and permissions.
• Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and team members.
• Provide design ideas to the leadership of the project team and represent the team as required Assist management in the development of design policies and procedures which improve the ability to meet requirements.
• Maintain technical skills and awareness of technical improvements.
• Experience in building a multi-tiered Splunk instance.

TECHNICAL SKILLS

Programming/Scripting Languages: C, C++, Java, Sql, Python, Ruby, Javascript, Shell Scripting, Perl, Pl/Sql

Tools: Splunk 6.X, 5.X, 4.X, Nagios, Puppet, Chef, Qlikview, Tableau, Obiee, Sap Business Objects, Ssrs, Ssis

Big Data: Hadoop, Hdfs, Hive, Map Reduce, Hbase

Cloud Technologies: Amazon Web Services, Aws Cloud Watch, Aws Cloud Trail

Operating Systems Unix/Linux: (Rhel-7x/6x)/Aix, Solaris, Windows Xp/Vista/7,8,10, Ms Dos

Web Technologies: Html, Css, Xml, Vb Script, Soap, Rest Api, And Mvc

Databases: Mongo Db, Db2connect, Oracle 11g/10g/9i/8i, Ms Sql Server 2012/2008/2005/2000 , Ms Access

Data Analysis: Requirement Analysis, Business Analysis, Detail Design, Data Flow Diagrams, Data Definition Table, Business Rules, Data Modeling, Data Warehousing, System Integration

Data Modeling: Dimensional Data Modeling (Star Schema, Snow-Flake, Fact-Dimensions), Conceptual Physical And Logical Data Modeling, Er Models, Olap, Oltp Concepts, Entities, Attributes, Cardinality, Ca Erwin Dm (9.X/8.X/7.X)

Data Warehousing: Informatica Power Center/Power Exchange 9.5/ 9.1/8.5/8.1.1/7.1.2 , Informatica Designer, Workflow Manager, Work Flow Monitor, Datamart, Mapplet, Transformations, Informatica Metadata Manager

PROFESSIONAL EXPERIENCE

Splunk Admin / Developer

Confidential, New York

Responsibilities:

• Responsible for the end-to-end event monitoring infrastructure of business-aligned applications.
• Installation, Configuration, Migration, Troubleshooting and Maintenance of Splunk, WebLogic Server 7.0/8.1/9.x/10.x, Apache Web Server on different UNIX, Linux.
• Prepared, arranged and tested Splunk Search Strings and Operational Strings.
• Created and configured management reports and dashboards.
• Monitored Database Connection Health by using Splunk DB connect health dashboards.
• Monitoring Splunk dashboards, Splunk Alerts and configure scheduled alerts based on the internal customer requirement.
• Setting up dashboards for senior management and production support- required to use Splunk.
• Created EVAL Functions where necessary to create new field during search run time.
• Optimized Splunk for peak performance by splitting Splunk indexing and search activities across different machines.
• Managed and maintained various network security systems including firewalls, IDS systems, central authentication systems, application proxies, and general support systems
• Engineering, configuring and deploying Enterprise SIEM/SEM solutions.
• Manage Splunk (SIEM) configuration files like inputs, props, transforms, and lookups. Upgrading the Splunk Enterprise and security patching.
• Expertise with Splunk UI/GUI development and operations roles.
• Data collection from various systems/servers, Forwarder Management, creating and managing Splunk apps.
• Worked on data model relationships in underlying raw data and making it more meaningful and useful to quickly generate charts, visuals and dashboards using pivot.
• Building Splunk queries by Splunk Search Processing Language (SPL) and Regular expressions.
• Implemented Agile (Scrum) QA methodologies.
• Experience in Python/Shell/PowerShell scripting (creating scripts and manipulating existing scripts)
• Initiated projects to create disaster recovery plans for identified gaps.
• Established disaster recovery plan testing and auditing cadence.
• Create policies, alerts and configure using SIEM tools (Splunk )
• Extracted complex Fields from different types of Log files using Regular Expressions.
• Generated Search Commands to retrieve multiline log events in the form Single transaction giving Start Line and End Line as inputs.
• Guarantee high accessibility & execution through flat scaling and burden adjusted segments.
• Deliver inputs for identifying best fit architectural solutions - deployment for Splunk project.
• Architected various components within Splunk (indexer, forwarder, search head, deployment server), Heavy and Universal Forwarder, Parsing, Indexing, Searching concepts, Hot, Warm, Cold, Frozen bucketing, License model.
• Maintained and managed assigned systems, Splunk related issues and administrators.
• Used Splunk Enterprise REST API that uses HTTP requests to configure and manage Splunk instance, create and run searches.

Splunk Engineer

Confidential - Nashville, TN

Responsibilities:

• Worked on Splunk Searching and Reporting modules, Knowledge Objects, Administered Data Ingestion, Add-On's, Dashboards, Index Cluster and Forwarder Management.
• Designed and maintained complex Splunk dashboards on Enterprise and Enterprise Security.
• Configured Splunk forwarders and indexers to ingest infrastructure logs.
• Created and configured KPI's in Splunk IT Service Intelligence (ITSI).
• Configured Splunk for dynamic analytics and machine data indexing
• Worked on Splunk search processing language, Splunk dashboards and Splunk DB connect app.
• Created Splunk App for Enterprise Security to identify and address emerging security threats using continuous monitoring, alerting and analytics.
• Used VMware for Cloud Computing and Splunk Virtualization Services.
• Worked on Amazon AWS, configuring, launching Linux and windows server instances for Splunk deployment.
• Design, Implementation, Configuration and Management of Splunk Enterprise.
• Involved in the requirement gathering and analysis. Interacted with team members and Business users during the design and development of the application.
• Developed internal web application, Employee Ideal Portal using JAVA, JSP and Spring Framework
• Used monitor text files and convert their contents into syslog messages.
• Created Access controls, to the user by creating AD (Active Directory) groups power and user groups.
• Assisted stakeholders of Splunk in designing and maintaining production-quality data, dashboards and various applications.
• Involved in Proof-of-Concepts (POC) on Splunk implementation mentored and guided other team members on Understanding the use case of Splunk.
• Worked on Splunk ITSI glass tables, deep dives, ITSI modules.
• Worked on installing Universal Forwarders and Heavy Forwarders to bring any kind of data fields into Splunk.
• Developed SIEM configurations, use cases and operational models or specific security solutions to meet the customer's requirement and assess risks imposed by technical solutions
• Used Actuate Reporting, development, deployment, management and performance tuning of Actuate reports.
• Created several different dashboards for multiple different teams and clusters in Splunk infrastructure.
• Installed Splunk forwarder and Splunk indexers and Search heads on various platforms like windows, Linux, UNIX.
• Installed, configured and administered Splunk Enterprise Server and Splunk Forwarder on RedHat Linux and Windows servers.
• Worked on development experience in customizing Splunk dashboards, visualizations, configurations, reports and search capabilities using customized Splunk queries.
• Worked on supporting large scale Splunk deployments.
• Used Troubleshoot Splunk components like forwarders, indexers and search heads and performance issues.
• Imported the data in Splunk through inputs.conf, props.conf and transforms.conf.
• Created multiple Splunk role-based LDAP authentication.
• Used Splunk Nessus app to import, convert and ingest scan data for reporting
• Conducted penetration testing and vulnerability management practices.
• Prepared, arranged and tested Splunk search strings and operational strings.
• Created and configured management reports and dashboards.
• Worked on large datasets to generate insights by using Splunk

Splunk Developer

Confidential, Seattle, WA

Responsibilities:

• Designing and implementing Splunk-based best practice solutions. Requiement gathering and analysis. Interacted with team members and Business users during the design and development of the application.
• Data collection from various systems/servers, Forwarder Management, creating and managing Splunk apps.
• Building Splunk queries by Splunk Search Processing Language (SPL) and Regular expressions.
• Publishing data into Splunk through configurations such as inputs.conf, severclass.conf, server.conf, apps.conf and Outputs.conf configurations
• Configurations with deployment server, indexers, search heads, serverclass.conf, server.conf, apps.conf, props.conf, transform.conf, forwarder management configurations.
• Created and triggered various dropdowns and drilldowns by using Splunk static Lookups.
• Installed, Configured, Implemented various visualization Add-ons to the developed and developing dashboards
• Built Latency and Time lag analytics in Hadoop and Informatica.
• Built several Key Performance Indicators for the Personal Insurance team through Splunk Metrics
• Built and configured various Splunk Objects on various Filesystems; vmstats, Veritas, NAS, Diskapp, CPU, IO stats.
• Built KPIs and other Splunk Objects on Hardware Utilization of various technologies like Informatica, Goldengate, and SAS Fraud Framework, Teradata, Hadoop, Microstrategy and A&C servers.
• Built Analytics for Workflow logs and Session logs of informatica on Job Failures, errors, stats.
• Built Utilization and Monitoring Analytics for Various Work environments of Personal Insurance sector
• Created and configured Alerts /Notifications on different SLAs and thresholds for Personal Insurance Architecture team on Filesystem, vmstats, Veritas, NAS, Diskapp, CPU, IOstat utilization.
• Created a drilldown of navigations from one splunk app to the other app.
• Review and apply any newly available and applicable SPLUNK software or policy updates routinely.
• Assist with design of core scripts to automate SPLUNK maintenance and alerting tasks.
• Support SPLUNK on UNIX, Linux and Windows-based platforms. Assist with automation of processes and procedures.
• Maintain current functional and technical knowledge of the SPLUNK platform and future products.
• Help to document best practices in developing and using SPLUNK.
• Experience with Splunk UI/GUI development and/or operations roles
• Work with business/IT and create the next steps plan and implement the same.
• Implemented Post processing method for searches in dashboards.
• Extensively worked on building of range maps for various SLA conditions by using all kinds of Splunk 6.x Dashboard Examples.
• Monitor the applications and server infrastructure for optimization, performance and Utilization metrics.
• Configured Alerts and notifications on various thresholds, SLAs for Personal Insurance Architecture team.