TECHNICAL SKILLS

• SQL
• Regular Expression
• SPL
• Linux
• XML
• Tableau
• Oracle Database
• Remedy
• Active Directory
• DameWare
• Bash
• Perl
• Agile Scrum
• Strong Written & Verbal Skills
• Effective Negotiator
• Adaptability
• Client Relations
• Hard Sales Skills

PROFESSIONAL EXPERIENCE

Confidential

SPLUNK ENGINEER

Responsibilities:

• Built a series of comprehensive and interactive dashboarding systems to provide operational visibility to business and technical clients
• Utilizing best practices and functionalities of Splunk: linking panels to base searches, adding drilldowns and dropdowns, utilizing load jobs
• Working on project to streamline all data into data models by making data CIM compliant with the use of various knowledge objects.
• Data Models: Alerts, Authentication, Endpoint, Intrusion Detection, Network Resolution etc.
• Customly extract fields by writing complex regular expressions on all indexes to meet compliance requirements
• Configured indexer discovery to aid cluster in seamless growth; index parallelization configuration to increase pipelines to decrease bottlenecks and increase throughput
• Consistent management of storage to maintain overall stability of unix servers that host Splunk by adding volumes as necessary
• Performed Splunk migration from soon - to-be decommissioned servers to new infrastructure - careful to prevent bucket collision and issues
• Set up intermediate forwarders to help the flow of data from a set of different geographical regions
• Manage role/index-based access by utilizing authentication.conf and authorize.conf
• Customize metadata with the usage of transforms.conf
• Build SPL to configure alerts for users as well as assisting in tuning of alerts to achieve accurate results
• Developed a set of multi-argument macros to help users with more complex SPL queries and use them across multi-panel dashboards
• Developed a set of custom data models to aid users in the process of searching upon correlated data
• Provide support to various IT departments and ensure compliance to all policies and procedures to prepare all reports
• Maintain all management agreements and prepare reports
• Ensure adherence to all project policies and standards and manage efficient timesheet and prepare required PTO reports
• Collaborate with finance team to perform all associate activities and prepare appropriate summaries within required timeframe
• Assist in closure for all projects, perform required benefit analysis with project team, and maintain record of all governance meetings
• On-board and roll-off personnel, which included requirement analysis, training, and assistance as, required.
• Schedule interviews with new candidates and project team leads
• Work hand in hand with subcontracting companies to staff project

Confidential

SPLUNK SIEM ENGINEER

Responsibilities:

• Architected 2 standalone searcheads to a searchhead cluster - configuring Enterprise Security on stand-alone searchhead.
• Configured LDAP for central authentication
• Responsible for day-to-day operations, data onboarding, dashboarding, administrating and maintenance of the infrastructure
• Onboarded network data from wide range of network devices by integrating syslog-ng with Splunk servers
• Supported SOC teams by utilizing Splunk alerting and dashboarding systems to provide security visibility over the entire infrastructure
• Principal architect in the process of setting up a multi-site cluster - replication factor of 4 between 2 data centers
• Ensured that no PII data is being indexed into the system by utilizing transforms.conf
• Integrated multitude of tools with Splunk: Hyper-V, Citrix, AWS S3, Kubernetes, Oracle and others
• Established specific retention policies for newly indexed and existing data in accordance to requirements of the infrastructure
• Standardized naming convention of apps and configurations files across the deployment
• Successfully lead the project to migrate Splunk on-prem deployment to the cloud deployment
• Troubleshooted wide range of issues including but not limited to: anomalous buckets, configuration file precedence problems
• Faulty SPL queries, bucket errors, blocked ingestion pipelines, environment recovery after failure of one of the sites

Confidential

SYSTEM ADMINISTRATOR

Responsibilities:

• Proactively maintained and developed all Linux infrastructure technology to maintain a 24x7x365 uptime service
• Maintained best practices on managing systems and services across all environments
• Administered and maintained RHEL 7 and 8 servers and RedHat IDM infrastructure
• Managed internal VMWare systems
• Supported DevOps teams in the process of setting up and configuring environments
• Resolved user’s tickets as a second line of support in accordance with SLA requirements
• Formulated access and data safety policies
• Administered containers by utilizing Kubernetes functionalities
• Automated the process of delivering applications on dev and UAT environment
• Fault finding analysis of logging information for reporting of performance exceptions
• Proactively monitored system performance and capacity planning
• Managed, coordinated, and implemented software upgrades, patches, hot fixes on servers, workstations, and network hardware
• Created and modified bash scripts or applications to perform tasks

Confidential

HELP DESH ANALYST II

Responsibilities:

• Supported government and contractor personnel for PC, Mac, and associated software packages, remote tools, and Internet applications.
• Used remedy to manage and process tickets
• Re-imaged machines with specific images
• Set up desktops, laptops, tablets for end users
• In-processed and out-processed personnel, which included requirement analysis, training, and assistance as required.
• Installed software on workstations and portable systems.
• Performed workstations and software upgrades as required.
• Managed, handled, and troubleshot mobile devices, mobile applications, printers, tablet PC's, Macs, iPads, laptops, and desktops.
• Assisted in leading team in the performance of daily tasks and projects.
• Served as technical lead for IT Helpdesk.
• Helped administer endpoint and user management systems such as Active Directory, and Office 365.
• Helped deploy security updates and operating system images
• Provided technical training to users and technical staff.
• Documented procedures for support tasks.

Confidential

DESKSIDE TECHNICIAN

Responsibilities:

• Installed software, modified, and repaired hardware and resolve technical issues.
• Provided base level IT support to non-technical personal within the Confidential
• Used remedy to manage and process tickets
• Re-imaged machines with specific images
• Set up desktops, laptops, tablets for end users
• Managed call flow and respond to technical support needs of customers
• Resolved customer issues in a clear, courteous and straightforward manner