SUMMARY:

• IT Professional with 9+ years of strong experience as Splunk Administration/Developer, Software Analysis, Design and Development for various software applications in providing Business Intelligence Solutions in Data Warehousing for decision Support Systems, and Database Application Development.
• Splunk Certified Admin - 6.x/6.3 and Splunk Certified Power User-6.x/6.3.
• Certified Sumo Power Admin, Sumo Pro User, Certified Sumo Power User.
• Certified AWS Technical Professional.
• Certified Information Security Expert (CISE-Level: 1).
• Excellent experience in Operational Intelligence using Splunk 6.x/5.x/4. x.
• Expert in Extracting, Transforming, Analyzing, Visualizing, and presenting data from diverse business areas in novel and insightful ways to enable Directors, Vice Presidents, and C-level executives to take informed action.
• Experience in using various configuration management tools to handle servers and to automate scripts like Puppet & Chef.
• POC's with the Confluent Schema Registry, Rest Proxy, Kafka Connectors for Cassandra and HDFS (Hadoop 2.0);
• Strong experience in all facets of SDLC viz. requirement analysis, designs, development, testing, and post implementation revisions (Agile/Scrum/Waterfall).
• Experience in scripting languages like Python, Shell and Perl to automate the log rotations, onboarding data from various application teams and to reload deployment servers.
• Good knowledge about Splunk architecture and various components (indexer, forwarder, search heads, deployment server), Heavy and Universal forwarder, License model.
• Expertise in Preparing, arranging and testing the Splunk search strings and operational strings.
• Extensive experience in deploying, configuring, and administering Splunk Clusters.
• Experience in developing Splunk queries and dashboards targeted at understanding application performance and capacity analysis.
• Experience in working with Change / Incident Management teams to apply changes to existing servers and to onboarding new data to Splunk servers.
• Expertise in developing proof of concepts (POC) on Splunk Enterprise Security (ES) implementation mentored and guided security team on understanding the use cases in Splunk.
• Experience in providing monitoring and response to security events for Security Operations team (SOC).
• Experience in working with Splunk authentication and permissions and having significant experience in supporting large scale Splunk deployments.
• Expert in installing SPLUNK apps for Linux and UNIX environments.
• Experience in creating and developing various configuration files in Splunk (props.conf, transforms.conf, inputs.conf, outputs.conf, authentication.conf, authorize.conf).
• Experience in Big Data and familiar with components of Hadoop Ecosystem: HDFS, Hive, HBase and Pig.
• Expertise in Hadoop Application Development and integrated in to Splunk.
• Extensive knowledge in creating Actuate reports using XML, Dashboards, visualization and pivot tables for the business users.
• Excellent written, analytical, co-ordination, interpersonal, leadership, organizational and problem-solving skills, Ability to adapt, learn new technologies and get proficient in them very quickly.

TECHNICAL SKILLS:

Programming/Scripting Languages: C, C++, Java, SQL, Python, Ruby, JavaScript, Shell Scripting, Perl, PL/SQL

Tools: SPLUNK 6.x, 5.x, 4.x, Nagios, Puppet, Chef, QlikView, Tableau, OBIEE, SAP Business Objects, SSRS, SSIS

Big Data: Hadoop, HDFS, Hive, Map Reduce, HBase

Cloud Technologies: Amazon Web Services, AWS Cloud Watch, AWS Cloud Trail

Operating Systems: UNIX/LINUX (RHEL-7x/6x)/AIX, SOLARIS, Windows XP/Vista/7, 8, 10, MS DOS

Web Technologies: HTML, CSS, XML, VB Script, SOAP, Rest API, and MVC

Databases: Mongo DB, DB2Connect, Oracle 11g/10g/9i/8i, MS SQL Server 2012/2008/2005/2000, MS Access

Data Analysis: Requirement Analysis, Business Analysis, detail design, data flow diagrams, data definition table, Business Rules, data modeling, Data Warehousing, System Integration

Data Modeling: Dimensional Data Modeling (Star Schema, Snow-Flake, FACT-Dimensions), Conceptual Physical and Logical Data Modeling, ER Models, OLAP, OLTP concepts, Entities, Attributes, Cardinality, CA Erwin DM (9.x/8.x/7.x)

Data Warehousing: Informatica Power Center/Power Exchange 9.5/ 9.1/8.5/8.1.1/7.1.2, Informatica Designer, Workflow Manager, and Work flow Monitor, DataMart, Mapplet, Transformations, Informatica Metadata Manager

Servers: Apache Tomcat, WebSphere, Glassfish

PROFESSIONAL EXPERIENCE:

Confidential, Mt. Laurel, NJ

Sr. Splunk Admin/Developer

Roles & Responsibilities:

• Research, design and develop infrastructure, and tools that will support security requirements and log management for the enterprise.
• Provide engineering analysis, design and support for firewalls, routers, networks and operating systems. Performs vulnerability scans using vendor utility tools. Monitors security audit and intrusion detection system logs for system and network anomalies.
• Developed customized python for dev and Shell scripts for production environments to install, manage, and configure multiple instances of Splunk forwarders, indexers, search heads and deployment servers.
• Involved in Architectural designs, workflow designs, specification and maintenance of Splunk Enterprise.
• Introduced Sumo Logic, a cloud based log management and analytics services (SaaS) which is a similar application to Splunk. It collects, manages, correlates and analyzes real-time enterprise log data in a searchable repository, providing a comprehensive view into DevOps, IT Ops, and security and compliance environments.
• Installed Sumo Logic collectors, configured SSH/proxy, and deployed application both in production and non-production environments.
• Developed many scripts (Python/Shell) for automating the collector start services after periodical intervals of service down notifications.
• Managed AWS Splunk instances and integration with on-prem Splunk Enterprise.
• Developed and generated Shell Scripts to auto install Splunk Forwarders on all servers and configure with common Configuration Files such as Bootstrap scripts, Outputs.conf and Inputs.conf files.
• Installing, Configuring and Administering Splunk Enterprise Server 6.5/6.2.1/5.0.2/4 . x and Splunk Forwarder 6.5/6.2.1/5.0.2/4 x on RedHat Linux-7x and Windows severs.
• Created indexes and updated configuration files in Splunk Deployment server / Cluster master based on on-boarding requirements.
• Developed and integrated few applications & add-ons like predictive model for eLife, MS Exchange, voice, video and Hadoop apps.
• Created robust searches, reports, and charts. Using Splunk search process, using sub-searches, additional statistical commands and functions & formatting to produce calculating results, charting commands with options to correlate events, and advanced lookups.
• Performed troubleshooting, debugging and correct issues related to Data Ingestion.
• Worked on Actuate Reporting, development, deployment, management and performance tuning of Actuate reports.
• Ran various search commands like stats, chart, time chart, transaction, strptime, strftime, eval, where, xyseries table, etc. difference between event stats and stats.
• Developed various proof of concepts (POC) for Hadoop, Voice, ServiceNow teams and implemented and documented.
• Designed complex code to manage various types of complexities such as applying trained models depending on the type of document and classification model, tailoring the model output to integrate with relatively DB schema, etc
• Interact with the data warehousing team regarding extracting the data and suggest the standard data format such that Splunk will identify most of the fields.
• Analyzed the incoming logs to discard unnecessary events which are important to save license cost.
• Supporter and execute arrangements considering a full information lifecycle (Search & Investigate, Add Knowledge, Monitor & Alert, Report & Analyze).
• Maintained Splunk dashboards and associated charts, graphs, and drilldowns to enable managers, administrators, users and analysts to maximize the utility of the Splunk platform and applications.
• Analyzing data in Hadoop through data stores visual interactions and using Splunk for deeper analysis.
• Managed both dev/prod environments server stack using Puppet master. Implemented different modules in Puppet by infrastructure as a code with Ruby.
• Around the clock availability and support for critical issues or escalations. Responsible for administering, maintaining and configuring a 24 x 7 highly available, Splunk apps for production portal environment.
• Building, deployment, Configuration, Management of Splunk instances in a distributed Environment which is spread across different Application Environments belonging to multiple lines of business.
• Creation of users, groups and access controls as per the user requirement. Responsible for running batch files, scripts, weekly cubes restart schedules, and taking backup of cubes quarterly.
• Created Dashboards, reports, scheduled searches and alerts. Resolved configuration based issues in coordination with infrastructure support teams.
• Provided load/stress and architecture validation testing and troubleshooting on issues such as Out of Memory, 100% CPU Usage hung Thread sessions, session replication, JVM Crashes.
• Efficiently handled Work Load Management for load balancing and failover, improving performance, reliability and scalability.
• Attended bridge calls for production issues and non-prod issues and involved application teams or database teams or networking teams to resolve the issues and involved in Root cause analysis for the issues encountered.
• Also, provided 24/7 on call support for all the production applications.
• Coordinated Kafka operation and monitoring (via JMX) with DevOps personnel & formulated balancing leadership strategies and impact of producer and consumer message (topic) consumption to prevent overruns.
• Analyzing massive amount of real time data in Hadoop using Splunk enterprise operational intelligence.
• Worked on LDAP, network firewalls configurations, SAML/LDAP/Scripted authentications.

Environment: Splunk 6.x, 4.x, Puppet, RHEL 7x, Solaris, Hadoop, HBase, Hive, AWS, VPC, Cloud watch, Cloud Trail, MS Exchange, Voice, Video, Predictive Model-eLife, LDAP

Confidential, Columbus, Ohio

Splunk Developer/Admin

Roles & Responsibilities:

• Designed a highly scalable, reliable, secure and flexible, these solutions help reduce costs and simplify management while providing a platform for next-generation engagement and collaboration.
• Developed Splunk queries and dashboards targeted at understanding application performance and capacity analysis.
• Developed Glass tables in Splunk ITSI. Configured Add-ons like WebSphere, Splunk DBConnect which is used to implement in Splunk ITSI.
• Worked on various search commands like stats, chart, time chart, transaction, strptime, strftime, eval, where, xyseries table, etc. difference between event stats and stats.
• Worked on Splunk authentication, permissions and having significant experience in supporting large scale Splunk deployments.
• Worked on Splunk 6.x product, Distributed Splunk architecture and components including search heads, indexers, forwarders, etc.
• Created Dashboards, report, scheduled searches and alerts.
• Resolved configuration based issues in coordination with infrastructure support teams.
• Worked on extraction on Search time vs Index time field extraction.
• Worked on configuration files, precedence and daily work exposure to props.conf, transforms.conf, inputs.conf, outputs.conf and setting up a forwarder information based on requirement.
• Maintenance of Splunk Environment with multiple Indexers.
• Manage and configure index settings and created event type definitions. Analyzed security based events, risks and reporting instances.
• Developed custom web application solutions for internal ticket metrics reporting.
• Set indexing property configurations, including time zone offset, custom source type rule, configure regex transformations to perform on data inputs. Use in tandem with props.conf.
• Designed core scripts to automate Splunk maintenance and alerting tasks.
• Integrated ServiceNow with Splunk to generate the incidents from Splunk.
• Created many of the proof-of-concept dashboards for IT operations, and service owners which are used to monitor application and server health.
• Lowered the cost and risk of big data initiates with full featured platform to rapidly explore, analyze and visualizing data in Hadoop.
• Worked on data model relationships in underlying raw data and making it more meaningful and useful to quickly generate charts, visuals and dashboards using pivot.
• Analyzing massive amount of real time data in Hadoop using Splunk enterprise operational intelligence.
• Worked on Actuate Reporting, development, deployment, management and performance tuning of Actuate reports (various types of charts Alert settings Knowledge of app creation, user and role access permissions).
• Creating and managing app, Create user, role, Permissions to knowledge objects.
• Interacted with the data warehousing team regarding extracting the data and suggest the standard data format such that Splunk will identify most of the fields.
• Created Dashboards using different BI tools like QlikView 11.0 and Tableau.
• Used various connectors to extract the data from different data sources.
• Worked on Chef Configuration management tool to automate and manage servers.

Environment: Splunk 6.3, 6.2, Chef, Pivotal HD, Linux/UNIX, Oracle 11g, MS SQL server 2012, HBase, Hadoop, ServiceNow, XML, QlikView

Confidential, Pleasanton, CA

Splunk Developer/Admin

Roles & Responsibilities:

• Installing, Configuring and Administering Splunk Enterprise Server 6.0.4/6.1.1 and Splunk Forwarder 5.0.1/6.2.0 on RedHat Linux and Windows severs.
• Setup Splunk Forwarders for new application tiers introduced into environment and existing applications.
• Work closely with Application Teams to create new Splunk dashboards for Operation teams.
• Troubleshooting and resolve the Splunk - Performance, Log Monitoring Issues; Role Mapping, Dashboard creation etc.
• Created Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
• Created Regular Expressions for Field Extractions and Field Transformations in Splunk.
• Automation in Splunk using Perl with Service-Now for event triggering.
• Used Splunk data Connector between Splunk Enterprise and Relational Database.
• Anonymize the PII (Personally Identifiable Information) data in Splunk. Masked sensitive information such SSN numbers, addresses when showing results in Splunk
• Configured Splunk for all the mission critical applications and using Splunk effectively for Application troubleshooting and monitoring post go lives
• Created Dashboards and Reports to show Login count of each application, to show which app resources being accessed more, Number of failed logins, statistics on High hitting applications.
• Configured Splunk forwarder to send unnecessary log events to "Null Queue" using props and transforms configurations to reduce license costs.
• Developed custom applications in Splunk.
• Fetched the data from databases using "DB Connect Application".
• Extensively involved in troubleshooting the issues and document the problem resolutions for future references.
• Attended Change management meetings for approval for the applications which are supposed to go live and provided the MOM of CM meetings to the team.
• Developed a POC on usage of Puppet Configuration Management tool.

Environment: Splunk Enterprise Server 6.0.4/6.1.1, Universal Splunk Forwarder 5.0.1/6.2.0, RedHat Linux, IBM HTTP Web Server 6.1/7/8, Oracle, HACMP 5.4, HTML, Java Script, XML, Wily IntroScope 9.0, IIS 7, Windows 2003, Windows 2008 R2, Python (Jython), Regular Expressions

Confidential, Columbus, OH

Splunk Developer

Roles & Responsibilities:

• As SME for Splunk support, supported Splunk circulated environment comprising of search heads, indexers and forwarders across different OS including Aix, Solaris and Windows.
• Work towards accomplishing a faster ROI and keeping up partners persuaded of the worth and discovered open doors in Splunk.
• Configured Indexer replication to achieve data availability, data fidelity and disaster tolerance.
• Improved search performance by configuring 2 search heads for all Indexes in production.
• Install different Splunk Applications, for example, Cisco for Splunk, Windows for Splunk and VMware for Splunk.
• Created and configured management reports and dashboards in Splunk for application log monitoring.
• Responsible for administering, maintaining and configuring a 24 x 7 highly available, Splunk apps for production portal environment.
• Efficiently handled Work Load Management for load balancing and failover, improving performance, reliability and scalability.
• Gathered different wellsprings of syslog and XML information from different gadgets, applications, and information bases
• Supporter and execute arrangements considering a full information lifecycle (Search & Investigate, Add Knowledge, Monitor & Alert, Report & Analyze).
• Problem determinations such as Broken Pipe/Connection reset issues by enabling traces in WebSphere V6.0/6.1 various Components and even automating various processes using WSAdmin script.

Environment: Splunk Enterprise Server 5.1.2, Splunk Forwarder 5.1, 5.4, XML, VMware

Confidential, Paramus, NJ

ETL/SQL Developer

Roles & Responsibilities

• Analyzed business requirements and worked closely with various application teams and business teams to develop ETL procedures that are consistent across all application and systems.
• Documentation of technical specification, business requirements, functional specifications for the development of Informatica mappings to load data into various tables and defining ETL standards.
• Installed and configured Informatica Server and Power Center 7.2. Migrated the Metadata changes to the Informatica repository.
• Responsible for Data Import/Export, Data Conversions and Data Cleansing.
• Created Informatica mappings with SQL procedures to build business rules to load data.
• Worked on Informatica Power Center 7.1.3 tool - Source Analyzer, warehouse designer, Mapping Designer &Mapplets, and Transformations.
• Created and configured Workflows, Worklets, and Sessions to transport the data to target using Informatica Workflow Manager.
• Extensively involved in performance tuning at source, target, mapping, session and system levels by analyzing the reject data.
• Maintained Development, Test and Production mapping migration using Repository Manager.
• Extensively performed unit testing and system or integration testing. Generated PL/SQL scripts and UNIX Shell scripts for automated daily load processes.
• Extensively worked in Oracle SQL Query performance tuning and created DDLs, database objects like Tables, Indexes and Sequences etc., by working closely with DBAs.
• Developed several forms and reports in the process. Also, converted several standalone procedures/functions in PL/SQL to packaged procedure for code reusability, modularity and control.
• Designed tables, indexes and constraints using TOAD and loaded data into the database using SQL*Loader. Tuning of Informatica jobs with oracle as backend database.

Environment: Informatica 7.1.3, Business Objects, Oracle 8.1.7.4, SQL*Plus, PL/SQL, TOAD, 7.1, UNIX, Windows XP

Confidential

UI Developer

Roles & Responsibilities

• Designing and developing dynamic web pages using XHTML, CSS and JavaScript.
• Coded extensively in jQuery to make rich Internet web pages and created custom date picker on the website.
• Developed mockups and prototypes using HTML and CSS.
• Design website and maintain the website content up to date.
• Worked on cross browser compatibility check and thoroughly performed unit testing and integration testing.
• Developed the online chat interface for the anonymous communication between mentors and clients.
• Re-designing/ developing the main website to improve user experience and add new functionality.
• Worked on the website from start to finish to give it a new look using HTML/CSS/JavaScript.
• Designed dynamic and browser compatible pages using HTML, DHTML, CSS and JavaScript.
• Involved in extensive HTML coding.
• Developed CSS styles to maintain the uniformity of all the screens throughout the application and positioning of screen objects.
• Developed page layouts, navigation, animation buttons and icons.
• Applied industry best practices and standards when project requirements are lagging.
• Designed CSS based page layouts that are cross-browser compatible and standards-compliant.
• Performing the different modules like login, search and download with tracking.
• Did extensive JavaScript and jQuery programming to give AJAX functionality for the website.
• Further tasks include management of all MySQL database and all the required tables to store different survey information related to the site.

Environment: HTML, CSS, JavaScript (Libraries: jQuery), MS Access, Adobe Flash, MS Office, Firefox, Chrome