SUMMARY

• Over 9 Years of Strong IT experience in Splunk, Linux/UNIX, PLSQL and SQL DBA. Monitoring, Data Analytics performance tuning Troubleshooting and Maintenance of Data Base.
• 5 + years of experience as SplunkAdmin/Developer, performed activities including requirement analysis, design and implementations of various client - server based applications usingSplunk5.x,Splunk6.x.
• Extensive knowledge of a tier Splunk Installation, Configuration, Migration, Trouble-Shooting and Maintenance ofSplunk.
• Experience in integrating non-standard logs and sources into Splunkincluding SQL queries, scripted inputs and custom parsers.
• Good Knowledge onSplunk architecture and various components indexer, forwarder, search head, deployment server, License model.
• Responsible for the design, developing, testing and deploying of Splunksolutions and dashboards running on Big Data technologies such as Hadoop.
• Experienced in creating Reports, Alerts and Dashboards bySplunksearch processing language (SPL), creating and running Cron Jobs for scheduled tasks.
• Headed proof-of-Concepts (POC) on Splunk implementation and Integrating Splunk with Windows Active Directory and LDAP.
• Involved in Installing and using Splunkapps for UNIX and Linux (SplunkUNIX).
• Experienced in using Splunk CLI command syntax to manage or configure Splunk server and distributed deployment.
• Worked on Splunk ES (SIEM) that enable organizations to detect, respond and prevent these threats by providing valuable context and visual insights to help you make faster and smarter security decisions.
• Strong Experience with SplunkSearching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management.
• Hands on DMC to monitor Splunk deployment by providing and performance reporting from a central search head.
• Responsible for Lift and Shift of Splunk servers and determined the destination location.
• Involved in using SPL created Visualizations to get the value out of data
• Expert in Analyzing the Security Related Logs from various sources using SIEM system which creates alerts whenever it detects Anomalous Transactions and blocks malicious activities
• Worked with CISSP team to tone the information security problems.
• Extensive Experience in SSL cryptography, troubleshooting by viewing logs and dealing with XML threats.
• Created Splunkapp for Enterprise Securityto identify and address emerging Securitythreats using continuous monitoring, alerting and analytics.
• Worked on several styling and text customizations for different components of the Splunkplatform using JavaScript and CSS.
• Involved in configuring the HTTP Server for various clustered application servers using virtual hosting and enabling SSL security.
• Installed SplunkDB Connect 2.0 in Single and distributed server environments and Parsing, Indexing, Searching concepts Hot, Warm, Cold, Frozen bucketing.
• Experience in creating Drill through and Drill down reports using Crystal Reports and SQL Server Reporting Services (SSRS).
• Time chart attributes such as Span, Bins, Tag, Event types, Creating Dashboards, Reports using XML. Create Dashboard from search, Scheduled searches of Inline search vs. scheduled search in a Dashboard.
• Fully understands concepts and practices for sizing, scaling and deploying Splunk building across Center Of excellence (COE).
• Helped SOC team to monitor and Improve organization’s security posture while preventing, detecting, analyzing and responding to cyber security incidents.
• Proficient in PL/SQL programming - Stored Procedures, Functions, Packages, SQL tuning, and creation of Oracle Objects - Tables, Views, Materialized Views, Triggers, Sequences, Synonyms, Database Links, and User Defined Data Types.
• Strong Experience in Oracle PL/SQL back end applications development Toad, SQL Plus and PL/SQL Developer.
• Experience using SQL, PL/SQL Procedures, Functions, Triggers and Packages.
• Provided 24/7 on-call support for production, strong team player, good analytical and communication skills.

TECHNICAL SKILLS

Languages: C, C++, Java, XML, Unix Shell Scripting, Oracle SQL and PL/SQL, Pearl, Python.

Database: Oracle11g/10g/12c, MYSQL SERVER, DB2, MS Access, SQL Databases.

Tools: Splunk 6.x, Oracle Forms 8i/9.2/10g/11g, TOAD, Chef, Puppet.

Web Technologies: Servlets, JSP, HTML, DHTML, XML, XSL, XSL.

Web/Application servers: WebLogic8.1/9.2, Web Sphere concepts, Apache Tomcat, Sun ONE

Network Protocols: TCP/IP, Telnet, HTTP, HTTPS, FTP, SNMP, REST API, SSL, SFTP, LDAP, DNS, DHCP.

Operating Systems: Sun Solaris, Red Hat LinuxWindows 98/XP/Vista/7/8, UNIX, Linux.

PROFESSIONAL EXPERIENCE

Confidential, Phoenix-AZ

Sr. Splunk Developer/Administrator

Responsibilities:

• Installed, Configured and administrated SplunkEnterprise and Splunkforwarders on Windows Servers and Linux Servers.
• Expertise in Installation, Configuration, Migration, Trouble-Shooting and Maintenance of Splunk, Passionate about Machine data and operational Intelligence.
• Created historical and real-time Dashboards, reports, scheduled searches and alerts
• Deployed and Managed SplunkDB connect Identities, Database Connections, Database Inputs, Outputs, lookups, access controls.
• Worked on Integrating Splunkwith Windows Active Directory and LDAP.
• Installing and using Splunkapps for UNIX and Linux (SplunkUNIX).
• Experience in working on Deployment Server and Deployment Client Architecture to manage the forwarders across application environment.
• Ready to make and oversee External Lookups in Splunk to match occasion information with portrayal.
• Created Splunk Search Processing Language (SPL) queries, Reports, Alerts and Dashboards.
• Able to make handle assumed names crosswise over application occasions and store data in Splunk storage Database (MongoDB).
• Created indexes, performed Installation of UF's on servers and configuring the data inputs, server class for the data to be brought intoSplunk
• Developing custom web application solutions for internal ticket metrics reporting,onboard new log sources with log analysis and parsing to enable SIEM correlation.
• Involved many of the proof-of-concept dashboards for IT operations, and service owners which are used to monitor application and server health.
• Field Extraction: Using IFX, Rex Command and REGEX in configuration files, knowledge of EXTRACT keyword.
• Very good understanding of software development life-cycle (SDLC) process, Followed Agile scrum and story maps for dev tracking.
• Performing Field extraction using lookups, rex and regex in configuration files.
• Customizing simple XML using custom CSS style sheets and Java script files.
• Reduced license costs by sending all unnecessary log events to "null Queue" configured in props and transforms file.
• Created Shell Scripts to install SplunkForwarders on all servers and configure with common configuration files such as Bootstrap scripts, Outputs.Conf and Inputs.Conf files.
• Analyzed security based events, risks and reporting instances.
• Integrate Spunk Web support with Splunk Mobile App utilizing Mobile Access server Add on.

ENVIRONMENT: Splunk 6.2, Splunk 6.1, Splunk Enterprise Server, Universal Splunk Forwarders, Red Hat Linux, HTML, Java Script, Windows 2008 R2, Windows 2012 R2, Python, Regular Expressions.

Confidential, CA

Splunk Developer/Administrator

Responsibilities:

• Deployed Spunk universal forwarder across various applications to collect the data.
• Expert in analyzing syslog server and SNMP receiver architecture to collect data from network devices.
• Involved in standardizing Splunkforwarder deployment, configuration and maintenance across LINUX platforms for various Applications.
• Created Dashboards, report, scheduled searches and alerts.
• Able to create fields through IFX, SplunkWeb and via Splunkconfigurations.
• Analyzed large datasets to identify metrics, drivers and correlate the events through Splunk grouping commands such as transaction join and append.
• Created pig scripts to transform extract data and transform the data from HDFS.
• Generate HIVE Scripts and create views for reports.
• Maintained HTML dashboards with java scripts and CSS to create customized visualizations.
• Onboard new log sources with log analysis and parsing to enable SIEM correlation.
• Provide different wellsprings of Syslog server and XML information from various gadgets, applications, and databases.
• Implementation of medium scale Splunk ESarchitectures.
• Stay current with the latest features/capabilities of the AWS platform.
• Experience in providing monitoring and response to security events in Security Operations Center (SOC) team.
• Good understanding inSplunkSW and its infrastructure for optimal performance to build COE.
• Generated timewrap Command to compare results week-over-week or any given day.
• As part of SIEM, monitored notable events through SplunkEnterprise Security (Using V3.0).
• Analyzed various types of charts Alert settings Knowledge of app creation, user and role access permissions.
• Developed shell scripts to handle everyday System Administration tasks such as backup procedure, system cleanup, daily system tasks, log rotation, etc.
• Using DB connect for real-time data integration between SplunkEnterprise and databases.
• Integrated Service Now withSplunkto generate the Incidents fromSplunk
• Created many of the proof-of-concept dashboards for IT operations, and service owners which are used to monitor application and server health.
• Expertise in Actuate Reporting, development, deployment, management and performance tuning of Actuate reports
• I have configured and maintained Hot, Warm, Cold, and frozen bucketing depending on the Data Retention Requirements.
• Created custom Reports using various Report Types like Line, List, Bar, Pie on tables Incident, Tasks, Problems, Change Request and exported reports to Excel, CSV.
• Created Dashboards to monitor CPU Performance Peak, Memory Leakage and several Parsing, Indexing, Searching concepts
• Monitor and track Splunkperformance problems, administrations and open tickets with Splunkif there is need.
• Responsible for Scheduling and Automating Database tasks - CronJobs, Alerts, Emails, Notification.
• Supported HTTP methods following the REST API subsets including the CURD operations like the GET, POST and DELETE to return a HTTP status code to indicate the success of the operation or cause of a failure to fulfill the request.
• Onboard new log sources with log analysis and parsing to enable SIEM correlation.
• Involved in creating SplunkDashboards to track the Application usage in peak times.
• Used cURL and REST client browser plugins to exercise the API by using the curl command.
• Analyzed EVAL Functions where necessary to create new field during search run time.
• Worked on the Windows Servers and RHEL Linux OS deployments. Worked on VM creation, templates, clones and snapshots.
• Managed VMs specification, upgrade of VM tools and VM hardware.

Environment: SplunkES,Splunk6.0.1, Unix/Linux, XML, SPL, AWS, Windows SplunkForwarder, Power Shell, Red Hat Linux, HIVE, HDFS, Pig, Shell Script, JavaScript, Windows 2008 R2, Windows 2012 R2.

Confidential, Austin - TX

Splunk Administrator

Responsibilities:

• Operated Indexer replication to achieve Data availability, Data fidelity and Disaster tolerance.
• Created dashboards, reports, scheduled searches and alerts related to the installation.
• Installed and configured Splunk apps like SOS, DB Connect, and App for UNIX and Deployment Monitor.
• Involved in setting up Splunk to catch and dissect information from different layers Load Balancers, Web servers and application servers.
• Created, configured management reports and dashboards in Splunkfor Application Log Monitoring and supported Splunkcluster infrastructure in AWS cloud environment.
• Deployed Alerts, Reports, dashboard and Views in Splunk.
• Indexing and troubleshooting the application errors, troubleshooting non-responding forwarders/servers and documenting.
• Training team mates and providing cross Knowledge Transfers.
• Efficiently handled workload and Communicate with development and other teams for successful implementation of software and release activities.
• Implementing Deployment server for controlling, patching and installing updates on slave nodes.
• Push Asset Summary Reporting (ASR) content from Splunkto RSA Archer based dashboard
• Created Dashboards to monitor the response times, warnings, errors and traffic volumes across various data centers, applications and servers.
• Standardized Splunkforwarder deployment, configuration and maintenance in Linux and windows platforms.
• Utilize Splunkand the Enterprise Securityapp to analyze incoming Securityevents such as SQL injections, Brute Force, excessive DNS failures, etc.
• Configured Splunkforwarder to send unnecessary log events to "Null Queue" using props and transforms configurations to reduce license costs.
• Additional responsibilities include Knowledge management, Providing KTs, Documentation and Communications on future upgrades.
• Experienced in attending the bridge calls for production issues and non-prod issues and involved application teams or database teams or networking teams to resolve the issues
• Involved in Root cause analysis for the issues encountered. Also provided 24/7 on call support for all the production applications.

Environment: SplunkEnterprise 6.x, SplunkDB Connect, SOAP, Splunkapp for windows, Splunkapp for Linux/Unix, Splunkweb analytics, SOS and other modules, LINUX, IIS, AD, LDAP, Apache 2.x, python, cento.

Confidential

SQL ServerDeveloper/SQL Server DBA

Responsibilities:

• Maintained Database as per the requirement to maintain the customer records using SQL server 2005.
• Created and supported the SQL Server databases as adeveloperhelping administrator.
• Involved in the Data modeling, Physical and Logical Design of Database
• Created tables, indexes, sequences, constraints, triggers and procedures
• Written Stored procedures and triggers to implement business rules
• Involved in integration of the front end with the SQL Server backend
• Used DDL and DML for writing triggers, stored procedures, and data manipulation
• Assisted in production OLAP cubes, wrote queries to produce reports using SQL server2005/2008 Analysis services (SSAS) and Reporting services (SSRS).
• Deployed the SSRS reports in Microsoft office share point portal server MOSS 2007.
• Worked on DTS/SSIS for transferring data from Heterogeneous Database (Access database and xml format data) to SQL Server.
• Created Cubes and used basic MDX to retrieve the result set for Calculations.
• Worked on advanced dimension Design and Cube design.
• Integrating the data by identifying the information needs within and across functional areas of an enterprise database upgrade and Migration with SQL server Export Utility.
• Used DTS/SSIS and T-SQL stored procedures to transfer data from OLTP databases to staging area and finally transfer into data marts and performed action in XML.
• Created Reports in SSRS with Different types of properties like chart controls, filters, Interactive sorting, SQL parameters etc.
• Performance tuning of SQL queries and stored procedures using SQL Profiler and Index Tuning Wizard.
• Wrote stored procedures to get the fields required for the reports.
• Created datasets using stored procedures and reports using multi value parameters.
• Maintained disaster recovery Backup and Re-Indexing was implemented to increase the performance
• Analyzed user profiles and corresponding read, write and DDL and DML access properties were maintained on the database
• Created documentation as required.
• Actively participated and interacted with users, team lead, DBAs and technical manager to fully understand the requirements of the system.
• Extract Transform Load (ETL) development using SQL server 2008, SQL 2008 Integration Services (SSIS).
• Extracted data from many operational systems, including flat files, spread sheets and RDBMSs like SQL Server and Oracle 8i.
• Conducted and automated the ETL operations to Extract data from multiple data sources, transform inconsistent and missing data to consistent and reliable data, and finally load it into the Multi-dimensional data warehouse

Environment: MS SQL Server 2005/2000, T-SQL, DTS, MS-Excel, MS-Office, Oracle8i, SQL Server2007, SQL Server 2005/2000(2003, 64-bit edition of SQL server 2000), DTS, Microsoft Business Intelligence Development Studio, SQL Queries, Stored Procedures, Office, Excel, SSRS, SSIS, ERWIN.

Confidential

Oracle PL/SQL Developer

Responsibilities:

• Responsible and active in the analysis, design, implementation and deployment of full Software Development Lifecycle (SDLC) of the project.
• Defined the search criteria and pulled out the record of the customer from the database. Make the required changes and save the updated record back to the database.
• Developed Struts action classes, action forms and performed action mapping using Struts framework and performed data validation in form of beans and action classes.
• Hands on Stored Procedures, Functions, Packages and SQL Scripts using PL/Sql.
• Loaded the data into database tables using SQL*loader from text and excel file.
• Developed data model, SQL Queries, SQL Query tuning process and Schemas.
• Worked with bulk collect to implement the performance of multi row queries.
• Data loaded from legacy systems using PL/SQL and SQL*Loader.
• Created Shell scripts to automate execution of SQL scripts to check incoming data with master tables, insert the valid data into Customer Management System and invalid data into error tables, which will be sent back to sender notifying the errors.
• Involved in logical modeling and physical modeling of application.
• Wrote various kinds of SQL queries involving correlated Sub queries, UNION, Inner and Outer Joins.
• Developed Procedures for efficient error handling process by capturing errors into user managed tables.
• Generated various analytical reports using Microsoft Access
• Worked with java developers to repair and enhance current base of PL/SQL packages to fix production issues and build new functionality and improve processing time through code optimizations and indexes.
• Created partitioned tables, partitioned indexes for manageability and scalability.
• Used Toad for creating PL/SQL (trigger, sequence, stored procedure).

Environment: Oracle 10g/9i, SQL, PL/SQL, SQL Loader, MS Access, UNIX Shell script, TOAD, Oracle Forms 10g, Reports10g, UNIX, Windows XP/2000.