SUMMARY

• Proficient Software Engineer 7+ years of Total IT experience out of which 3 - 4 years in configuring, implementing and supporting SplunkServer Infrastructure across Windows, UNIX and Linux.
• Professional experience in Data visualization, Analytics, Data management, Data Integration, Implementation and Maintenance of Business Intelligence and the related database platforms.
• Strong experience in Splunk dashboard creation, app development, validation etc. Also aware of various quality concepts like SCM.
• Good hands on experience on creating apps for server health and monitoring client based servers.
• Certified splunk administrator V-6
• Certified Power User(Dev) in Splunk Enterprise V-6
• Have experience in configuring Indexers, Forwarders (Universal and Heavy), Search Heads, Deployment/Management servers, Deployment clients.
• Experienced in data migration for large scale deployments.
• Expertise in Installation, Configuration, and Migration, Trouble-Shooting and Maintenance of Splunk.
• Good knowledge on objects such as Event Types, Tags, Field Extraction (Using Regular Expression), Lookups etc.
• Exp on execute the reports & dashboards in Splunk and ITSI.
• Experience withSplunkSearching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management, Visualizations, alerts, reports.
• Analyzed and monitored incident management and incident resolution problems.
• Knowledge of security threats and vulnerabilities and how to detect and mitigate them.
• Experience building security monitoring and incident management solutions usingSplunk.
• Provide regular support guidance toSplunk project teams on complex solution and issue resolution.
• Index Time Extraction and Search Time Extraction of Fields, Parsing the Data in Forwarders.
• Created and ManagedSplunkDB connect Identities, Database Connections, Database Inputs, Outputs, lookups, access controls.
• Creating Applications on Splunk to analyze the Big Data.
• Indexing the data with the help of Scripted Input.
• Working knowledge with scripting languages, application development, databases, and analytical tools.
• Analyzing security logs to identify security events to implement alerts to monitor & respond by the 24x7 Security Operations Center (SOC).
• Experience with Splunk ES: Enterprise Security.
• Good knowledge of how to handle null data and its impact on statistical analysis.
• Production error monitoring and root cause analysis usingSplunk.
• Expertise in usingSplunkwith shell script in creating scripts for various activities like Generating Server Status and Healthy reports, Deployment on large scale configuration of servers.
• 2+ years of experience on using python scripting.
• Expertise inSplunkUI experience, able to write searches, debug search queries and have experience in scripting languages like java script.
• Experience withSIEM (Security Information and Event Management) systems, security breaches andsecurityevent correlation.
• Knowledge of AWS, creating EC2 instances, S3 buckets on AWS to store Cloud Formation Templates.
• Knowledge on service now.
• Hands on experience in edit the existing Bash / Perl scripts to simplify server tasks and functionality.
• Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and fellow Splunkers.
• Team player with excellent communication, presentation and interpersonal skills.
• Excellent written and oral communication skills, including conducting presentations to teams and to customers.

TECHNICAL SKILLS

Relational Databases: SQL Server/2008R 2/2008/2005. , Oracle9i/10g, Hadoop.

Tools: and Packages: Splunk 5.x and Splunk 6.x,Linux,JBOSS 5x & 6x,Apache2.0,Solaris,SQL Server Management studio, SSIS, SSRS, Microsoft Visual Source Safe, SQL Query Editor, Performance Point Server 2007

Languages: T-SQL, SPL,SQL, C, python,unix shell scripting,DNS,DHCP

Operating Systems: Windows 2010/2008/2007/2003/ Windows Vista, Windows XP

Web Technologies: HTML, CSS

Application Packages: MS Office, MS Outlook (Microsoft Office Suite)

PROFESSIONAL EXPERIENCE

Confidential, NC

Splunk Engineer

Responsibilities:

• Administering Splunk and Splunk Apps to include developing new or extending existing Apps to perform specialized functionality.
• Hands on experience in development experience in customizing Splunkdashboards, visualizations, configurations, reports and search capabilities using customized Splunkqueries.
• Expert in Install, configure & administer Splunk Enterprise Server and Splunk Universal Forwarder, Splunk Heavy Forwarder in large distributed environment.
• Integrating Splunk with a wide variety of legacy data sources.
• Search Head Clustering, Deploying Configuration Bundles through Deployer.
• Good Experience in creating the Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
• Working closely with Infrastructure, Application, Development and Business or projectteams on Splunk.
• Design and maintained production-quality dashboard.
• Installing and Configuring Indexer, Search Head, License Server as well as Deployment Server on Cloud (Amazon AWS).
• Experience with Splunk Architecture and extensive experience in Python
• Continually validate searches, dashboards, reports and alerts, via utilities such as Search Activity (SA) app.
• Good hands on experience on Splunk KV store.
• To extend the lookup functionality using KV Store Collection.
• Integrated Service Now with Splunk to generate automatic triggered alerts.
• Creating and maintaining engagement process and documentation related to architecture, operational processes and training material for Splunk.
• Identify issues, collaborate with customers on solutions and provide follow-up on the implementation
• Experience in SOAP, REST API, web-based technologies and scripting languages including JavaScript and Python, XML, HTML.
• Knowledge of TCP/IP and networking fundamentals, MQ, SFTP, SSL.
• Knowledge on architecting/operating solutions built on AWS.
• Experience with Integration testing and Stress testing processes.
• Familiar with SCRUM and Agile methodologies.

Confidential, NC

Splunk Engineer

Responsibilities:

• Implementation of the Splunk solution as per the design agreed.
• Ability to work analytically to solve both tactical and strategic problems.
• Strong experience implementing and supporting Splunk technologies.
• Built the new Indexers and Search heads in Cluster environment on Red Hat Linux platform.
• Experience on splunk monitoring tools with ability to create dashboards and configure alerting.
• Good experience in creating Reports and Dashboards in Splunk 6.
• Experience with administration of Splunk Search Heads, Indexers, and Forwarders.
• Ability to develop complex Splunk dashboards and visualizations using queries and simple XML.
• Splunk Dashboard development and infrastructure monitoring experience.
• Splunk dashboard development using custom CSS and JavaScript
• Worked on connecting to oracle database and fetch the data with Perl/Python.
• WrotePythonscripts to parse XML documents and load the data in database.
• Experience with Splunk ES: Enterprise Security.
• All security devices to be integrated with ES app.
• Splunk Enterprise security event monitoring, log index and correlation planning.
• Splunk Universal Forwarder configuration and Splunk dashboard management.
• Strong working experience on Splunk UI and able to debug expensive search queries.
• Strong experience with Splunk apps such as: Splunk App for Security and Compliance, PCI.
• Strong experience with logging tools such as syslog-ng, Rsyslog, LogLogic.
• Worked on get a centralized view of your complete Hadoop environment.
• Experienceproviding security operations support by troubleshooting incident tickets related to security.
• Providing on-call support for monitoring tools.
• Provide peer code reviews, performGitmerges andrepositorymaintenance.
• Configured Splunk forwarder to send unnecessary log events to null values using props and transforms configurations to reduce data storage.
• Identify, develop, and implement mechanisms to detect security incidents in order to enhance compliance with and support of security standards and procedures in place.
• Understand compliance requirements that may impact security and work with business areas and project teams to develop security solutions that address these requirements.
• Performed troubleshooting, fixed and deployed many Pythonbug fixes of the two main applications that were a main source of data for both customers and internal customer service team.

Environment: Environment: Splunk Enterprise 6.x, Splunk DB Connect, Splunk app for windows, Splunk app for Linux/Unix, Splunk web analytics, SOS and other modules, Git, Solaris 10, LINUX, IIS, AD,LDAP, Apache 2.x, python, centos.

Confidential, NJ

Splunk Developer

Responsibilities:

• Experience building security monitoring and incident management solutions usingSplunk.
• Expertise in creating and customizingSplunkapplications, searches and dashboards as desired by IT teams and business.
• Provide Regular support guidance toSplunkproject teams on complex solution and issue resolution.
• Involved in standardizingSplunkforwarder deployment, configuration and maintenance across UNIX and Windows platforms.
• Created many of the proof-of-concept dashboards for IT operations, and service owners which are used to monitor application and server health.
• Experience with data analytics, logging solutions and system/network monitoring.
• Managing indexes and cluster indexes,Splunkweb framework, data model and pivot tables.
• Performed troubleshooting and/or configuration changes to resolveSplunkintegration issues.
• Knowledge aboutSplunkarchitecture and various components (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, License model.
• Expertise in Actuate Reporting, development, deployment, management and performance tuning of Actuate reports.
• Good understanding of software development life-cycle (SDLC) process, Followed Agile scrum and story maps for dev tracking.
• Strong understanding of security principles in order to provide solutions for sensitive data in a shared environment.
• Onboard new log sources with log analysis and parsing to enable SIEM correlation.
• Parsing, Indexing, Searching concepts Hot, Warm, Cold, Frozen bucketing.
• Field Extraction, Using Ifx, Rex Command and Regex in configuration files, Various types of charts Alert settings Knowledge of app creation, user and role access permissions.
• Ability to review network diagrams and device configurations to ensure security standards are in place.
• Creating and managing app, Create user, role, Permissions to knowledge objects.
• Use techniques to optimize searches for better performance, Search time vs Index time field extraction and understanding of configuration files, precedence and working.

Environment: Splunk Enterprise 6.x, Splunk DB Connect, Splunk app for windows, Splunk app for Linux/Unix, and other modules, Oracle 9i/10g, Solaris 10, LINUX, IIS, AD,LDAP, Apache 2.x, python and SVN.

Confidential

MS SQL Server BI/SSRS/SSIS Developer

Responsibilities:

• Create rules, defaults, tables, views, clustered & non-clustered index, user defined data types, and user defined functions.
• Actively designed the database to fasten certain daily jobs, stored procedures.
• Optimize query performance by creating indexes.
• Involved in merging existing databases and designed new data models to meet the requirements.
• Create joins and sub-queries for complex queries involving multiple tables.
• Use DDL and DML for writing triggers, stored procedures, and data manipulation.
• Created Stored Procedures to transform the Data and worked extensively in T-SQL for various needs of the transformations while loading the data
• Created and developed data dictionary, tables, views, indexes, functions and advanced queries for databases by using Query Analyzer and SQL Server Enterprise Manager
• Interacted with Business Users and Analyzed user requirements and built reporting solutions such as relational database reports OLAP reporting, dashboards, and scorecards.
• Created the SSIS /DTS packages and scheduled them using Sql Server agent
• Utilized event handling effectively to generate audits and logs for the generated SSIS packages.
• Performed archiving and achieved automated processing of the raw data through the ETL process in SSIS.
• Used Vb.net and C# in Script task of SSIS 2008 Packages
• Performing data transfer/migration using Export/Import and Data Transformation Services.
• Pulled data from various tables and databases to generate reports using different types of joins

Environment: Erwin, SQL Server 2008R(2), MS Server Integration services, SSRS (MS server Reporting Services), MS SSAS, Window 2007 Server, Oracle 9i,Db2

Confidential

SQL Server / SSIS / SSRS / Developer

Responsibilities:

• Responsible for logical and physical design of SQL Server databases.
• Designed and created SQL Databases, tables, indexes, and views based on user requirements.
• Worked with the application developers and provide necessary SQL Scripts using T-SQL.
• Monitored and modified Performance using execution plans and Index tuning.
• Created User Defined Functions, Stored Procedures, and Triggers.
• Involved in Scheduling jobs using MS SQL server Agent.
• Created and managed users, login IDs, security, and add groups to Windows and SQL Server.
• Involved in Performance tuning of existing database objects such as stored procedures and complex stored procedures.
• Prepared documentation related to database design, objects security and rules.
• Created DTS Packages for migration of data between SQL Server and other databases like MS Access, MS Excel and Flat Files.
• Performed daily database backup & restoration and monitor the performance of Database Servers.
• Generate various ad hoc reports using MS Reporting services

Environment: SQL Server 2000/2005, Query Analyzer, Enterprise Manager, DTS, SSIS, SSRS, T-SQLWindows XP.