Splunk Platform Administration (Enterprise / Cloud)

Description

Job Summary: We are seeking a Splunk Platform Administrator (Enterprise / Cloud) with experience in architecture, operations, and optimization to join a leading team. Key Highlights: 1. Join as a systems hero by administering and architecting Splunk. 2. Be part of a leading company and take your skills to the next level. 3. Collaborate in designing and maintaining distributed Splunk architectures. DESCRIPTION Join our team as a **Splunk Platform Administrator (Enterprise / Cloud)** and become the hero our systems need! ‍‍ If you have 4 years of experience in Splunk administration and architecture, monitoring platform performance, and performing performance tuning, troubleshooting, and capacity planning for SHC, this is your opportunity! **What do you need to join this adventure?** * **Professional background:** Systems Engineering, Telecommunications, or related fields. **Desirable** * Splunk certifications (Power User, Admin, Architect) are highly valued. * Linux administration certification. **Experience:** * 4 years of experience in Splunk platform (Enterprise and/or Cloud) administration, implementation, operations, optimization, and support. * Strong proficiency in SPL (Search Processing Language). * Designing and maintaining distributed architectures (Clustered Indexers, SHC). * Performance troubleshooting and capacity planning. * Configuring, optimizing, and monitoring data ingestion (logs, metrics, events). * Administering Splunk ES as a SIEM. * Configuring Universal Forwarders and Heavy Forwarders. **In-Depth Knowledge:** CI/CD and automation (Ansible, Terraform), integration with tools such as ServiceNow, AWS, Azure, or GCP, and automating deployments/configurations. If you’re ready to take your skills to the next level and join a leading company, don’t wait any longer — we want to meet you! REQUIREMENTS **Academic Qualifications** * Systems Engineering, Computer Science, Telecommunications, or related field. * Splunk certifications (Power User, Admin, Architect) are highly valued. * Linux administration certification (desirable). **Mandatory** * 3+ years of experience administering Splunk Enterprise and/or Splunk Cloud. * Experience with distributed architecture (Clustered Indexers, SHC). * Solid knowledge of SPL (Search Processing Language). * Experience configuring Universal Forwarders and Heavy Forwarders. * Linux environment administration experience. * Knowledge of certificate management and SSL configuration. * Experience in performance troubleshooting and capacity planning. **Desirable** * Experience with Splunk ES (Enterprise Security). * Integration with tools such as ServiceNow, AWS, Azure, or GCP. * Knowledge of CI/CD and automation (Ansible, Terraform). * Container experience (Docker, Kubernetes). **Key Competencies** * Analytical thinking and problem-solving orientation. * Ability to document and standardize processes. * Clear communication with both technical and non-technical teams. * Proactivity and continuous improvement. * Collaborative work ethic. **Performance Indicators (KPIs)** * Platform availability (>99.9%). * SLA compliance for incidents. * License usage optimization. * Reduction in search and load times. * Compliance with retention and security policies.