Job Description:
Job Description
Highly motivated, team-oriented, and process-driven Splunk Administrator to join our team.
Ø Working closely with other SOC Analysts, being the main point of contact for escalated and more complex incidents
Ø Detecting incidents and taking action to resolve these, using the tools provided
Ø Utilizing different SIEM tools ( Splunk, and others)
Ø Experience of end-to-end Cyber Security solutions, including design, process creation and development and project management, all in line with industry, vendor
Ø Provide advice and guidance around Cyber Security detection and response solutions, across architecture, organisational and gove
ance teams.Ø Ensuring compliance is being upheld in accordance with different Security frameworks
Ø Resource will be responsible for the design performance, implantation of the Splunk platform, including Splunk cloud.
Ø Experience of building Splunk environments, migrating data (from source to target env’t), manage dual environment and decommission experience.
Ø Resource will Standardize Splunk platform deployment based upon proven best practice methods, to include configuration and maintenance across a variety of UNIX and Windows platforms.
Ø Resource will troubleshoot and support Splunk Platform and associated topologies on multiple operating systems.
Ø Resource will understand and deploy multi-cluster distributed architectures and application deployment processes.
Ø Resource will assist inte
al users of Splunk in designing and maintaining production quality dashboards, reports, visualizations and alerts.Ø Resource will assist and support organizations in deploying Splunk platform across networks.
Ø Resource will provide assessment services to determine data inputs and sources of machine data to be ingested into the Splunk platform.
Ø Resource will monitor the Splunk platform for capacity planning and optimization.
Ø Resource will provide services to tweak and fine tune existing Splunk deployments.
Ø Resource will help design core systems performance metrics and troubleshooting logs expertise for customers.
Ø Multi-site Clustering experience
Ø Deployments of Splunk components- Forwarders, Indexers and Search heads on a multi-cluster environment
Ø Data onboarding using different available options.
Ø Configurations that could be deployed to Universal forwarders, heavy forwarders, indexers and search heads for the data onboarding and use cases.
Ø Managing the deployment servers and recommendations for different environments.
Ø About index cluster, search head cluster deployments.
Ø Building and troubleshooting the dashboards and its functions etc…
Ø About data parsing on forwarder level and search head leve
Purview is a leading Digital Cloud & Data Engineering company headquartered in Edinburgh, United Kingdom having a presence in 14 countries India (Hyderabad, Bangalore, Chennai and Pune), Poland, Germany, Finland, Netherlands, Ireland, USA, UAE, Oman, Singapore, Hong Kong, Malaysia and Australia.
We have a strong presence in UK, Europe and APEC, providing services to Captive Clients (HSBC, NatWest, Northern Trust, IDFC First Bank, Nordia Bank etc) in fully managed solutions and co-managed capacity models. Also, we support various top IT tier 1 organisations (Capgemini, Deloitte, Wipro, Virtusa, L&T, CoForge, TechM and more) to deliver solutions and workforce/resources.
Company Info:
3rd Floor, Sonthalia Mind Space
Near Westin Hotel, Gafoor Nagar
Hitechcity, Hyderabad
Phone: +91 40 48549120 / +91 8790177967
Gyleview House, 3 Redheughs Rigg,
South Gyle, Edinburgh, EH12 9DQ.
Phone: +44 7590230910