Uploaded File
Sangamesh
Splunk Admin/Developer
6 years experience W2 Vernon Hills, IL
Actively seeking
Sangamesh
Splunk Admin/Developer
22
views
0
Recommendations
Average rating
22
Profile views
Splunk Apache Apache Tomcat Cyber Security DB2 Connect Linux Oracle Python BEA WebLogic Information Security
Remove Note
View Note
Recent Experience
Splunk Admin/Developer 05/19 - present
Apache Apache Tomcat BEA WebLogic Compliance Cyber Security DB2 Connect Enterprise Security Linux Oracle Project Management Python Social Engineering Solaris Splunk Splunk DB Connect Information Security
Splunk Admin/Developer 04/18 - 04/19
Apache Apache Tomcat BEA WebLogic Cyber Security DB2 Connect Linux Oracle Project Management Python Social Engineering Solaris Splunk Splunk DB Connect Information Security
Splunk Admin/Developer 01/17 - 03/18
Apache Apache Tomcat Cyber Security D3.js DB2 Connect Introscope J2EE Java Servlet JBOSS JDBC JSP Linux MySQL Oracle Python RedHat Splunk Splunk Forwarders Splunk ITOA Splunk ITSI UNIX XML SAML Scripting Windows
Summary

Profile Summary

  • Over all 5 + years of experience and certified in Architecting and deploying various components within Splunk (indexer, forwarder, search head, deployment server) and security delivering innovative solutions to fix around and automation.
  • Experience in configuring, implementing, analyzing and supporting Splunk server infrastructure across Windows, UNIX and Linux. Experience with a variety of Operating Systems, Protocols and Tools depending on the type of platform or application to be administered.
  • Upgrade and Optimize Splunk setup with new discharges.
  • Extensive experience in deploying, configuring and administering Splunk clusters.
  • Expertise in Actuate reporting, development, deployment, management and performance tuning of Actuate reports
  • Created Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
  • Helping application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.
  • Experience working on Splunk 5.x,6.x, Splunk Enterprise Security 4.1, Splunk DBConnect1.x,2.x on distributed Splunk Environments and Clustered Splunk Environments on Linux and Windows operating systems.
  • Setup Splunk Forwarders for new application levels brought into environment.
  • Develop custom app configurations (deployment-apps) within SPLUNK in order to parse, index multiple types of log format across all application environments.
  • System Administration familiar with Windows Servers, Red Hat Linux Enterprise Servers.
  • Good Understanding of configuration files, precedence and daily work exposure to Props.conf, transforms.conf, inputs.conf, outputs.conf and Setting up a forwarder information based on requirement.
  • Build and configured a virtual data center in AWS cloud to support enterprise data warehouse hosting including VPC, public and private subnets, security groups, route tables
  • Experience in Optimized search queries using summary indexing.
  • Experience in Designing and implementing Trend Micro
  • Analyzed AWS configuration logs, AWS Cloud watch flow logs.
  • Enabling the Radius Authentication to administer the SSL VPN Box
  • Well experienced in migrating data to AWS cloud.
  • Excellent skills on troubleshooting and problem determination of HTTP/System/ Network related problems including monitoring, capacity planning and maintenance by providing 24X7 support on call for all mission critical applications. Strong background in a disciplined software development life cycle (SDLC).
  • Excellent analytical and interpersonal skills and ability to learn new concepts and supported 24/7 on call in production and development environment.
  • Understanding of Network Firewalls, Load-balancers, LDAP and complex network design.
  • Experienced with security-related technologies including Active Directory, host-based firewalls, host-based intrusion detection systems, application white listing, server configuration controls, logging, SIEM, monitoring tools, and antivirus systems.
  • Worked with members of the Security Operations Center to provide guidance and assist with remediation plans for incidents and discovered vulnerabilities.
  • Have experience working in different environments and with the process flows in AGILE as well as Waterfall methodologies.
  • Used Machine learning to solve major logs, events and metric issues in ITSI application in Splunk environment.
  • Excellent Communication Skills and Presentation Skills, Comprehensive problem solving abilities.
  • Interpreted and developed SIEM products to meet the internal and external and customer requirements. Experience in working on Enterprise Security log management and SIEM solutions.
  • Created dynamic thresholds and where able to identify root cause of the issue using ITSI application.
  • Worked on Security solutions SIEM that enable organizations to detect, respond and prevent these threats by providing valuable context and visual insights to help you make faster and smarter security decisions.
  • Expertise with SIEM (security information and event management). Manage Splunk user accounts (create, delete, modify, etc.) Scripted SQL Queries in accordance with the Splunk.
  • Maintain current functional and technical knowledge of the Splunk platform and future products.

SKILLS

  • Log Analysis Tool Splunk Enterprise Server 5.x/6.x/7.x, Splunk Universal Forwarder 5.x/6.x, Splunk DB Connect
  • Web/App Servers Web Sphere Application Server 5.0/6.x/7.x/8.x, Web Sphere MQ Sever 6.x/7.x, WebSphere XD 6.0/6.1, IBM Http Server 6.x/7.x/8.x, Apache Web Server 2.x, Tomcat 5.5, IIS 6/7.x
  • Operating Systems IBM AIX (5.1/6.1), RHL Linux, Windows Server 2003/2008 R2, VMWare
  • Programming Java, J2EE, C++, C, SQL/PL SQL, HTML, DHTML, XML.
  • Scripting JACL, Python, WSCP, WSADMIN, Korn Shell Script, Perl, JavaScript, CSS, Batch
  • Networking TCP/IP Protocols, Socket Programming, DNS.
  • Frame work MVC, J2EE Design Patterns, Struts.
  • IDE Eclipse, RAD 7, Net Beans, Edit plus, TOAD
  • Others Site Minder r6/r12/r12.5,Ping Federate 6.X,7.X

Top 5 Skills
SkillsProficiencyLast Used
Splunk
2020
Apache
2020
Apache Tomcat
2020
Cyber Security
2020
DB2 Connect
2020
Education and Certifications
Master's in Management Information Systems
South University Tampa
Splunk Certified User- Cert # 251308,
Splunk Certified Power User - Cert # 254527,
Preferences
Availability:Immediately
Willing to relocate?:Yes
Relocation preference
Any location
Prepared to Travel:No travel (0%)
Employment Type:Any
Security Clearance:No clearance
Citizenship:U.S. Citizen