• Over all 5 + years of experience and certified in Architecting and deploying various components within Splunk (indexer, forwarder, search head, deployment server) and security delivering innovative solutions to fix around and automation.
• Experience in configuring, implementing, analyzing and supporting Splunk server infrastructure across Windows, UNIX and Linux. Experience with a variety of Operating Systems, Protocols and Tools depending on the type of platform or application to be administered.
• Upgrade and Optimize Splunk setup with new discharges.
• Extensive experience in deploying, configuring and administering Splunk clusters.
• Expertise in Actuate reporting, development, deployment, management and performance tuning of Actuate reports
• Created Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
• Helping application teams in on-boarding Splunk and creating dashboards, alerts, reports etc.
• Experience working on Splunk 5.x,6.x, Splunk Enterprise Security 4.1, Splunk DBConnect1.x,2.x on distributed Splunk Environments and Clustered Splunk Environments on Linux and Windows operating systems.
• Setup Splunk Forwarders for new application levels brought into environment.
• Develop custom app configurations (deployment-apps) within SPLUNK in order to parse, index multiple types of log format across all application environments.
• System Administration familiar with Windows Servers, Red Hat Linux Enterprise Servers.
• Good Understanding of configuration files, precedence and daily work exposure to Props.conf, transforms.conf, inputs.conf, outputs.conf and Setting up a forwarder information based on requirement.
• Build and configured a virtual data center in AWS cloud to support enterprise data warehouse hosting including VPC, public and private subnets, security groups, route tables
• Experience in Optimized search queries using summary indexing.
• Experience in Designing and implementing Trend Micro
• Analyzed AWS configuration logs, AWS Cloud watch flow logs.
• Enabling the Radius Authentication to administer the SSL VPN Box
• Well experienced in migrating data to AWS cloud.
• Excellent skills on troubleshooting and problem determination of HTTP/System/ Network related problems including monitoring, capacity planning and maintenance by providing 24X7 support on call for all mission critical applications. Strong background in a disciplined software development life cycle (SDLC).
• Excellent analytical and interpersonal skills and ability to learn new concepts and supported 24/7 on call in production and development environment.
• Understanding of Network Firewalls, Load-balancers, LDAP and complex network design.
• Experienced with security-related technologies including Active Directory, host-based firewalls, host-based intrusion detection systems, application white listing, server configuration controls, logging, SIEM, monitoring tools, and antivirus systems.
• Worked with members of the Security Operations Center to provide guidance and assist with remediation plans for incidents and discovered vulnerabilities.
• Have experience working in different environments and with the process flows in AGILE as well as Waterfall methodologies.
• Used Machine learning to solve major logs, events and metric issues in ITSI application in Splunk environment.
• Excellent Communication Skills and Presentation Skills, Comprehensive problem solving abilities.
• Interpreted and developed SIEM products to meet the internal and external and customer requirements. Experience in working on Enterprise Security log management and SIEM solutions.
• Created dynamic thresholds and where able to identify root cause of the issue using ITSI application.
• Worked on Security solutions SIEM that enable organizations to detect, respond and prevent these threats by providing valuable context and visual insights to help you make faster and smarter security decisions.
• Expertise with SIEM (security information and event management). Manage Splunk user accounts (create, delete, modify, etc.) Scripted SQL Queries in accordance with the Splunk.
• Maintain current functional and technical knowledge of the Splunk platform and future products.

SKILLS

• Log Analysis Tool Splunk Enterprise Server 5.x/6.x/7.x, Splunk Universal Forwarder 5.x/6.x, Splunk DB Connect
• Web/App Servers Web Sphere Application Server 5.0/6.x/7.x/8.x, Web Sphere MQ Sever 6.x/7.x, WebSphere XD 6.0/6.1, IBM Http Server 6.x/7.x/8.x, Apache Web Server 2.x, Tomcat 5.5, IIS 6/7.x
• Operating Systems IBM AIX (5.1/6.1), RHL Linux, Windows Server 2003/2008 R2, VMWare
• Programming Java, J2EE, C++, C, SQL/PL SQL, HTML, DHTML, XML.
• Scripting JACL, Python, WSCP, WSADMIN, Korn Shell Script, Perl, JavaScript, CSS, Batch
• Networking TCP/IP Protocols, Socket Programming, DNS.
• Frame work MVC, J2EE Design Patterns, Struts.
• IDE Eclipse, RAD 7, Net Beans, Edit plus, TOAD
• Others Site Minder r6/r12/r12.5,Ping Federate 6.X,7.X