Uploaded File
add photo
Jay
jaynag.splunk@gmail.com
312-702-1404
Chicago, IL 60827
7 years experience W2
0
Recommendations
Average rating
14
Profile views
Summary

Experience
Splunk Admin/Developer
Information Technology
Nov 2017 - present

Roles and Responsibilities:

  • Installation and configuration of Splunk product at different environments. Configured Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management. Install and maintain the Splunk adds-on including the DB Connect, Active Directory LDAP for work with directory and SQL database.
  • Create Splunk Search Processing Language (SPL) queries, Reports, Alerts and Dashboards.
  • Creating Reports, Pivots, alerts, advance Splunk search and Visualization in Splunk enterprise.
  • Provided technical services to projects, user requests and data queries. Performed data conversions from flat files to a normalized database structure.
  • Created and maintained Indexes for various fast and efficient reporting processes.
  • Import & Export of data from one server to other servers using tools like Data Transformation Services (DTS) and bulk copy.
  • Periodic monitoring of the system for bottlenecks.
  • Worked with management to update security manuals and address current concerns.
  • Updated security software to prevent database security threats.
  • Implemented system recovery procedures to minimize losses should an attack occur.
  • Reviewed system access data and monitored database access.
  • Updated cyber security protocol and developed effective training procedures.
  • Analyzed database growth, space requirement and User/Login Roles.
  • Managed test data and their updates between development and production databases and migrated stored procedures and database objects.
  • Compared the Logs in networking devices take them in to Splunk for find issues quickly. Participated in Tools tribe meetings and gathered requirements from all SME's and developed dashboards for WIB, Bill pay, Navv app, www app.
  • Worked for getting data in managing Splunk apps. Assisted internal users of Splunk in designing and maintaining production-quality dashboards
  • Knowledge on Parsing, Indexing, Searching concepts Hot, Warm, Cold, Frozen bucketing.
  • Maintained Splunk Environment with multiple indexers managed and configured settings. Created EVAL Functions where necessary to create new field during search run time.
  • Used Ifx, Rex and Regex commands for field extraction.
  • Configured Splunk Searching and Reporting modules, Knowledge Objects, Administration, Regex, Dashboards, Clustering and Forwarder Management Identify pattern and trends that are indicators of routine problems.
  • Implemented forwarder configuration, search heads and indexing. Configured Splunk Searching and Reporting modules, Knowledge Objects, Administration, Regex, Dashboards, Clustering and Forwarder Management. Built dashboards, views, alerts, reports, saved searches using XML Search Processing language (SPL).
  • Analyzed and monitored incident management and incident resolution problems.
  • Involved in transformation of IRS ETI user requirements into Splunk ITSI Use cases. Created ITSI Dashboards/ Glass-Tables Resolved configuration based issues in coordination with infrastructure support teams.
  • Created many Splunk ITSI Log Analytics artifacts describing IEP Services.
  • Maintained and managed assigned systems, Splunk related issues and administrators.
  • Optimized Splunk for peak performance by splitting Splunk indexing and search activities across different machines.
  • Using V6 and V7 architecture level splunkd C++ functions that's streaming of IT data that passes through a pipeline, also provides the Splunk Web user interface.
  • Splunkd process, using pipelines threads configured with XML. using cluster master component, it manages a cluster of indexers that multiple copies of data. pipelines threads configured with XML.
  • Environment: Splunk 6.0.1, ITSI, Linux, UNIX, Oracle 11g, MS SQL Server 2012, SQL, XML, Java Script, MS Excel, MS Power Point. Splunk Admin
Java JavaScript Linux MS Active Directory Oracle Splunk Splunk Enterprise Security SQL SQL Server Stored Procedure UNIX XML Splunk ITSI C++ OPTIM
Remove Skill
Splunk Developer Satyam Computers
Information Technology
May 2015 - Oct 2017
San Antonio, TX

Roles & Responsibilities:

  • Splunk technical implementation, planning, customization, integration with big data and statistical and analytical modeling.
  • Configured Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering, and Forwarder Management.
  • Administer and configure Splunk components like Indexer, Search Head, Heavy forwarder etc. deploy Splunk across the UNIX and Windows environment Optimized Splunk for peak performance by splitting Splunk indexing and search activities across different machines. Performed Splunk administration tasks such as installing, configuring, monitoring, and tuning.
  • Developed Cyber Security Standards on NIST Frameworks and insured their proper implementation to reduce the risk of vulnerability to IT assets.
  • Setup Splunk forwarders for new application tiers introduced into an existing application.
  • Experience in working with Splunk authentication and permissions and having significant experience in supporting large-scale Splunk deployments.
  • Coordinate incident handling with IT and Security staff.
  • Process phone calls and email requests for events.
  • Manage the Security Incident and Event Management (SIEM) infrastructure Analyze network traffic and various log data and open source information to determine the threat against the network required response, containment, investigation, and remediation.
  • Responsible for incident response, tuning, system administration, operations and maintenance of the Security Incident and Event Management (SIEM) system Monitored Security Management Console for Security Operation Centre (SOC) for ensuring confidentiality, Integrity and Availability of Information systems.
  • Perform cyber and physical access control log monitoring to include firewall logs, IPS logs, anti-virus logs, web logs, and SIEM logs.
  • Onboarding of new data into Splunk. Troubleshooting Splunk and optimizing performance. Actively involved in standardizing Splunk Forwarder deployment, configuration, and maintenance across various Operating Systems.
  • Monitored Security Management Console for Security Operation Centre (SOC) for ensuring confidentiality, Integrity and Availability of Information systems.
  • Created Dashboards, Visualizations, Statistical reports, scheduled searches, alerts and worked on creating different other knowledge objects.
  • Analyzed security based events, risks and reporting instances.
  • Prepared, arranged and tested Splunk search strings and operational strings. Involved in interacting with business owners, developers and business analysts in improving the application.
  • Gained in-depth knowledge of Ant build and Web Sphere servers.
  • Involved in handling various Incident and request related to the application. Involved in monitoring the ticketing tool and taking the ownership of the tickets.
  • Worked on various defects analysis and fixed them.
  • Worked closely with business partners in addressing their queries.

Environment: Splunk6.1.3, Oracle 11g, SQL Developer, python scripting, Linux, UNIX, UNIX shell scripting.

Ant Linux Oracle Python Splunk Splunk Forwarders SQL System Administration UNIX IBM WebSphere Shell Scripts Splunk Developer Big Data Cyber Security IPS NIST SIEM SQL Developer Windows Malware Scripting
Remove Skill
Edit Skills
Non-cloudteam Skill
Education
Science
Bharathiar University
Certifications
Splunk Certified Admin Engineer - License#:Cert-256863
Skills
OPTIM
2022
5
C++
2021
4
Splunk ITSI
2021
3
Ant
2017
2
Big Data
2017
2
Cyber Security
2017
2
IBM WebSphere
2017
2
IPS
2017
2
Java
2021
2
JavaScript
2021
2
Linux
2021
2
Malware
2017
2
MS Active Directory
2021
2
NIST
2017
2
Oracle
2021
2
Python
2017
2
Scripting
2017
2
Shell Scripts
2017
2
SIEM
2017
2
Splunk
2021
2
Splunk Developer
2017
2
Splunk Enterprise Security
2021
2
Splunk Forwarders
2017
2
SQL
2021
2
SQL Developer
2017
2
SQL Server
2021
2
Stored Procedure
2021
2
System Administration
2017
2
UNIX
2021
2
Windows
2017
2
XML
2021
2
Perl
0
1
PL/SQL
0
1
SVN
0
1
Triggers
0
1