Description:
We are looking for an experienced Splunk Administrator to manage, configure, and optimize Splunk environments. The role involves handling log integrations, heavy forwarder deployments, and ensuring seamless monitoring across IT and OT systems, with a strong focus on networking (SD-WAN).
Key Responsibilities
- Administer, configure, and maintain Splunk environments to ensure high availability and performance.
- Deploy, configure, and manage Splunk Heavy Log Forwarders, including integration, parsing, and troubleshooting.
- Collaborate with teams to integrate logs from various sources and ensure effective monitoring.
- Manage and optimize data ingestion, parsing, and indexing processes.
- Work with network teams on SD-WAN and related networking integrations.
- Apply basic OT knowledge to integrate and monitor industrial/operational technology environments.
- Ensure system security, compliance, and best practices in Splunk administration.
- Provide technical support and documentation for deployed solutions.
Required Skills & Qualifications
- 3–5 years of hands-on experience in Splunk administration and deployment.
- Strong expertise in Splunk Heavy Forwarder configuration, parsing, and integration.
- Good understanding of networking concepts (SD-WAN, firewalls, routing, switching, etc.).
- Basic knowledge of Operational Technology (OT) environments.
- Strong troubleshooting and problem-solving skills.
- Excellent communication skills with the ability to work independently in a remote setup.
- Must be currently based in the UAE.