Splunk Admin

Should be Splunk admin certified and Enterprise Splunk architect certification.\nPerforming hands-on architecture, design, and development of systems. Developed Splunk infrastructure and related solutions.\nStandardize and implement Splunk Universal Forwarder deployment, configuration and maintenance in Linux and Windows platforms\nMaintain, Manage and Monitor Splunk Infrastructure (Identify bad searches, dashboards and health of Splunk)\nUsed User Behavior Analytic to parse data into Splunk and detect anomalies in true positive events\nUsed SNMP (Simple network management protocol) to monitor the application on the server\nUsing Splunk Enterprise to perform data mining and analysis, utilizing various queries and reporting methods\nAnalyzing and monitoring security-related technologies including host-based firewalls, host-based using IDS, LDP server configuration controls, logging, SIEM, monitoring tools, antivirus systems.\nActively hunt for and dissect previously unidentified threats and differentiate between potential intrusion attempts and false alarms\nMonitor and detecting security use cases on Splunk e.g. SQL Injection, SQL Map, Burp-suit intruder\nUsing Splunk Phantom Security Orchestration, Automation, and Response (SOAR) system to evaluate notable event for correlation alert\nDevelop alerts and timed reports Develop and manage Splunk applications\nPerformed Splunk knowledge objects e.g.