Let’s get started
By clicking ‘Next’, I agree to the Terms of Service
and Privacy Policy
Jobs / Job page
Splunk Administrator image - Rise Careers
Job details

Splunk Administrator

Ready to Ignite your career and work alongside some of the most innovative and brightest professionals in technology? Join us and unleash your potential working in a dynamic environment enhancing and securing enterprise systems and applications.

You will perform the following:

  • Architecture and Design – you will be responsible for establishing the architecture and design of a scalable Splunk Environment for the operational environment to include but not limited to: distributed Splunk installation across multiple sites, multi-site index clustering, search head peers, and Universal/Heavy Forwarder deployments.
  • Implementation, Operations, and Maintenance – you will be responsible for deploying and maintaining a distributed Splunk installation running on both Microsoft Windows and Linux operating systems; configuration of the Splunk clusters, deployment servers, and Search Head peer configurations; and troubleshooting, resolving incidents/errors, and running diagnostics to identify root cause analysis.
  • Event Log Management – You will be responsible for identifying and implementing new data sources to connect to the Splunk environment and implementing index-time and search-time data processing, scripted inputs, database connections, and Syslog data management.
  • Custom Splunk Application Development – you will be responsible for the development of Splunk applications that provide: Base and post-process searches, alerts, dashboards with custom JavaScript visualizations, custom views and configurations, and reports
  • Security and Compliance – you will be responsible for managing SSL certificates for all Splunk traffic, including creation, management, and renewal
  • Reporting – you will be responsible for submitting monthly status reports that identify work that has been accomplished, planned work and activities, and any issues/risk that is blocking progress.
  • US citizenship and either an active Public Trust clearance or ability to obtain a High Public Trust (T4 BI) level.
  • Two+ years hands on experience architecting, configuring, deploying, and customizing an enterprise Splunk environment.
  • Splunk certified Administrator
  • Splunk certified Power User
  • Experience leading the design and architecture of a scalable Splunk environment to support the operational and security needs of a federated environment.
  • Experience implementing and maintaining a distributed Splunk installation to include multi-site index clustering, multiple Search head peers, universal and heavy forwarder deployment, cluster master configuration, deployment server management in both Microsoft Windows and a Linux environment.
  • Expertise in event log management and collection including Adding new data sources, complex data parsing using regular expressions, index-time and search-time data processing, scripted inputs, database connections, and syslog data management.
  • Experience creating custom Splunk apps to include Base and post process searches, alerts, dashboards with custom JavaScript visualizations, custom views and configurations, and reports.
  • Experience designing and implementing knowledge object and access control standards across an entire distributed Splunk environment.
  • Experience running Splunk diagnostics and resolving errors in any part of the Splunk stack.
  • Troubleshooting using btool.
  • SSL Certificate creation, management, and renewal for all Splunk traffic.
  • Advanced use of Splunk search language.
  • Experience planning, implementing, and configuring Splunk premium apps including Splunk Enterprise Security (ES), Splunk app for Exchange, Splunk User Behavior Analytics.
  • Experience correlating multiple data sources to improve visibility, incident response, and understanding of complex events within the environment.
  • Experience migrating existing operational processes into Splunk to achieve automation and higher efficiency.
  • Experience writing Splunk Standard Operating Procedures (SOP).
  • Experience with computer programming languages such as Powershell, Python, Visual Basic, C++, etc.

  • 401(k) with matching and 100% Vested
  • Health Insurance - 3 plans to select from
  • Dental insurance
  • Vision Insurance
  • Health savings account
  • Life insurance
  • Short Term Disability
  • Long Term Disability
  • AD&D
  • Paid time off
  • Professional development assistance
  • Training
  • Tuition reimbursement
  • Flexible schedule
  • Flexible spending account
  • Referral program
  • Paid Legal Plan
  • and more....

Ignite IT is an Equal Employment Opportunity/Affirmative Action Employer. We evaluate qualified applicants without regard to race, color, religion, sex, national origin, disability, Veteran status, sexual orientation, or other protected characteristic. In accordance with EO 13665 Final Rule, Ignite IT will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.

Applicants selected must be able to possess and maintain a government clearance

US CITIZENSHIP REQUIRED'

What You Should Know About Splunk Administrator, Ignite

Are you ready to take your career to the next level as a Splunk Administrator with Ignite IT? This is your chance to work alongside some of the brightest minds in technology, all while enhancing and securing enterprise systems and applications in a vibrant environment. As a Splunk Administrator, you will play a key role in the architecture and design of a scalable Splunk environment. Your expertise will shine through in the deployment and maintenance of a distributed Splunk installation across both Windows and Linux systems. You'll be identifying new data sources, crafting custom applications, engineering splendid dashboards, and ensuring compliance with security protocols, including managing SSL certificates. Your problem-solving skills will be put to the test as you troubleshoot and resolve issues, running diagnostics and conducting root cause analysis. Additionally, you'll be responsible for submitting comprehensive monthly reports that detail accomplishments and future plans. This position requires US citizenship and a Public Trust clearance. If you have a minimum of two years of hands-on experience with Splunk, along with relevant certifications, you're likely to be a great fit. Get ready to ignite your passion for technology and make a substantial impact as part of Ignite IT's team!

Frequently Asked Questions (FAQs) for Splunk Administrator Role at Ignite
What are the primary responsibilities of a Splunk Administrator at Ignite IT?

At Ignite IT, a Splunk Administrator is responsible for various tasks, including designing and implementing Splunk architecture, managing and maintaining distributed Splunk installations on both Windows and Linux, and developing custom Splunk applications. Additionally, you'll oversee event log management, troubleshoot issues, and ensure security compliance through SSL certificate management.

Join Rise to see the full answer
What qualifications are necessary to become a Splunk Administrator at Ignite IT?

To excel as a Splunk Administrator at Ignite IT, candidates should possess at least two years of relevant experience in architecting and deploying Splunk environments. Moreover, Splunk certifications such as Splunk Certified Administrator and Splunk Certified Power User are essential. Familiarity with event log management, custom application development, and programming languages such as PowerShell or Python will also significantly benefit prospective applicants.

Join Rise to see the full answer
How does Ignite IT support professional development for Splunk Administrators?

Ignite IT is committed to the growth of its employees. As a Splunk Administrator, you would have access to various professional development resources, including training programs and tuition reimbursement initiatives. This investment in your growth helps you stay ahead in the fast-evolving tech landscape.

Join Rise to see the full answer
What tools and languages should a Splunk Administrator be proficient in at Ignite IT?

A Splunk Administrator at Ignite IT should be proficient in the Splunk search language and have experience with creating custom applications. Familiarity with tools and programming languages such as PowerShell, Python, Visual Basic, and C++ is valuable, especially for script development and automation tasks within the Splunk environment.

Join Rise to see the full answer
What is the work-life balance situation for Splunk Administrators at Ignite IT?

Ignite IT values work-life balance, which is reflected in its flexible scheduling policies. Splunk Administrators can enjoy a supportive environment that values both personal and professional commitments, allowing them to thrive in their roles without compromising their well-being.

Join Rise to see the full answer
Common Interview Questions for Splunk Administrator
Can you explain how you would architect a scalable Splunk environment?

To effectively answer this question, outline your approach step-by-step, mentioning key components like distributed installations, multi-site index clustering, and search head peers. Highlight any past experiences where you successfully implemented these elements.

Join Rise to see the full answer
What troubleshooting methods do you use when encountering issues with Splunk?

You should discuss specific tools and techniques, such as using the btool command for configuration checks or performing diagnostics to identify errors in the Splunk stack. Real-world examples of past troubleshooting experiences can be impactful.

Join Rise to see the full answer
What are the best practices for managing SSL certificates in Splunk?

Discuss the importance of regular management, renewal, and security of SSL certificates. Share methods that ensure secure Splunk traffic, as well as experiences managing this aspect of Splunk operations in previous roles.

Join Rise to see the full answer
How do you handle the integration of new data sources into Splunk?

Explain the steps you take to assess and integrate new data sources, including parsers, scripted inputs, and ensuring proper indexing. Mention any tools or methodologies you leverage for effective data management.

Join Rise to see the full answer
What strategies do you employ for event log management using Splunk?

Share your approach to collecting, parsing, and managing event logs, including using regular expressions and working with multiple data sources. Relating this back to past experiences can strengthen your response.

Join Rise to see the full answer
Describe how you develop custom applications in Splunk.

Elaborate on your experience developing custom apps, focusing on aspects like searches, alerts, dashboards, and how you’ve employed JavaScript visualizations. Providing details about specific projects can be impressive.

Join Rise to see the full answer
How do you ensure compliance with security requirements in your role?

Discuss your experiences with ensuring compliance through stringent control measures, including access management policies and the use of SSL Internet protocols. Offer examples of how you’ve navigated compliance requirements in past roles.

Join Rise to see the full answer
What is your process for submitting status reports in your role as a Splunk Administrator?

Explain your methodology for tracking accomplishments and identifying future work. Discuss how frequent reporting, clear constancy in communication, and addressing any blockers play a role in your routine.

Join Rise to see the full answer
Can you detail a time when you improved operational processes through Splunk?

Use this question to show your ability to innovate. Share a specific scenario where you migrated existing processes into Splunk, detailing the impact on efficiency and operational improvements.

Join Rise to see the full answer
What is your experience with configuring Splunk premium apps?

Discuss particular premium apps you've worked with, outlining your input into planning, implementing, and configuring them effectively. Mention outcomes you achieved or improvements noted from their deployment.

Join Rise to see the full answer
Similar Jobs
I
Ignite Hybrid No location specified
VIEW
Posted 8 days ago
I
Ignite Hybrid No location specified
VIEW
Posted 8 days ago
Photo of the Rise User
Deel Remote LATAM
VIEW
Posted 11 days ago
Inclusive & Diverse
Collaboration over Competition
Fast-Paced
Growth & Learning
Empathetic
Photo of the Rise User
DLH Hybrid Bethesda, Maryland
VIEW
Posted 13 hours ago
V
Velox Marketing Remote No location specified
VIEW
Posted 3 days ago
R
Robbins Recruiting Remote No location specified
VIEW
Posted 8 days ago
Photo of the Rise User
City and County of San Francisco Hybrid 1 S Van Ness Ave, San Francisco, CA 94103, USA
VIEW
Posted 12 days ago
I
Ignite Hybrid No location specified
VIEW
Posted 8 days ago
D
Datex Inc. Remote No location specified
VIEW
Posted 3 days ago
Photo of the Rise User
Keyloop Remote UK (Homeworking)
VIEW
Posted 3 days ago
I By Ignite

16 jobs
MATCH
Calculating your matching score...
FUNDING
DEPARTMENTS
SENIORITY LEVEL REQUIREMENT
TEAM SIZE
No info
LOCATION
No info
EMPLOYMENT TYPE
Full-time, on-site
DATE POSTED
January 12, 2025

Subscribe to Rise newsletter

Risa star 🔮 Hi, I'm Risa! Your AI
Career Copilot
Want to see a list of jobs tailored to
you, just ask me below!
Show me relevant jobs ASK RISA ✨
ABOUT RISE
FOR COMPANIES
REMOTE JOBS & MORE
LOOKING FOR A JOB?
FIND A JOB NEAR ME
POPULAR JOBS
Rise logo
Privacy Policy and Terms of Service
© 2021 Work Rise LLC. All rights reserved.
Proudly made in NYC.
CONNECT
Facebook Instagram LinkedIn Tiktok