SUMMARY:

• Proficient Software Engineer 7+ years of Total IT experience out of which 3 - 4 years in configuring, implementing and supporting Splunk Server Infrastructure across Windows, UNIX and Linux.
• Professional experience in Data visualization, Analytics, Data management, Data Integration, Implementation and Maintenance of Business Intelligence and the related database platforms.
• Strong experience in Splunk dashboard creation, app development, validation etc. Also aware of various quality concepts like SCM.
• Good hands on experience on creating apps for server health and monitoring client based servers.
• Certified splunk administrator V-6
• Certified Power User(Dev) in Splunk Enterprise V-6
• Have experience in configuring Indexers, Forwarders (Universal and Heavy), Search Heads, Deployment/Management servers, Deployment clients.
• Experienced in data migration for large scale deployments.
• Expertise in Installation, Configuration, and Migration, Trouble-Shooting and Maintenance of Splunk.
• Good knowledge on objects such as Event Types, Tags, Field Extraction (Using Regular Expression), Lookups etc.
• Experience on execute the reports & dashboards in Splunk and ITSI.
• Experience with Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-On's, Dashboards, Clustering and Forwarder Management, Visualizations, alerts, reports.
• Analyzed and monitored incident management and incident resolution problems.
• Knowledge of security threats and vulnerabilities and how to detect and mitigate them.
• Experience building security monitoring and incident management solutions using Splunk.
• Provide regular support guidance to Splunk project teams on complex solution and issue resolution.
• Good Understanding of configuration files, precedence and daily work exposure to Props.conf, transforms.conf, inputs.conf, outputs.conf and Setting up a forwarder information based on the requirement.
• Index Time Extraction and Search Time Extraction of Fields, Parsing the Data in Forwarders.
• Created and Managed Splunk DB connect Identities, Database Connections, Database Inputs, Outputs, lookups, access controls.
• Creating Applications on Splunk to analyze the Big Data.
• Experience in managing application using App Dynamics and Splunk.
• Working knowledge with scripting languages, application development, databases, and analytical tools.
• Analyzing security logs to identify security events to implement alerts to monitor & respond by the 24x7 Security Operations Center (SOC).
• Experience with Splunk ES: Enterprise Security.
• Good knowledge of how to handle null data and its impact on statistical analysis.
• Production error monitoring and root cause analysis using Splunk.
• Expertise in using Splunk with shell script in creating scripts for various activities like Generating Server Status and Healthy reports, Deployment on large scale configuration of servers.
• 2+ years of experience on using python scripting.
• Expertise in Splunk UI experience, able to write searches, debug search queries and have experience in scripting languages like java script.
• Experience with SIEM (Security Information and Event Management) systems, security breaches and security event correlation.
• Knowledge of AWS, creating EC2 instances, S3 buckets on AWS to store Cloud Formation Templates.
• Hands on experience in edit the existing Bash / Perl scripts to simplify server tasks and functionality.­­­­­­
• Self-motivated and self-educating, yet willing and able to work collaboratively with both customers and fellow Splunkers.
• Team player with excellent communication, presentation and interpersonal skills.
• Excellent written and oral communication skills, including conducting presentations to teams and to customers.

TECHNICAL SKILLS:

Relational Databases: SQL Server/2008R 2/2008/2005. , Oracle9i/10g, Hadoop.

Tools: and Packages: Splunk 5.x and Splunk 6.x, Confidential, CAPM, Linux, JBOSS 5x & 6x,Apache2.0,Solaris,SQL Server Management studio, SSIS, SSRS, Microsoft Visual Source Safe, SQL Query Editor, Performance Point Server 2007

Languages: T-SQL, SPL,SQL, C, python,unix shell scripting,DNS,DHCP

Operating Systems: Windows 2010/2008/2007/2003/ Windows Vista, Windows XP

Web Technologies: HTML, CSS

Application Packages: MS Office, MS Outlook (Microsoft Office Suite)

PROFESSIONAL EXPERIENCE:

Confidential

Splunk Engineer

Responsibilities:

• Advanced dashboard development using Splunk XML and the web framework.
• Experience in developing Splunk queries and dashboards targeted towards an information security, IT ope.
• Maintain and implement enterprise monitoring and alerting utilizing Splunk and organizationally defined best practices.
• On-board the log data from different sources and implement the monitor as per team requirement.
• Good experience in communicate with security, network, build team to gather the requirement.
• Assist in creation and maintenance of Splunk knowledge objects for use throughout the organization.
• Manage security of users and roles including assisting users in the on-boarding process.
• Have good Experience with Splunk App development / Customizations.
• Experience scripting with the Splunk REST API and regular expressions.
• Hands on experience integrating external applications with Splunk using Python.
• Create and maintain documentation related to architecture and operational processes for Splunk.
• Expert in Install, configure & administer Splunk Enterprise Server and Splunk Universal Forwarder, Splunk Heavy Forwarder in large distributed environment.
• Good Experience in creating the Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
• Monitoring the server and collaborate with the teams to resolve the issues.
• Extensive experience architecting/developing/deploying/configuration of customized technical add-ons.
• Good knowledge Python scripting/Regex experience.
• Perform Splunk administration tasks such as installing, configuring, monitoring and tuning.
• Generate or enhance Splunk Dashboards, Reports, and Alerts.
• 1+ years dealing with infrastructure automation tools like: Chef, Puppet, Ansible, etc.
• Familiarity with automated host provisioning tools such as Terraform, Chef.
• Hands on experience integrating external applications with Splunk using Python.
• Installation, maintenance and upgrade of Splunk universal/heavy forwarders and deployment servers in large distributed environments.
• 2 years experience writing scripts in python.
• Have Fundamental knowledge of TCP/IP networking, subnetting and routing concepts, and distributed computing concepts.
• Integrating Splunk with a wide variety of legacy data sources that use various protocols.
• Will be working for the Application Performance Monitoring Tools Team on various projects.
• Monitor and maintain Splunk performance, availability, and capacity.
• Develop reliable, efficient queries that will feed custom alerts and dashboards.
• Track work effectively via tickets and enhancements.
• Create and maintain documentation related to architecture and operational processes for Splunk
• Engage application and infrastructure teams to establish best practices for utilizing Splunk data and visualizations
• Experience with Atlassian Confluence and JIRA.
• Good Experience with version control (git).

Environment: Splunk Enterprise 6.x, Splunk DB Connect, Splunk app for windows, Splunk app for Linux/Unix, Splunk web analytics, SOS and other modules, Git, Solaris 10, LINUX, IIS, AD,LDAP, Apache 2.x, python, centos.

Confidential, NC

Splunk Engineer

Responsibilities:

• Administering Splunk and Splunk Apps to include developing new or extending existing Apps to perform specialized functionality.
• Hands on experience in development experience in customizing Splunk dashboards, visualizations, configurations, reports and search capabilities using customized Splunk queries.
• Expert in Install, configure & administer Splunk Enterprise Server and Splunk Universal Forwarder, Splunk Heavy Forwarder in large distributed environment.
• Integrating Splunk with a wide variety of legacy data sources.
• Search Head Clustering, Deploying Configuration Bundles through Deployer.
• Good Experience in creating the Splunk app for Enterprise Security to identify and address emerging security threats through the use of continuous monitoring, alerting and analytics.
• Working closely with Infrastructure, Application, Development and Business or project teams on Splunk.
• Design and maintained production-quality dashboard.
• Installing and Configuring Indexer, Search Head, License Server as well as Deployment Server on Cloud (Amazon AWS).
• Experience with Splunk Architecture and extensive experience in Python
• Specific to Splunk search, dashboards, reports and alerts, these key responsibilities include: Develops new use cases/metrics, dashboards, reports, alerts apps/add-ons that will support security requirements and log management for the enterprise
• Continually validate searches, dashboards, reports and alerts, via utilities such as Search Activity (SA) app.
• Good hands on experience on Splunk KV store.
• To extend the lookup functionality using KV Store Collection.
• Integrated Service Now with Splunk to generate automatic triggered alerts.
• Creating and maintaining engagement process and documentation related to architecture, operational processes and material for Splunk.
• Identify issues, collaborate with customers on solutions and provide follow-up on the implementation
• Experience in SOAP, REST API, web-based technologies and scripting languages including JavaScript and Python, XML, HTML.
• Knowledge of TCP/IP and networking fundamentals, MQ, SFTP, SSL.
• Knowledge on architecting/operating solutions built on AWS.
• Experience with Integration testing and Stress testing processes.
• Familiar with SCRUM and Agile methodologies.

Environment: Environment: Splunk Enterprise 6.x, Splunk DB Connect, Splunk app for windows, Splunk app for Linux/Unix, Splunk web analytics, SOS and other modules, Git, Solaris 10, LINUX, IIS, AD,LDAP, Apache 2.x, python, centos.

Confidential, NC

Splunk Engineer

Responsibilities:

• Implementation of the Splunk solution as per the design agreed.
• Ability to work analytically to solve both tactical and strategic problems.
• Strong experience implementing and supporting Splunk technologies.
• Built the new Indexers and Search heads in Cluster environment on Red Hat Linux platform.
• Experience on splunk monitoring tools with ability to create dashboards and configure alerting.
• Good experience in creating Reports and Dashboards in Splunk 6.
• Experience with administration of Splunk Search Heads, Indexers, and Forwarders.
• Ability to develop complex Splunk dashboards and visualizations using queries and simple XML.
• Splunk Dashboard development and infrastructure monitoring experience.
• Splunk dashboard development using custom CSS and JavaScript
• Worked on connecting to oracle database and fetch the data with Perl/Python.
• Wrote Python scripts to parse XML documents and load the data in database.
• Experience with Splunk ES: Enterprise Security.
• All security devices to be integrated with ES app.
• Splunk Enterprise security event monitoring, log index and correlation planning.
• Splunk Universal Forwarder configuration and Splunk dashboard management.
• Strong working experience on Splunk UI and able to debug expensive search queries.
• Strong experience with Splunk apps such as: Splunk App for Security and Compliance, PCI.
• Strong experience with logging tools such as syslog-ng, Rsyslog, LogLogic.
• Worked on get a centralized view of your complete Hadoop environment.
• Experience providing security operations support by troubleshooting incident tickets related to security.
• Providing on-call support for monitoring tools.
• Provide peer code reviews, perform Git merges and repository maintenance.
• Configured Splunk forwarder to send unnecessary log events to null values using props and transforms configurations to reduce data storage.
• Identify, develop, and implement mechanisms to detect security incidents in order to enhance compliance with and support of security standards and procedures in place.
• Work with Incident Response team to discovered security incidents by informing appropriate custodians, determining root cause, and actions (if necessary) required to re-establish respective information system security.
• Understand compliance requirements that may impact security and work with business areas and project teams to develop security solutions that address these requirements.
• Performed troubleshooting, fixed and deployed many Python bug fixes of the two main applications that were a main source of data for both customers and internal customer service team.

Environment: Environment: Splunk Enterprise 6.x, Splunk DB Connect, Splunk app for windows, Splunk app for Linux/Unix, Splunk web analytics, SOS and other modules, Git, Solaris 10, LINUX, IIS, AD,LDAP, Apache 2.x, python, centos.

Confidential

Log Analyst and SQL Developer

Responsibilities:

• Create rules, defaults, tables, views, clustered & non-clustered index, user defined data types, and user defined functions.
• Actively designed the database to fasten certain daily jobs, stored procedures.
• Optimize query performance by creating indexes.
• Write T-SQL statements for retrieval of data and Involved in performance tuning of T-SQL
• Involved in merging existing databases and designed new data models to meet the requirements.
• Create joins and sub-queries for complex queries involving multiple tables.
• Use DDL and DML for writing triggers, stored procedures, and data manipulation.
• Created Stored Procedures to transform the Data and worked extensively in T-SQL for various needs of the transformations while loading the data
• Created and developed data dictionary, tables, views, indexes, functions and advanced queries for databases by using Query Analyzer and SQL Server Enterprise Manager
• Interacted with Business Users and Analyzed user requirements and built reporting solutions such as relational database reports OLAP reporting, dashboards, and scorecards.
• Created SSIS packages to pull data from SQL Server and exported to Excel Spreadsheets and designed SSIS Packages to extract, transfer, load (ETL) existing data into SQL Server 2008 from different environments for the SSAS cubes.
• Created the SSIS /DTS packages and scheduled them using Sql Server agent
• Developed ETL packages with different data sources (SQL Server, Flat Files, Excel source files, XML files etc.) and loaded the data into target tables by performing different kinds of transformations using SQL Server Integration Services (SSIS).
• Designed and developed efficient SSIS packages for processing fact and dimension tables using transformations like Fuzzy lookup, lookup, merge, merge join, script component and Slowly changing dimension .
• Utilized event handling effectively to generate audits and logs for the generated SSIS packages.
• Performed archiving and achieved automated processing of the raw data through the ETL process in SSIS.
• Used Vb.net and C# in Script task of SSIS 2008 Packages
• Performing data transfer/migration using Export/Import and Data Transformation Services.
• Pulled data from various tables and databases to generate reports using different types of joins

Environment: Erwin, SQL Server 2008R(2), MS Server Integration services, SSRS (MS server Reporting Services), MS SSAS, Window 2007 Server, Oracle 9i,Db2

Confidential

SQL Server / SSIS / SSRS / Developer

Responsibilities:

• Developing T-SQL queries, triggers, functions, cursors and stored procedures.
• Responsible for logical and physical design of SQL Server databases.
• Designed and created SQL Databases, tables, indexes, and views based on user requirements.
• Worked with the application developers and provide necessary SQL Scripts using T-SQL.
• Monitored and modified Performance using execution plans and Index tuning.
• Created User Defined Functions, Stored Procedures, and Triggers.
• Involved in Scheduling jobs using MS SQL server Agent.
• Created and managed users, login IDs, security, and add groups to Windows and SQL Server.
• Involved in Performance tuning of existing database objects such as stored procedures and complex stored procedures.
• Prepared documentation related to database design, objects security and rules.
• Created DTS Packages for migration of data between SQL Server and other databases like MS Access, MS Excel and Flat Files.
• Performed daily database backup & restoration and monitor the performance of Database Servers.
• Generate various ad hoc reports using MS Reporting services

Environment: SQL Server 2000/2005, Query Analyzer, Enterprise Manager, DTS, SSIS, SSRS, T-SQLWindows XP