Complete remote role for Splunk Administrator for State Client

• 30% – Management of daily Splunk operation systems
• 35% – Linux administration
• 10% – Collaborate and liaise with other units and serve as a technical resource and subject matter expert
• 15% – Contribute to research and development projects as required
• 10% – Train and advise less skilled systems programmers and provide expert technical assistance

Splunk Administration:

• Creation of new indexes
• Updating applications
• Adding new source types
• Adding new servers and logs to Splunk
• Daily verification of license counts
• Ability to create dashboards and teach others
• Use of Splunk management console and applications

Linux Administration:

• Understand and implement application file permissions
• Frequently use version control (Git, Bitbucket)
• Use configuration management tools (SaltStack, Ansible)
• Configure and maintain Linux file systems (NFS)

Technical Resource:

• Assist Windows and Linux admins with installing Splunk UF client
• Verify logs are flowing to Splunk clusters
• Provide client-side log collection support
• Train other admins in advanced log searching techniques
• Perform general Splunk troubleshooting

Splunk Architecture:

• Access to the cluster to identify design deficiencies
• Implement improvements when needed

Splunk Upgrades:

• Universal forwarder upgrades
• Splunk Enterprise version upgrades

REQUIRED SKILLS (RANKED):

• 5+ years of Splunk Administration experience
• 5+ years of Linux Administration experience
• 5+ years of Bash scripting experience

PREFERRED SKILLS:

• Experience working in a VDI environment

REQUIRED EDUCATION:

• Associate’s degree or equivalent work experience

REQUIRED CERTIFICATIONS:

• Splunk Certification