Splunk Engineer

7 days ago

Singapore Unison Consulting Pte Ltd Full time

The proposed Splunk Engineer shall have the following qualifications:

  • At least 3 years experience working on Splunk system
  • Possess Splunk Enterprise Certified Admin certifications or equivalent.

Working arrangement:

  1. Ability to work independently and ensure the smooth operation of the System. Official working hours: 8:30 am to 6:00 pm (Monday to Thursday), 8:30 am to 5:30 pm (Friday), and based on-site.

The Splunk Engineer shall perform critical high-risk work during maintenance windows specified by the Client, which may be outside regular office hours or during weekends.

The Splunk Engineer shall be responsible for all corrective and preventive maintenance of the Splunk systems across all environments.

The Splunk Engineer shall remediate vulnerabilities or penetration test findings related to the Splunk systems.

The Splunk Engineer can raise support tickets with the Splunk principal for assistance and inquiries.

System Operations

  1. Perform checks and troubleshooting as necessary to ensure the Client's Splunk services are operational across all environments.
  2. Maintain and monitor Splunk infrastructure components such as Search Heads, Indexers, Forwarders, Deployment Server, Cluster Master, etc.
  3. Ensure system uptime and health through monitoring, tuning, and log analysis.
  4. Manage indexing performance and storage, including data retention, index lifecycle, and bucket management.
  5. Generate and review reports to verify system and agent functionality.
  6. Check and troubleshoot the functionality of Splunk forwarders (agents) and their ability to send logs to Splunk systems.
  7. Verify and troubleshoot log ingestion from sources like CloudWatch or syslog servers.
  8. Integrate Splunk with Client systems for real-time monitoring and alerts for infrastructure issues.
  9. Fine-tune Splunk rules based on Client requests.
  10. Develop or validate custom parsers as needed.
  11. Collaborate with the Client's SOC to support threat detection, auditing, and incident response.
  12. Regularly change passwords for privileged and service accounts on Splunk systems.
  13. Ensure Splunk system functionality during Client's BCP and DR exercises.

Problem Resolution

  1. Investigate and assist in troubleshooting issues.
  2. Implement temporary fixes or workarounds for system defects until permanent solutions are available.
  3. Prepare incident reports with root cause analysis and resolutions.
  4. Track and report issues, support cases, and incident resolutions weekly.

System Monitoring

  1. Monitor security advisories, updates, notifications, and maintenance expiry dates for all software used in the System, and assess impacts.
  2. Advise the Client on necessary actions and provide relevant documentation.
  3. Evaluate and implement fixes for vulnerabilities or software incompatibilities.
  4. Remediate findings from periodic vulnerability and compliance scans.
  5. Track and inform the Client about DLP End of Life (EOL) and End of Support (EOS) statuses and support plans.

System Changes

  1. Deploy and test system changes in non-production environments.
  2. Ensure system functionality and performance are maintained.
  3. Implement approved changes into the Production environment.
  4. Develop additional use cases, reports, and tuning to improve accuracy.

Documentation

  1. Create or update system documentation, including standards, procedures, manuals, workflows, and processes.
  2. Update documentation when system or process changes occur.
#J-18808-Ljbffr

  • Splunk Engineer

    2 weeks ago

    Singapore POSITKA FSI PTE. LTD. Full time

    **Splunk Engineer** **Background** Positka is a Singapore based boutique consulting firm with blue chip multinational clients. Positka provides a broad range of outcome-based offerings across cybersecurity and IT operations. Positka is among the top rated Splunk Professional Services partner in APAC. We engage with customers with terabytes of Splunk...

  • Manager, Sales Engineering

    4 days ago

    Singapore Splunk Full time

    **Manager, Sales Engineering**: Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most...

  • Senior Technical Success Engineer

    6 days ago

    Singapore Splunk Full time

    Splunk is here to build a safer and more resilient digital world. The world's leading enterprises use our unified security and observability platform to keep their digital systems secure and reliable. While customers love our technology, it's our people that make Splunk stand out as an amazing career destination and why we've won so many awards as a best...

  • Manager, Solutions Engineering

    2 weeks ago

    Singapore Splunk Full time

    Join us as we pursue our disruptive new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s...

  • Apac Gss Security Solutions Engineer

    18 hours ago

    Singapore Splunk Full time

    Join our innovative mission at Splunk to make machine data accessible, usable, and valuable to everyone. We're not just a company, we're a community of passionate individuals dedicated to our product, delivering unparalleled experiences for our customers. At Splunk, commitment to our work, customers, fun, and, most importantly, to each other's success is...

  • Sr. Partner Solutions Engineer

    7 days ago

    Singapore Splunk Full time

    Join us as we pursue our disruptive new vision to make data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly, to each other’s success. Learn more...

  • Senior Partner Sales Engineer

    1 week ago

    Singapore Splunk Full time

    Join us as we pursue our disruptive new vision to make data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly, to each other’s success. Learn more...

  • Senior Solutions Engineer

    2 weeks ago

    Singapore Splunk Full time

    Join us as we pursue our exciting new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn...

  • Senior Solutions Engineer

    2 weeks ago

    Singapore Splunk Full time

    Join us as we pursue our exciting new vision to make machine data accessible, usable and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we’re committed to our work, customers, having fun and most importantly to each other’s success. Learn...

  • Splunk Engineer/Architect

    1 week ago

    Singapore U3 SOLUTIONS PTE. LTD. Full time

    Roles & ResponsibilitiesResponsibilities and Skills RequirementWe are seeking a skilled Splunk Engineer to support a project focused on improving data quality and data completeness in Splunk environment.Skills RequiredMust possess experience in Splunk Cloud Enterprise Security administration and management Experience in Installing, configuring and upgrading...