Around 8-10 years of extensive experience in the Splunk and IT industry
Good understanding of Linux and Windows OS.
Experience Dashboard and alert creation Analysis of log data and to create source types Enhancement of log data Splunk Enterprise Security SIEM.
Splunk Common Information Model (CIM) Splunk Apps and Add-Ons Using Splunk as a SIEM for Security Operations detection and alerting Security Operations
Knowledge about Splunk architecture and various components (indexer, forwarder, search head, deployment server), Heavy and Universal forwarder, License model.
Expertise in Actuate Reporting, development, deployment, management and performance tuning of Actuate reports.
Building complex Splunk queries, configure new data ingestion into Splunk and Manage Splunk infrastructure
Time chart attributes such as span, bins, Tag, Event types, Creating dashboards, reports using XML. Create dashboard from Splunk Query Language, Scheduled searches, Inline search vs scheduled search in a dashboard and Automation process
Various types of charts Alert Settings Knowledge of app creation, user and role access permissions. Creating and managing app, Create user, role, Permissions to knowledge objects.