What are the responsibilities and job description for the Splunk Administrator position at PRI Technology?
Must be able to work onsite in Bethlehem, Pennsylvania.
Work Authorization: U.S. Citizens and Green Card holders only. No visa sponsorship required.
Required Qualifications
- 5 years of hands-on experience administering Splunk Enterprise environments
- Strong experience with Splunk architecture, deployment, and troubleshooting
Experience managing:
- Search Head Clusters
- Indexer Clusters
- Universal and Heavy Forwarders
- Deployment Servers
- License Management
- Strong understanding of Linux and/or Windows server administration
- Experience with log management, event correlation, and monitoring solutions.
- Proficiency in SPL (Search Processing Language)
- Experience with scripting and automation using PowerShell, Python, Bash, or similar technologies
- Knowledge of networking fundamentals including TCP/IP, DNS, SSL/TLS, and firewalls
- Experience with performance tuning, capacity planning, and high-availability configurations
- Excellent troubleshooting and analytical skill
Preferred Qualifications:
- Splunk Certified Administrator, Splunk Enterprise Certified Admin, or equivalent certification
- Experience supporting Security Operations Centers (SOC) and SIEM environments
- Experience with cloud platforms such as AWS, Azure, or Google Cloud
- Familiarity with observability tools such as AppDynamics, OpenTelemetry, Dynatrace, Datadog, or Grafana
- Experience integrating Splunk with ITSM platforms such as ServiceNow