Splunk Administrator (6-month contract)



Toronto, ON, Canada
Posted on Thursday, June 29, 2023

Splunk Administrator
The candidate's primary responsibilities will be to Administer a large Enterprise Splunk environment primarily on the data ingestion side with emphasis on searches, reporting and alerts
This person should understand high level principles around software development lifecycle and agile approaches and must be able to capture and articulate requirements and progress clearly.
Additionally, the candidate must possess Python development skills and experience
Splunk Administration
● Setup and Manage Data Inputs (Local and Forwarded)
● Field Extractions and Transformations
● Implement searches, reports & alerts
● Data Models & Accelerated Searches
● Common Information Model (CIM)
● Setup Splunk Apps and Add-ons from splunkbase
● Support Splunk Enterprise architecture, design and implementation decisions

Splunk Integration Engineering
● Engineer custom Data Inputs (local and forwarded); Files & Directories, HTTP Event Collector, TCP/UDP listeners, scripts, REST/WSDL Api’s, DB Connect (databases).

Customer Analytics and Reporting
● Understand business objectives and translate them into data needs and reporting outputs
● Collect and work with a wide array of textual data from disparate sources

● Identify required data that may be missing and recommend best practices to collect it
● Plan, manage and execute data analysis in line with business needs
● Plan, manage and execute exploratory analysis to discover new insights and patterns using machine learning
● Produce meaningful and useful reports and visualizations delivering key information in a usable format
Position Requirements
● Splunk Certifications preferably
o Splunk Enterprise Certified Admin
o Splunk Certified Developer
● 2 years’ experience Data Inputs (Local and Forwarded)
● 2 years’ experience Field Extractions and Transformations
● 2 years’ experience Data Models & Accelerated Searches
● 2 years’ experience searches, reports & alerts
● 2 years’ experience implementing and administering Splunk Enterprise solutions.
● 2 years’ experience Solid foundation in data structures, algorithms, software design.
● 2 years’ experience programmatic development experience in Python, json and shell scripting.
● Expert knowledge of TCP/IP and networking fundamentals.
● 2 years’ experience implementing Splunk solutions on Linux OS
● Strong written and verbal communication skills
● Must be a self-starter and be able to manage their time against deliverables
● Must be able to collaborate effectively within a team to plan, design, review, and adapt deliverables
● BS, MS or PhD in Computer Science or related engineering discipline.
● Splunk Certifications
o Splunk Enterprise Certified Admin
o Splunk Certified Developer
● Certified Linux training
Contract Considerations
● Rate $75.00 per hour CAD to Solsys
● Candidates resides in Canada is preferred followed by the US
● 100% remote work in EST time zone
● 6-month contract to start with opportunity to renew

Employee Considerations
● Annual salary
● Health care and wellness Benefits package
● Paid Vacation and sick leave
● Candidates resides in Canada is preferred followed by the US
● 100% remote work in EST time zone
● Permanent resident status is desirable