Full-Time (Direct Hire) | Remote Position (working EST business hours)

We seek a Lead Splunk Engineer to function as an SME, own the Splunk environment, and mentor a Junior Engineer. This is a team of 2 people (including this position). You will be working for an industry-leading healthcare company that has grown organically and through acquisitions.

Note: Candidates must currently live in the US to be considered.

WHY JOIN?

• Career growth opportunities
• Stable and growing $2.5B healthcare company serving customers across the USA
• Ongoing Business and Technology transformations
• Matching 401k, Medical, Dental, Vision, Life, Tuition Reimbursement, & more
• Work/Life Balance

DUTIES & RESPONSIBILITIES:

• Architecture, installation, administration, and development of Splunk log aggregation, parsing, and alert monitoring
• Develop and enhance client infrastructure supporting application and server data, reporting, custom queries, dashboards, and security roles administration
• Assist with the administration of a variety of other platforms within the client enterprise management suite
• Act as a Splunk enterprise Subject Matter Expert (SME) and encourage the use of Splunk in the organization
• Architect, design, support, and maintain high availability Splunk on-premises deployment instance
• Maintain strategic Splunk architectural development roadmap
• Responsible for Splunk deployment and server infrastructure analysis, optimization, and capacity planning
• Responsible for onboarding and maintaining a wide variety of data sources including various OS, appliance, and application logs
• Perform data mining and analysis using various query and reporting methods
• Solve/troubleshoot complex integration challenges and configuration issues
• Create advanced searches, dashboards, visualizations
• Manage Splunk knowledge objects
• Technical writing/creation of formal documentation such as architecture diagrams, technical designs, and SOPs

REQUIREMENTS:

• Bachelor’s degree in Computer Science, Information Systems, or equivalent experience
• At least 3 years of experience architecting, configuring, deploying, and customizing Splunk in a large, enterprise environment
• Splunk Certified Administrator certification is preferred
• Strong understanding of all Splunk architecture components including search head clustering, indexer clustering, deployment server, and monitoring console
• Strong understanding of configuration files and the relationship between GUI configuration and backend configuration file impact
• Knowledge of advanced search and reporting commands
• Strong understanding of SPL as well as the ability to develop automated search and apps using Python or bash/perl/shell scripting
• Proven experience creating complex dashboards, forms, and visualizations
• Understanding of System Log Files and other structured and non-structured data
• Effective verbal & written communication skills that include the ability to describe highly technical concepts in non-technical terms

U.S. Citizens or Green Card holders only, please. We are unable to accept 3rd party candidates, transfer a visa, or provide sponsorship