Splunk Consultant

We are seeking a skilled Splunk Consultant with hands-on experience in Cribl to design, implement, and optimize data ingestion, processing, and observability solutions. The ideal candidate will have strong expertise in Splunk architecture, log management, and data pipeline optimization using Cribl., * Design, deploy, and maintain Splunk environments (Enterprise / Cloud)

• Develop and optimize dashboards, alerts, and reports in Splunk
• Implement data onboarding strategies and parsing (props.conf, transforms.conf)
• Manage and optimize log pipelines using Cribl (Cribl Stream / Edge)
• Reduce data ingestion costs through filtering, routing, and transformation
• Troubleshoot performance issues and ensure platform scalability
• Integrate Splunk with various data sources (cloud, on-prem, security tools)
• Support use cases across IT Operations, Security (SIEM), and Observability
• Collaborate with stakeholders to define logging and monitoring requirements
• Maintain documentation and best practices for Splunk and Cribl deployments

• Strong experience with Splunk (Search Processing Language - SPL)
• Hands-on experience with Cribl (Stream, Edge, or Cloud)
• Knowledge of log ingestion, parsing, and indexing strategies
• Experience with Linux/Unix environments
• Familiarity with data formats (JSON, XML, syslog)
• Understanding of monitoring, logging, and observability concepts
• Experience with scripting (Python, Bash, or similar)
• Strong troubleshooting and analytical skills, * Splunk certifications (e.g., Splunk Certified Admin, Architect)
• Experience with cloud platforms (AWS, Azure, or Google Cloud Platform)
• Knowledge of DevOps tools (CI/CD pipelines, Kubernetes, Docker)
• Experience in security monitoring (SIEM use cases)
• Familiarity with ITSM tools and Agile methodologies