Splunk Architect
Barclays
Total years of experience :15 years, 1 Months
• Cloud Migration: Migration of multi-site Splunk cluster and associated data from On-Prem to the cloud.
• Splunk development: Development custom Splunk add-on and app. Splunk data model and CIM compliance.
• SOC Architecture: Designing SIEM for SOC monitoring, UBA implementation and insider threat detection.
• Security Operations: Collaborating with other teams to resolve splunk usability issues and provide guidance on reporting.
• Incident Handling: Investigation of outages, service impacts, and Splunk infrastructure-related events within defined SLAs.
• Stakeholder Interaction: Interacting with stakeholders and translating feedback from the business to technical requirements.
• Splunk SIEM Specialist: Implemented, deployed, integrated, and reviewed Splunk SIEM solutions for clients.
• Data Management: Administered SIEM data, including log onboarding, parsing, transformation, and extraction.
• Security Content Development: Created security content and use cases based on IOCs in SOC environments.
• Device Configuration: configuration of security devices, including next-gen firewalls, EDR, proxies, F5, and email security.
• Incident Handling: Analyzed, investigated, configured, and coordinated with vendors for managed devices.
• Device Optimization: Health checks, policy tuning, and upgrades on security devices for enhanced efficiency and security.
• Security Lead: Implementation Managed cross-team security and support escalations.
• SIEM & Elastic Stack: Implemented and administered Splunk SIEM and Elastic Stack. Developed dashboards, alerts, and
monitoring per industry best practices.
• Security Operations: vulnerability assessments, risk mitigation, device hardening. incident handling and compliance checks
• Collaboration: Coordinated with teams and vendors for incident resolution and investigations.
• AWS Linux Admin: Managed AWS-hosted Linux platforms for web apps and databases.
• Operations & Support: Managed L1 escalated issues and monitored alarms.
• Linux Admin: Oversaw server operations, updates, upgrades, and configurations.
• DevOps Tools: Administered Jenkins, Docker, Maven, Ansible, Nagios, and Solr.
• AWS Cloud Admin: Managed EC2, ELB, S3, and RDS components.
• Security & Scripting: vulnerability analysis, penetration testing, and patching. Scripts for data processing and automation.
• Database Management Oracle, MySQL, and PostgreSQL databases, including reports, backups, and restoration.
• Troubleshooting: Identify, Analyse and resolved messaging and application server issues.
• Problem Management: Root Cause Analysis in the IPX system and held responsibilities for problem management .
• Scripting & Database: Shell scripting for automation and Oracle Database queries.
• Configuration: Content Provider, Shortcodes, and Operator-specific configurations on IPX servers and databases.
• Documentation & Maintenance: Revised and edited technical documentation for accuracy and currency of procedures.
• VoIP: Designed, implemented, and supported SIP-based VoIP networks.
• Traffic Analysis: Monitored and resolved technical issues by analysing voice traffic parameters.
• Equipment Deployment: Installed and configured VoIP equipment including Audio Codes, IP Phones, and Softphones.
• Voice Quality Analysis: Addressed voice quality issues by understanding underlying factors and aligning solutions.
B.Tech
(
(