Ramzan Muhammad

adt8lq@r.postjobfree.com / 646-***-****

PROFESSIONAL EXPERIENCE

Around 6+ years of extensive experience in the IT industry and Experience on Splunk Enterprise Deployments and enabled continuous integration on as part of configuration management.

Experience with Splunk Searching and Reporting modules, Knowledge Objects, Administration, Add-Ons, Dashboards, Clustering and Forwarder Management.

Experience configuring servers and forwarders to capture endpoint and network logs.

Experience with Splunk integrations to Kubernetes, AWS, Azure and Okta.

Created and Managed Splunk DB connect Identities, Database Connections, Database Inputs, Outputs, lookups, access controls.

Monitored Database Connection Health by using Splunk DB connect health dashboards.

Expertise in Splunk and Splunk query language.

Worked on log parsing, complex Splunk searches, including external table lookups.

Experience in Using of Glass Tables via ITSI.

Good understanding and hands on experience in Splunk Phantom like creating and configuring apps and assets, mission control, case management.

Experience on Splunk search construction with ability to create well-structured search queries that minimize performance impact.

Experience setting up and maintenance of Dynatrace Monitoring.

Solid experience in developing and deploying the applications on multiple WebLogic Servers and maintaining Load Balancing, Failover and High Availability.

Field Extraction, Using Ifx, Rex Command and Regex in Splunk configuration files.

Expertise in using Splunk with shell script in creating scripts for various activities like Generating Server Status and Health reports, Deployments on large scale configuration of servers.

TECHNICAL SKILLS

Splunk: Splunk 5.x, 6.x and 7.x, Splunk Enterprise, Splunk on Splunk, Splunk DB Connect, Splunk IT Service Intelligence, Splunk Enterprise Security, Splunk Web Framework, Splunk Machine Learning Tool kit, Splunk Hunk, Splunk Phantom, Splunk User Behavior Analytics.

SIEM Tools: Splunk Enterprise Security, McAfee ePolicy Orchestrator, FireEye, QRadar, ArcSight.

Orchestration & Provisioning Tools: Ansible, Docker, Terraform, Puppet.

Operating Systems: UNIX, Windows Server, Linux, Mac OSX.

Databases: Oracle, SQL, Hive, Teradata.

EDUCATION

Bachelors in Punjab University.

CERTIFICATION

Splunk Certified POWER USER

Splunk Certified Admin

Synchrony, Ashburn, VA(Remote) Nov 2021 - Till Date

Splunk Developer

Designed new Splunk deployments based on customer requirements.

Developed log ingestion, aggregation, and retention strategies to meet policy and operational requirements

Coordinated integration activities with 3rd party solutions to ensure comprehensive security event collection

Deploys Splunk in clustered and non-clustered environments (based on customer needs; includes indexer clusters and search head clusters)

Manages Splunk knowledge objects (Apps, Dashboards, Saved Searches, Scheduled Searches, Alerts)

Involved in standardizing Splunk forwarder deployment, configuration and maintenance across UNIX and Windows platforms. Network Traffics, alert, intrusion attempts and documented report of security breach to the management team

Experience on Splunk Enterprise Deployments and enabled continuous integration as part of configuration management.

Hands on development experience in customizing, visualizations, configurations, reports and search capabilities using customized Splunk queries.

Experience in ITSI Modules process data collected using Splunk Add-ons and create Multiple KPIs

Experience in building custom searches and visualizations in both Splunk Core and Splunk ITSI.

Used SPLUNK & REST API in order to perform searches from various application interfaces.

Tricension,Kansas City,MO July 2018 - Oct 2021

Splunk Administrator

Worked on Knowledge Objects such as Event Types, Tags, Field Extraction (Using Regular Expression) and Lookups etc.

Created Regular Expressions for Field Extractions and Field Transformations in Splunk.

Created Splunk app for Enterprise Security to identify and address emerging security threats using continuous monitoring, alerting and analytics.

Developed, customized, and configured Splunk apps and dashboards.

Collaborated with internal teams to integrate data feeds to a centralized Splunk platform.

Built dashboards, views, alerts, reports, saved searches using XML, Advanced XML and Search Processing language (SPL) as and when required.

Responsible for Installing, configured and administered Splunk Enterprise on Linux servers.

Performed Field Extractions and Transformations using the RegEx in Splunk.

Implemented Post processing method for searches in dashboards Knowledge about Splunk architecture and various components, Heavy and Universal forwarder, License model

Troubleshoot and tune Splunk deployment for servers, applications and network.

Good Experience on Splunk IT Service Intelligence and worked at Splunk ITSI Glass Table.

Splunk configuration that involves different web applications and batch, create Saved search and summary search, summary indexer.

Configured Splunk forwarders and indexers to ingest infrastructure logs.

SpringML,Pleasanton,CA

Splunk Engineer April 2016 - June 2018

Hands on experience in creating/maintaining/customizing Splunk dashboards, visualizations, configurations, reports and search capabilities using customized Splunk queries.

Wrote various kinds of SPL queries which involves Sub queries, UNION, Inner and Outer Joins.

Good knowledge about Indexer and Search head clustering.

Created Shell Scripts to install Splunk Forwarders on all servers and configure with common configuration files such as Bootstrap scripts, Outputs.conf and Inputs.conf files.

installed and configured Universal forwarders, Heavy forwarders, Configure DB connect, configure HTTP Event collectors.

Configured data transformations field extractions, execute, RegEx, etc.

Good Knowledge of regular expressions.

Knowledge about various Splunk components like Indexer, Search head, deployment server, Heavy Forwarder and Universal forwarder and benefit of using a search head deployer in case of search head clustering.

Build custom glass table visualizations of KPI search results for any service.

Experience in Shell/Bash and Python scripting and Splunk apps like DB connect.

Contact this candidate