Data Lake Migration
Resume:
Professional Summary
Certified Splunk Professional with around 8 years of experience as a Splunk Admin/Developer.
Proficient in requirement analysis, design, and implementation of client-server applications using Splunk 6.x, 7.x, 8.x, and 9.x.
Expertise in Log Data Migration. Handled end to end migration activities from Splunk Enterprise to Cloud.
Handled end to end migration from Splunk to ELK Stack,Sentinel,QRadar,ArcSight.
Performed TA Configuration of Splunk DB connect .
Expertise in optimizing saved searches, alerts, and knowledge objects to reduce SVC consumption.
Skilled in configuring and customizing Splunk chargeback applications and monitoring parameters.
Experienced in integrating Splunk with tools like ServiceNow, Jira, AppDynamics, Data Lake, and RPA.
Proficient in core Splunk administration activities, including server migrations, data onboarding, and role management.
Extensive knowledge of Splunk license management in enterprise and cloud environments.
Hands-on experience in installation, configuration, migration, troubleshooting, and maintenance of Splunk on UNIX (Linux, Solaris) and Windows systems.
Expertise in Splunk enterprise deployments, searching and reporting modules, knowledge objects, dashboards, clustering, and forwarder management.
Skilled in leveraging Splunk for AI-driven outlier detection and SSO integration for user authentication.
Proficient in Python scripting and shell scripting for automating server health reports and large-scale deployments.
Strong understanding of statistical and analytical modeling, data ingestion, and database integration with Splunk DB Connect.
Experienced in creating detailed dashboards, reports, and visualizations for business insights.
In-depth knowledge of Splunk clusters and components, including indexers, forwarders, search heads, and deployment servers.
Expertise in handling complex regular expressions (RegEx) for field extractions and transformations.
Adept at collaborating with application teams to create dashboards, alerts, and reports.
Excellent analytical and debugging skills with a proactive approach to problem-solving.
Outstanding written and verbal communication skills for documentation and presentations.
Solid understanding of Agile methodology and practices.
Technical Skills
Splunk Modules: Splunk Enterprise, ITSI, Splunk DB Connect, Splunk Chargeback App, Splunk Cloud
Operating Systems: Linux (Red Hat, AIX, Solaris), Windows
Programming Languages: Python, Shell Scripting, HTML
Databases: MS SQL Server, MySQL
Tools/Methodologies: Agile, Regular Expressions, Machine Learning Toolkit
Professional Experience
Synchrony Financial, Texas
Sr. Splunk Developer/Admin Analyst
Apr 2024 – Present
Developed and deployed lookup files within the Splunk Chargeback application to monitor business units efficiently.
Configured KV store lookup files to improve data retrieval processes and optimize performance.
Optimized knowledge objects (KOs) to minimize SVC consumption, balancing licensing methodologies and resource pools.
Designed dynamic dashboards to track SVC consumption across Data Lake and SnowFlake- logs.
Led comprehensive troubleshooting of data challenges during on-premises to cloud migration.
Successfully executed the migration of PCF data from on-premises to the cloud.
Ingested diverse data types from sources like Data Lake, AppDynamics, RPA, ticket analysis, and other systems into Splunk for detailed analysis.
Configured and managed data ingestion using Universal Forwarder (UF), HTTP Event Collector (HEC), and local directory inputs.
Upgraded Splunk Enterprise in on-premises environments and updated universal forwarders to the latest versions.
Configured Splunk inputs through both UI and backend methods to ensure seamless data flow.
Developed and implemented SPL queries for creating knowledge objects, saved searches, and scheduled searches for actionable insights.
Integrated Splunk with ServiceNow using the ServiceNow TA to enhance incident management and alerting.
Enabled Jira integration with Splunk for efficient ticket tracking and seamless data correlation.
Created use cases to send P1 incident alerts to users’ mobile devices via Splunk when triggered by ServiceNow.
Configured Splunk integrations with PagerDuty to streamline incident response workflows.
Designed advanced, dynamic dashboards with drilldowns to monitor unauthorized logins in Splunk ITSI.
Customized classic dashboard source codes to implement multi-color palettes and dynamic drilldown functionalities.
Developed advanced datasets and implemented multi-cron schedules for reports, alerts, and dashboards.
Diagnosed and resolved data link-breaking issues, ensuring data quality and smooth data transformations during migrations.
Created advanced regular expressions for log parsing and line-breaking configurations.
Led end-to-end migration and testing of Splunk deployment servers, including the decommissioning of legacy systems.
State of Texas (TxDOT), Texas
Sr. Splunk Developer/Admin Analyst
Jun 2022 – Mar 2024
Developed dashboards to monitor the health of services and applications.
Managed MyWizard Splunk for ADM applications and Splunk Cloud console to ensure optimal performance and visibility.
Performed On Boarding Financial Log data with Masking from Xerox Servers to Splunk and transition from Splunk to Sentinal. Handled complete Change request of the process of data source plot,configuration,migration,testing transition and decommission.
Worked on AWS,Windows,Azure data Connectors for ingestion or migrationin multiple SRE use cases for migration.
Upgraded and customized MyWizard Splunk applications, tailoring add-ons to meet client needs.
Integrated Splunk with ServiceNow for enhanced monitoring and incident management.
Created dashboards to track ServiceNow tickets, SLAs, and job performance metrics.
Proactively configured alerts for SSL certificate expiry and monitored URL functionality using Ping tests.
Handled end-to-end data onboarding, including configuring .conf files and maintaining deployment servers.
Created lookup files for event grouping, providing actionable insights for stakeholders.
Resolved indexing issues, maintained data integrity, and optimized index configurations for performance and storage.
Led Splunk upgrade initiatives for Heavy Forwarders, Universal Forwarders, and Deployment Servers.
Built advanced dashboards using SPL and regular expressions for real-time monitoring and insights.
Set up and managed Search Head and Indexer clusters for efficient Splunk operations.
Implemented data routing techniques using Props and Transforms for Universal Forwarders.
Automated server performance monitoring and troubleshooting using frameworks and Splunk REST APIs.
Leveraged machine learning to detect performance trends and predict outliers using MLTK.
Designed Glass Tables in ITSI with KPIs to visualize real-time application trends.
Integrated AWS CloudWatch and S3 with Splunk for data analytics and operations.
Deployed and maintained Splunk instances on AWS and managed data ingestion workflows.
Worked with cross-functional teams to develop service-dependent dashboards.
Configured Grafana dashboards for operational teams to track application health.
Created reusable search queries and macros for monitoring application performance.
Maintained and used Docker for Splunk application deployment and cloud data onboarding.
Implemented alerts, root cause analysis, and performance reports for post-production environments.
Allegies Group
Splunk Developer/Admin
Jun 2021 – May 2022
Proficient in Actuate Reporting, including development, deployment, management, and performance tuning.
Installed, configured, maintained, and optimized Splunk Enterprise on Linux and Windows servers.
Skilled in installing Universal Forwarders and Heavy Forwarders to ingest diverse data fields into Splunk.
Expertise in field extractions and transformations using Regular Expressions (RegEx).
Knowledgeable in creating source types, macros, and tags for efficient Splunk operations.
Monitored Splunk infrastructure for capacity planning, scalability, and optimization.
Developed and configured KPIs in Splunk IT Service Intelligence (ITSI), including Glass Tables, Deep Dives, and Notable Events.
Configured services, entities, and correlation searches to track and visualize KPI metrics in ITSI.
Designed and deployed strategic dashboards and reports for business stakeholders and end users.
Troubleshot and resolved Splunk integration issues and performed configuration updates as needed.
Strong understanding of Splunk architecture, including indexers, forwarders, search heads, and deployment servers.
Automated patching and upgrade processes in Splunk using Ansible.
Created alerts in Splunk to monitor server performance, detect spikes, and identify system errors.
Leveraged the Machine Learning Toolkit (MLTK) for detecting outliers and setting predictive alerts.
Onboarded and managed data from AWS, including creating role-based access and dashboards for various user groups.
Developed advanced dashboards and data models tailored to meet the needs of different user roles.
Supported the entire information lifecycle, from search and investigation to monitoring and reporting.
Followed Agile and Scrum methodologies for seamless implementation and delivery.
Capital One, UK
Splunk Admin/Developer
Apr 2019 – May 2021
Optimized Splunk performance by distributing indexing and search activities across multiple machines.
Extracted complex fields from log files using Regular Expressions (RegEx).
Created search commands to process multiline log events as single transactions.
Designed HTML dashboards with third-party JavaScript and CSS for enhanced visualizations.
Performed field extractions using Ifx, Rex commands, and RegEx.
Ensured high accessibility and performance through flat scaling and load adjustments.
Prepared and tested Splunk search strings, creating management reports and dashboards.
Developed EVAL functions to generate new fields during search runtime.
Provided recommendations for Splunk architectural and deployment solutions.
Managed the event-monitoring infrastructure for business-critical applications.
Built dashboards for senior management and production support teams using Splunk.
Maintained and resolved Splunk-related system issues and administration tasks.
Configured Splunk DB Connect for integration with Oracle, MySQL, and MSSQL databases.
Deutsche Bank
Splunk Engineer
Jun 2017 – Jan 2019
Experienced in handling alerts, generating availability and performance reports in Splunk.
Conducted root cause analysis for post-production performance issues using Splunk.
Designed, optimized, and implemented Splunk-based enterprise solutions.
Created alerts to identify server usage spikes and system errors in advance.
Built dashboards to display forecasted issues and user activity insights.
Installed and configured Splunk Universal Forwarders on UNIX (Linux, Solaris, AIX) and Windows servers.
Customized Splunk dashboards, visualizations, and configurations using tailored queries.
Developed high-level dashboards and apps to cater to different user requirements.
Designed strategic dashboards for stakeholders and managers to provide actionable insights.
Used the Machine Learning Toolkit (MLTK) to detect outliers and set prediction-based alerts.
Managed data input and output operations for AWS monitoring.
Created and maintained AWS user accounts, profiles, and security settings.
Established role-based access controls for tailored dashboards catering to specific user groups.
Education
Master’s in Business from Bangalore University.
Certifications: Splunk Certified Admin, Splunk Certified Developer
Contact this candidate