Splunk Engineer Admin
@ Jobs via Dice

Hybrid
$150,000
Hybrid
Full Time
Posted 19 hours ago

Your Application Journey

Personalized Resume
Apply
Email Hiring Manager
Interview

Email Hiring Manager

XXXXXXXXX XXXXXXXXX XXXXXXXXXX****** @pioneercorp.com
Recommended after applying

Job Details

Overview

Jobs via Dice is recruiting a Splunk Engineer Admin for Pioneer Corporate Services Inc. This role focuses on maintaining, optimizing, and securing a multi-site Splunk Enterprise environment.

Key Responsibilities

  • Maintain a healthy multi-site Splunk Enterprise environment including indexer clustering, SHC, and deployment servers.
  • Manage upgrades, patching, daily/weekly health checks, capacity and license management, and DR tests.
  • Onboard data with secure configurations using forwarders, syslog, HEC, and correct sourcetypes, props, and transforms.
  • Improve performance and reliability by monitoring ingestion/search performance, tuning searches, and managing storage/buckets.
  • Enable users by creating and optimizing SPL searches, dashboards, and alerts while advising internal teams.

Detailed Duties

Operate and harden a multi-site Splunk Enterprise environment including indexer clustering, SHC, deployer/deployment server, RBAC, and full app lifecycle management. Monitor ingestion, search, and storage performance by validating RF/SF, bucket health and tuning NFS settings. Lead cross-platform data onboarding projects for on-prem, SaaS, and cloud (Azure/AWS) deployments ensuring audit compliance. Develop and optimize SPL, dashboards, and alerts while coaching users on best practices. Maintain disaster recovery posture with regular failover tests.

Requirements

  • 3-5+ years of hands-on Splunk Enterprise administration experience at multi-TB/day scale.
  • Expertise in SPL, performance tuning, and data onboarding configurations.
  • Strong Linux administration and scripting skills (bash, Python) with networking/TLS fundamentals.
  • Experience with NFS-backed indexers and operational tuning.
  • Excellent communication, strong documentation, and a bias for automation.
  • Nice-to-have: Splunk Architect certification and familiarity with ES, ITSI, MLTK, SOAR, and data-science concepts.

Key Skills/Competency

  • Splunk Enterprise
  • Index Cluster
  • SHC
  • SPL Optimization
  • Data Onboarding
  • Linux Administration
  • Scripting
  • NFS Tuning
  • Disaster Recovery
  • RBAC

How to Get Hired at Jobs via Dice

🎯 Tips for Getting Hired

  • Customize your resume: Emphasize Splunk and Linux experience.
  • Research Dice: Understand their market position and culture.
  • Highlight projects: Showcase multi-TB Splunk admin projects.
  • Prepare examples: Detail problem-solving challenges in Splunk.

📝 Interview Preparation Advice

Technical Preparation

Review Splunk Enterprise architecture details.
Practice SPL query and dashboard creation.
Brush up on Linux command-line and scripting.
Understand NFS storage tuning specifics.

Behavioral Questions

Describe a challenging Splunk project.
Explain your teamwork during a crisis.
Illustrate problem-solving under pressure.
Share conflict resolution with team members.

Frequently Asked Questions