Splunk Certified Implementation Engineer

Tasks

• Architect distributed Splunk infrastructure
• Build and tune data onboarding pipelines
• Configure and manage Splunk ES correlation searches
• Create architecture documentation and runbooks
• Deploy Splunk environments
• Develop and optimize SPL queries
• Execute Splunk version upgrades and patch deployments
• Implement Cisco security data ingestion pipelines
• Implement federated search and data in place analytics
• Install and configure Splunk components
• Integrate Cisco Secure Endpoint and Cisco Threat Grid with Splunk ES
• Integrate Cisco security products with Splunk CIM
• Lead technical implementation workshops
• Maintain machine data lake tiering strategy
• Manage platform health and operational stability
• Normalize Cisco security telemetry into CIM data models
• Perform capacity planning and index lifecycle management
• Perform security control management and optimization
• Support PAM and DAM platforms integration

Perks/Benefits

• N/A

Skills/Tech-stack

AI Toolkit | Access Management | Activity monitoring | Adaptive response | CIM | Cisco Data | Cisco Data Fabric | Cisco Identity Services | Cisco Identity Services Engine | Cisco Meraki | Cisco Secure | Cisco Secure Endpoint | Cisco Secure Firewall | Cisco Secure IDS IPS | Cisco Secure Network Analytics | Cisco ThousandEyes | Cisco Threat Grid | Cisco Umbrella | Correlation searches | Data Lake | Data fabric | Database activity monitoring | EDR | EStreamer | Enterprise Security | Federated Search | Firewall Policy | Firewall policy management | Fortinet Fortigate | IDS/IPS | IDS/IPS tuning | IPS tuning | Identity Services Engine | Index Lifecycle Management | Index lifecycle | Inputs conf | Intelligence management | Lifecycle Management | Machine Data | Machine Data Lake | Macros | Network Analytics | Palo Alto | Palo Alto Networks | Palo Alto Networks NGFW | Policy Management | Privileged Access | Privileged Access Management | Props conf | REST API | Risk scoring | Risk-Based Alerting | Risk-based | SOAR playbooks | SPL | Scheduled Searches | Secure Endpoint | Secure Firewall | Secure Network Analytics | Splunk | Splunk AI | Splunk AI Toolkit | Splunk Enterprise | Splunk Enterprise Security | Splunk SOAR | Syslog | Threat Intelligence | Threat Intelligence Management | Transforms conf | VPN Concentrators | XDR