ELK and Splunk resourceElasticSearch engineer with significant experience working with large ElasticSearch clusters. This role will be responsible for resolving production issues, cluster performance optimization, capacity planning, enhancing monitoring capabilities for early issue detection, driving operational readiness and ongoing maintenance.
Qualifications · 3+ years of Unix / Linux experience, 2+ years of ElasticSearch experience in production, in medium to large clusters.
Deep working knowledge of and proven experience with Elasticsearch and Kibana.· Experience building ElasticCluster and installing plugins· Experience configuring and performance tuning large clusters· Strong understanding of Elasticsearch index configuration options.
Working knowledge of Kibana visualization strategies and techniques.· Advanced knowledge of Elasticsearch sharing, partitioning, aliases, watchers, etc.
Experience working in DevOps structured and Agile organizations· Excellent communication and collaboration skills Splunk Engg
Experience in design, implementation, and support of Splunk (Indexers, Forwarders, Search-Heads Setup etc)
Experience with implementing and administering Splunk.
Good understanding with virtualization technologies (Hypervisor, VMware, etc)
Apps / Dashboards for license usage and Application errors.
Experience with Linux and Windows agents for Splunk administration with a solid understanding of the Splunk system.
Ability to create operations documentation for maintaining the Splunk infrastructure.
Setting up Splunk Forwarding for new application tiers introduced into the environment.
Identifying bad searches / dashboards and partnering with the creators to improve performance.
Troubleshooting Splunk performance issues / Opening support cases with Splunk.
Monitor the Splunk infrastructure for capacity planning and optimization.
Troubleshoot log feeds, field extractions, search time, etc.