Splunk Architect with Security Clearance

To lead the design, implementation, and optimization of Splunk ITSI solutions that provide real-time visibility into IT service health, performance, and infrastructure behavior. This role is critical for enabling proactive incident management, reducing alert fatigue, and enhancing operational efficiency across IT and business services. Job Title splunk architect Top Skills Details Architecture & Design: Architect and maintain Splunk ITSI modules including glass tables, KPI base searches, correlation searches, notable events, and service definitions. Design service trees and entity models to reflect business-critical services and dependencies. Monitoring & Analytics: Implement event aggregation, adaptive thresholding, and noise reduction strategies. Develop advanced correlation rules to detect anomalies and reduce MTTD and MTTR. Integration & Automation: Integrate ITSI with external systems like CMDBs (e.g., ServiceNow), APM tools (e.g., Dynatrace, AppDynamics), and ticketing systems. Use REST APIs and modular inputs for data onboarding and automation. Additional Information Technical Expertise: 3 years of hands-on experience with Splunk ITSI. Strong proficiency in SPL (Search Processing Language). Experience with Glass Tables, KPI Base Searches, Notable Events, and Aggregation Policies. Familiarity with machine learning toolkit (MLTK) for anomaly detection and predictive analytics. Systems Knowledge: Experience with Linux, Windows, cloud platforms (AWS, Azure, GCP). Understanding of ITIL, ITSM, and service-centric monitoring principles. Tooling & Automation: Scripting skills in Python, Bash, or PowerShell. Familiarity with DevOps tools like Ansible, Terraform, or Kubernetes. Experience with SOAR platforms is a plus. Certifications (Preferred): Splunk Core Certified Power User Splunk ITSI Certified Admin Splunk Certified Developerbfb3568a-762b-4989-884b-a9682aa104ca