Splunk Data Administrator

Role Summary We are seeking a mid to senior Splunk Data Administrator to own and continuously improve Splunk data onboarding, normalization, and quality across a complex hybrid Splunk environment (onprem and cloud). The ideal candidate is hands-on with CIM alignment, data source onboarding, field extractions (regex/props/transforms/ingest actions), TA deployment, and end-to-end operational management of Splunk data pipelines. You will act as the key point of contact for ensuring log sources are onboarded correctly, parsed and normalized consistently, and made usable for security/IT operations, dashboards, correlation searches, and reporting. Splunk: - Good understanding of Splunk architecture and its components (Search Heads, Indexers, Deployers). - Experience in managing and troubleshooting Splunk distributed environments (clusters), Splunk upgrade and migration . Operating Systems & Cloud Platforms: - Expertise in Linux systems, specifically RHEL and Amazon Linux. - Experience with A...