3,015 Splunk jobs in India

Job Responsibilities :

Design, deploy, and manage Splunk infrastructure

Develop and maintain Splunk dashboards, queries, and alerts

Integrate Splunk with various data sources to ensure comprehensive data ingestion

Monitor and troubleshoot Splunk performance issues

Collaborate with cross-functional teams to gather requirements and provide Splunk solutions

Implement and enforce best practices for Splunk data management and retention

Provide user training and support for Splunk-related activities

Splunk Administrator / Engineer – Hyderabad

Experience: 3–8 Years | Level: A / SA | Notice: 0–10 Days

Key Skills:

• Splunk administration: Search, Dashboards, ITSI (optional), troubleshooting, and monitoring
• Automation: Puppet (preferred) / Ansible
• Cloud & OS: AWS, Linux/Windows
• Incident handling & root cause analysis
• ServiceNow workflows & compliance-driven change execution
• Documentation & runbook management

Responsibilities:

• Execute Splunk changes via runbooks and ServiceNow
• Review and validate configurations
• Maintain runbooks with rollback & validation steps
• Support incident investigations & escalations
• Track KPIs/SLAs

Preferred Certifications: Splunk Admin/Power User, ITIL Foundation, Puppet/Ansible

Immediate joiners (0–10 days) preferred.

Job Summary:

We are seeking a highly skilled Splunk Engineer with expertise in Splunk platform administration, cloud technologies, networking, DevOps practices, and scripting. This role is responsible for developing, deploying, and maintaining Splunk solutions across enterprise environments to support operational intelligence, security, and compliance needs.

Key Responsibilities:

• Design, deploy, and maintain Splunk infrastructure across on-premise and cloud environments (AWS, Azure, GCP).
• Create custom Splunk dashboards, alerts, and reports tailored to business and operational needs.
• Integrate Splunk with various data sources, including applications, servers, network devices, and cloud services.
• Collaborate with DevOps teams to implement monitoring and alerting for CI/CD pipelines and microservices.
• Develop and maintain scripts (Python, Shell, PowerShell, etc.) for automation, data parsing, and onboarding.
• Optimize Splunk performance and indexer/search head clustering.
• Troubleshoot issues related to data ingestion, parsing, and visualization.
• Implement role-based access control and maintain security compliance across Splunk environments.
• Support network visibility and threat detection use cases using Splunk and third-party integrations.

Required Skills & Qualifications:

• 4+ years of hands-on experience with Splunk (Enterprise, ES, ITSI, or Observability Suite).
• Solid understanding of cloud platforms (AWS, Azure, or GCP) and experience deploying Splunk in cloud environments.
• Strong foundation in networking concepts (TCP/IP, DNS, VPN, Firewall, Load Balancers, etc.).
• Experience with DevOps tools (Git, Jenkins, Docker, Kubernetes, Terraform, etc.).
• Experience with SPL.
• Proficiency in scripting languages such as Python, Bash, or PowerShell.
• Experience onboarding structured and unstructured data from various sources.
• Familiarity with log formats and data parsing (JSON, XML, syslog, etc.).
• Strong problem-solving skills and ability to work independently or as part of a team.
• Excellent communication and documentation skills.

Preferred Qualifications:

• Splunk Certifications (e.g., Splunk Core Certified Power User , Admin , or Architect ).
• Experience with SIEM use cases and security event monitoring.
• Exposure to machine learning and anomaly detection using Splunk.
• Familiarity with REST APIs and integrating third-party applications with Splunk.

Role: Splunk Developer

Required Technical Skill Set: Splunk Developer/Engineer

Desired Experience Range: 6-8 Years

Location of Requirement: Bangalore

Desired Competencies (Technical/Behavioral Competency)

Must-Have

• Proven experience as a Splunk Developer with a focus on Splunk Enterprise Security.
• In-depth knowledge of Splunk architecture, data models, and search processing language (SPL).
• Experience with developing and maintaining Splunk apps, add-ons, and integrations.

Good-to-Have

• Strong understanding of cybersecurity concepts and best practices.
• Splunk certifications, including Splunk Certified Developer, are highly desirable.
• Ability to work collaboratively in a team environment and communicate effectively with technical and non-technical stakeholders.
• Familiarity with scripting languages such as Python or PowerShell for automation.

Responsibility of / Expectations from the Role

• Design and implement custom Splunk applications, dashboards, and searches to meet specific security and operational requirements.
• Collaborate with security and IT teams to understand data sources, parsing requirements, and integration points for effective Splunk deployment.
• Develop and maintain Splunk queries, reports, and alerts to identify and respond to security incidents in a timely manner
• Work on data normalization, parsing, and transformation to ensure accurate and meaningful data representation within Splunk.
• Collaborate with system architects and administrators to optimize Splunk performance and ensure scalability.
• Stay informed about the latest security threats and vulnerabilities to continuously enhance and update Splunk solutions.
• Provide expertise and support in troubleshooting and resolving issues related to Splunk configurations and deployments.
• Create and maintain documentation for Splunk configurations, customizations, and best practices.

Required Technical Skill Set: Splunk Developer/Engineer

Desired Experience Range: 6-8 Years

Location of Requirement: Bangalore

Must-Have Skills:

• Proven experience as a Splunk Developer with a focus on Splunk Enterprise Security.
• In-depth knowledge of Splunk architecture, data models, and search processing language (SPL).
• Experience with developing and maintaining Splunk apps, add-ons, and integrations.

Good-to-Have Skills:

• Strong understanding of cybersecurity concepts and best practices.
• Splunk certifications, including Splunk Certified Developer, are highly desirable.
• Ability to work collaboratively in a team environment and communicate effectively with technical and non-technical stakeholders.
• Familiarity with scripting languages such as Python or PowerShell for automation.

Responsibility of / Expectations from the Role

1. Design and implement custom Splunk applications, dashboards, and searches to meet specific security and operational requirements.

2. Collaborate with security and IT teams to understand data sources, parsing requirements, and integration points for effective Splunk deployment.

3. Develop and maintain Splunk queries, reports, and alerts to identify and respond to security incidents in a timely manner.

4. Work on data normalization, parsing, and transformation to ensure accurate and meaningful data representation within Splunk.

5. Collaborate with system architects and administrators to optimize Splunk performance and ensure scalability.

6. Stay informed about the latest security threats and vulnerabilities to continuously enhance and update Splunk solutions.

7. Provide expertise and support in troubleshooting and resolving issues related to Splunk configurations and deployments.

8. Create and maintain documentation for Splunk configurations, customizations, and best practices.

Role purpose:

• Roles and Responsibilities – High Level:
• Interpret business requirements and translate them into deployable Reporting & Monitoring solutions with very high quality
• Provide estimates for the user stories assigned and complete the Reporting Development within timelines with good quality
• Prepare LLD and document the implemented solution. Code development. Adhere to technical constraints laid out by Architecture Design
• Adhere to coding standards and best practices laid out by Technical Implementation Standards
• Unit testing the output of their own work and work along with QA team to fix defects
• Application Operation { L2 Ops } support. DevOps Support, CloudOps Support

Roles and Responsibilities:

• Primary Skill : Expert knowledge and experience of Reporting tools like Splunk & Dynatrace, including setup of indexers, forwarders, dashboarding, creating alerts etc. Good knowledge in query, saved search and dashboard amongst others
• Primary Skill : Expert experience (inc. setup & infrastructure and backend knowledge) on Monitoring & Reporting tools like Splunk/Nagios/Dynatrace , HPOVO, SNMP etc. required
• Secondary Skills : Excellent knowledge of Unix/Linux, Oracle, Apache, Tomcat, JBOSS, Basic Java, Change Control Systems (GIT, SVN). Ticketing / task tool like Remedy, Jira. Release & Deployment experience in Unix / Linux / Cloud Based Environments.
• Secondary Skills : Expert knowledge and some experience of Cloud Services (like AWS, MS Azure, IBM Cloud etc.), DevOps, Automation, CI-CD-CT and related best practices
• Tertiary Skills : Excellent experience in EKS Architecture, VPC , AWS certificate manager, IOT core, Lambda Functions, CloudShell, Terraform and terragrunt, RDS, Aurora Serverless Servers, SQS, S3 buckets, AWS console, CloudWatch (alarms, insights), Prometheus & Grafana, EKS cluster through different methods (K8s), Horizontal pod and cluster autoscaling, AMI & Application image patching, Network & Cloud Infra Environment E2E troubleshooting & fixing the issues in time, IAAS, etc.
• Good knowledge in Central logging, log forwarding , log format and data extraction using regular expression
• Very experienced in Log Analysis & Log4j/ULFF Analytical Troubleshooting skills
• ITIL knowledge required (Especially Incident & Problem Mgmt, Deployment) and ticketing/task tool like Remedy, Jira. Release & Deployment experience in Unix / Linux Based Environments
• Very Good communication, Team Player, Conflict Resolution Skills among other soft skills
• Exposure to work in DevOps and Agile (Scrum) delivery teams
• KEYWORDS : Splunk, Dynatrace , DevOps, Containers, AWS, EKS, VPC, Terraform, Unix, Scripting, Python, GIT, Jenkins

We are seeking a skilled and experienced Splunk Architect to design, implement, and manage enterprise-scale Splunk solutions across cloud and on-prem environments. The ideal candidate will have a deep understanding of Splunk architecture and be capable of leading deployment strategies, data onboarding, and integrations in a complex IT environment.

Key Responsibilities:

• Design and implement scalable, resilient, and secure Splunk Enterprise and Splunk ES/ITSI architectures.
• Lead Splunk infrastructure planning, upgrades, and clustering strategies.
• Onboard and normalize logs from systems including Windows, Linux, firewalls, cloud services (AWS/Azure/GCP), and application logs .
• Develop dashboards, alerts, reports, and KPIs for IT operations, SOC teams, and business stakeholders.
• Integrate Splunk with third-party tools (e.g., ServiceNow, Jira, AWS CloudWatch, SOAR tools ).
• Perform system tuning, data retention strategy planning, and storage management.
• Define and implement correlation rules , SPL queries , and CIM-compliant data models .
• Provide architectural consulting to internal teams and mentor junior engineers.
• Ensure best practices for security monitoring , compliance , and incident response workflows .

Required Skills & Qualifications:

• Bachelor's or Master's degree in Computer Science, IT, or related field.
• 7+ years of IT experience, with 5+ years of hands-on Splunk experience.

Expertise in:

• Splunk deployment architecture (Indexer clusters, Search Head clusters, Heavy Forwarders, Deployment Servers)
• SPL (Search Processing Language)
• CIM and data onboarding
• Security and compliance use cases (e.g., SOC, NIST, GDPR, ISO 27001)
• Experience with cloud platforms: AWS, Azure, or GCP .
• Strong knowledge of regex , data parsing , Linux/Unix , and networking protocols .
• Automation/scripting experience with Python , Shell , or Ansible preferred.

Certifications (Preferred):

• Splunk Certified Architect
• Splunk Certified Admin
• Splunk Enterprise Security Certified
• Any relevant cloud certifications (AWS/Azure)

TCS Hiring ! Splunk ITSI Admin

Role** Splunk ITSI Admin

Please read Job description before Applying

NOTE: If the skills/profile matches and interested, please reply to this email by attaching your latest updated CV and with below few details:

Name:

Contact Number:

Email ID:

Highest Qualification in: (Eg. B.Tech/B.E./M.Tech/MCA/M.Sc./MS/BCA/B.Sc./Etc.)

Current Organization Name:

Total IT Experience- 6-10

Location: Chennai/Hyderabad/Pan India

Current CTC

Expected CTC

Notice period:

Whether worked with TCS - Y/N

Must Have Experience :

Strong experience in implementing service monitoring for complex systems using Splunk ITSI with at least 1 year experience

- Proven experience as a Splunk Administrator (5+ Years) with a focus on ITSI.

- Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience).

- Strong understanding of Splunk architecture, data ingestion, and indexing.

- Experience with IT Service Intelligence (ITSI) modules, including creating and managing service models, KPIs, and glass tables.

- Proficiency in scripting languages (e.g., Python, Bash) for automation and integration tasks.

- Familiarity with IT infrastructure and operations, including servers, networks, and applications.

- Strong problem-solving skills and the ability to work independently and in a team environment.

- Excellent communication skills and the ability to collaborate with technical and non-technical stakeholders.

Preferred Qualifications:

- Splunk Certified Admin or Splunk Certified ITSI Specialist certification.

• - Experience in a large enterprise environment