Ebe Mark
Dallas,TX
Summary
Splunk Certified Core Consultant who excels at both technically sophisticated product development and inter-disciplinary collaboration. As a Splunk Consultant with over 8 years of experience tuning and troubleshooting Splunk in On-prem and cloud environments, she is adept in onboarding data from servers, network devices, syslog and API sources. Mrs. Mark is particularly skilled working in Linux, Windows and AWS platforms, and has worked in distributed Splunk Environments and Multi-site Clustered environments for large customers.
Always seeking to improve her skills, Mrs. Mark continuously pursues learning with the latest Spunk technologies, and enjoys troubleshooting and discovering new facets of Splunk every day. She is an enthusiastic and self-motivated worker, able to work in team based scenarios as well as independently. Courteous and well mannered, with good communication and organizational skills, she has a proven ability to make an immediate impact towards meeting organizational goals.
Overview
8
8
years of professional experience
6
6
Certification
Work History
Splunk Developer
TEKsystems
Sacramento, CA
05.2021 - Current
TEKsystemsy and resolve data quality issues
configsconfigsDeployerServerclassdropdownsmultiselecteventtypesdatamodelsoncallcrossfunctionalcrossfunctionalcrossfunctional
configsconfigsDeployerServerclassdropdownsmultiselecteventtypesdatamodelsoncallcrossfunctionalcrossfunctionalcrossfunctional
Splunk Engineer
Open Path LLC
Lawrenceville, GA
02.2016 - 05.2021
Splunk EngineerOpen Path LLC | February 2016 - May 2021
- Provides Splunk Professional Services for government and commercial clients.
- Crafted SPL leveraging multiple lookups from different data sources to create a report to populate dashboard
- Optimized SPL to improve resolve dashboard latency
- Implemented Base search to speed up dashboard
- Leverage summary index to populate a dashboard for technical account inventory
- Created alerts to trigger when there is modification in access controls
- Created alerts to trigger for login errors
- Created alerts to trigger for password expiration
- Edited and created navigation bar to make more user friendly
- Created Datamodels and made Data CIM compliant.
- Perform routine health checks via the Monitoring console
- Assisted administrators to ensure whether Splunk is actively and accurately running and monitoring the current infrastructure implementation.
- Perform daily health checks and maintain integrity of a production environment by proactively resolving services impacting incidents.
- Setup alerts for the different errors.
- Provided regular support guidance to Splunk project teams on complex solution and issue resolution.
- Created Splunk Apps and Customized based on groups and teams to make user friendly.
- Installed and configured Splunk on Linux(tgz/rpm/deb), Windows servers(msi)
- Analyzed and monitored incident management and incident resolution problems.
- Developed Splunk Queries to generate the Reports.
- leveraged Cron Jobs for scheduled tasks.
- Upgraded Splunk previous versions.
- Worked with administrators to ensure Splunk is actively and accurately running and monitoring the current infrastructure implementation.
- Maintained strong relationships with key stakeholders throughout the duration of the project lifecycle.
- Reviewed existing policies and procedures and suggested improvements where necessary.
Education
Associate of Science -
Consumnes River College
Sacramento, CA12-2014
Knowledge & Experience
Consulting
• Capacity planning to determine License Size Requirements
• Assessment of Customer environment to determine Splunk Architecture
• Recommended and implemented storage policy
• Scoping and Architectural reviews with customers
• Creating onboarding templates to streamline onboarding Use Cases
Architecting| Builds
• Built Splunk Clustered environment
• Built Asset Reconciliation dashboard correlating Splunk data with CMDB
• Built a quota dashboard that monitors consumer activity over a period time to predict company's definition of success/failure befor the end of day or up to 30 days ahead.
Engineering
• Onboarded logs via Universal Forwarder, syslog, APIs, Cloud, Scripted Inputs and HEC
• Onboarded logs to be CIM Compliant
• Created Summary Indexes to accelerate speed of queries
• Assisted Security Operations team to investigate data discrepancies
Leadership
• Splunk Team Lead for Government contract.
• Created guiliance and offered training to support Splunk Admins through the process of attaining Splunk Architect and or Splunk Core Consultant Certifications.
• Led Stepped Upgrade of Splunk from 7.3 to 9.1.2
Security Implementation
• Implementation of SSL for Splunk web.
• Implementing Security groups in AWS to accepts inbound connections from specific subnets.
• Server and port hardening via selinux (semanage)
• Tenable, IP360, Forescout and Splunk to monitor and mitigate Server Vulnerabilities.
Recent Project Highlights
• Splunk Migration from On-Prem to AWS Cloud environment
• Implemented Stepped Upgrade from Splunk 7.3.4 to 9.0.1
• Built Asset Reconciliation dashboard correlating Splunk data with CMDB
• Built multiple dashboards that monitors the User's end to end experience in real time.
• Leverage Elf and Cribl to pull in Data into Splunk in real time.
Tools & Applications
Security Tools – Wireshark, Symantec Secure Access Cloud(SAC)|Splunk Enterprise Security. Rapid7, STIG
Viewer
● Secure Remote: Putty| Remote Desktop Protocol (RDP) |Remote Desktop Manager| Integrated lights out (iLO)| iDrac| SSH port forward & X forwarding | XfreeRDP| Secure Access Cloud(SAC)
● Cloud: AWS Administration– EC2 | Cloud Trail | EC2| S3 buckets| Load Balancers | Security Groups | AMI | Certificate Management| AMIs| Target Groups
● Networking: Symantec Secure Access Cloud
● Troubleshooting: Server performance | Website performance | Hardware failure | Application & Services
● Automation: Bash Shell Scripting | Ansible| Git
● Migration : Splunk On-prem to on-prem migration | Splunk On-prem to AWS Cloud Migration
● Configuration Tools: System Center Configuration Manager (SCCM)| Red Hat Satellite| Ansible
● Log Aggregation: Rsyslog | Syslog-NG
● Containers: Vagrant
Certification
- Splunk Certified Core Consultant
- Splunk Enterprise Certified Architect
- Splunk Enterprise Certified Admin
- Splunk Core Certified Power User
- Splunk Core Certified User
- Splunk Enterprise Security Admin
References
References available upon request.
Timeline
Splunk Developer
TEKsystems
05.2021 - Current
Splunk Engineer
Open Path LLC
02.2016 - 05.2021
Associate of Science -
Consumnes River College
Similar Profiles
Jilian CollinsJilian Collins
Contract Deployment Engineer at TEKsystemsContract Deployment Engineer at TEKsystems
Rokeya SykesRokeya Sykes
Quality Assurance Specialist at TEKsystemsQuality Assurance Specialist at TEKsystems
Valerie LoveValerie Love
Family Enrollment Couselor at TEKsystemsFamily Enrollment Couselor at TEKsystems
Tariq MooreTariq Moore
Information Technology Sr. Support Analyst at TEKsystemsInformation Technology Sr. Support Analyst at TEKsystems
Toni YoungbloodToni Youngblood
Licensed Realtor at DFW Britestar Realty PLLCLicensed Realtor at DFW Britestar Realty PLLC