Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Pruthvi Krishna Polavarapu

Splunk Admin/Architect
Concord,NORTH CAROLINA

Summary

- 10+ years of IT experience and 5+ years of experience with Splunk - Enterprise Splunk, Splunk ITSI, Splunk DB Connect, Splunk configuring, implementing, and supporting Splunk

Server Infrastructure across Windows, UNIX and Linux.

- Extensive knowledge of Splunk architecture and various components. Passionate about Machine data and operational Intelligence.

-Responsible for Implementing ITSI in clustered environment.

-Extensively Created and managed NEAP Policies, Glasstables and services in ITSI.

-Experience with creating correlation searches and respective notable aggregation policies in Splunk ITSI.

-Good Understanding in analyzing Splunk episodes and notable events.

- Having experience in understanding of Splunk 8.x and 9.x product, Distributed Splunk architecture and components including search heads, indexers, forwarders.

-Implemented security use cases to alert on Vulnerabilities by mapping logs to MITRE framework.

- Developed lot of customized scripts in Splunk to enable remediation's to be done directly from Splunk.

- Great understanding on ongoing vulnerabilities and remediation's.

- Good Understanding of Public Cloud and built cloud Templates.

-Enabled Salt infrastructure to manage complete Splunk infrastructure- used this for patching and managing nodes.

- Expertise in Splunk Enterprise architecture such as Search Heads, Indexers, Deployment server, Deployer, License Master, Heavy/Universal Forwarders.

- Headed Proof-of-Concepts on Splunk implementation, splunk indexing and plugins, mentored and guided other team members on Understanding the use case of Splunk.

- Extensively used Splunk ITSI and Phantom for operational requirements.

- Built advanced and interactive dashboards using Splunk Studio.\

- Experience on log parsing, complex Splunk searches, including external table lookups, Splunk data flow, components, features and product capability.

- Experience on Splunk query language and Monitored Database Connection Health by using Splunk DB connect health dashboards.

- In depth and extensive Knowledge in setting up alerts and Monitoring recipes from the Machine generated data.

- Exposure to Application Servers like Web Logic, IBM Web Sphere, JBoss and Apache Tomcat Web Server.

- Experience in PL/SQL programming - Stored Procedures, Functions, Packages, SQL tuning, and creation of Oracle Objects - Tables, Views, Materialized Views, Triggers,

- Expertise in SOX/PCI, System Enterprise Reporting, and performance tuning of use case reports.

Overview

13
13
years of professional experience
8
8
Certifications

Work History

Splunk Architect

Ebay.Inc
06.2017 - Current
  • Manage ~300 Splunk indexers handling 20 TB of daily ingestion
  • Deployed Salt infrastructure to manage patching for Splunk infrastructure
  • Upgraded Splunk ES from 6.x to 7.x, Enterprise from 7.x to 8.x to 9.x
  • Creating, maintain, support, repair, customizing System & Splunk applications, search queries and Dashboards.
  • Worked on enhancing Splunk search performance by expanding one node SH to 7 node SH Cluster
  • On boarded new data into a multi-tiered Splunk environment
  • Deploy new Splunk systems and Monitor Splunk internal logs from monitoring Console (MC) to identify and troubleshoot existing or potential issues
  • Responsible for Implementing ITSI in clustered environment.
  • Served as primary admin for Splunk ITSI
  • Created and managed Glass Tables in ITSI
  • Responsible for onboarding entities, creating services and managing NEAP Policies according to orgs requirements.
  • Experience with creating correlation searches and respective notable aggregation policies in Splunk ITSI
  • Good Understanding in analyzing Splunk episodes and notable events helping SOC for incident resolution.
  • Worked on uploading and analyzing entities in Splunk ITSI.
  • Integrated different applications like Servicenow with Splunk ITSI to create Incidents/events in Splunk for various applications
  • Integrated and enabled security monitoring for Public Cloud like GCP and automated the logging process.
  • Correlating events from a Network, OS, Anti-Virus, IDS/ IPS, Firewalls or Proxies and handing it to CSIRT for analyzing them to identify possible threats
  • Good in depth knowledge on Security Monitoring enabling alerting for CSIRT.
  • Good understand of MITRE Frameworks and Ransomeware updates.
  • Worked on designing scripts to automate SPLUNK maintenance and alerting tasks
  • Support SPLUNK on UNIX, Linux and Windows-based platforms
  • Automated splunk windows deployments using powershell scripts.
  • Good level understating with Splunk Enterprise in CIM, Data models, Event management and Tags
  • Expertise knowledge and experience with Normalization and Data Modeling, specifically in a Splunk environment
  • Worked on using HDR(Hadoop Data Roll) to handle retention data.
  • Good Understanding on Cloud environment, worked on implementing Splunk cluster on GCP environment
  • Conducted security audits to identify vulnerabilities on infrastructure.
  • Monitored use of data files and regulated access to protect secure information by integrating with FIM.

Splunk Developer

Veridic Solutions
12.2016 - 07.2017
  • Splunk implementation, planning, customization, integration with Application servers, big data and statistical and analytical modelling
  • Worked on Splunk Enterprise version 5.x & 6.x with indexing rate of 300 GB/day
  • On boarded new data into a multi-tiered Splunk environment
  • Configured and Maintained Splunk forwarders across different platforms
  • Created Glasstables in Splunk ITSI for multiple data sources.
  • Created Dashboards, Visualizations, Statistical reports, scheduled searches, alerts.
  • Experienced in Splunk user administration and created custom ITSI roles for specific requirements.
  • Configuration and administration of Connection pools for JDBC connections
  • Splunk DB Connect 2.0 in search head environments of Oracle, MySQL
  • Designed and maintained production quality Splunk dashboards
  • Worked on new indexers and search head in Cluster environment on Linux platform with Splunk 6.4 version
  • Monitor and Support Splunk ITSI deployment and management
  • Used HUNK to pull the unstructured data from HDFS data into the Splunk environment
  • Create, test and deploying operational search strings
  • Standardize Splunk forwarder deployment, configuration and maintenance in Linux and windows platforms
  • Extensively used Splunk Search Processing Language (SPL) queries, Reports, Alerts and Dashboards
  • Worked on log parsing, complex Splunk searches, including external table lookups
  • Used RegEx (regular expressions) for field extraction
  • Worked on different apps in Splunk like JVM for Tomcat, DB connect, Windows Infrastructure setup for windows performance, Nmon for linux/unix/aix performance
  • Environment: Splunk, Linux, UNIX, Python, HUNK, AWS, MS SQL Server2012, SQL.

Software Developer

Tech Mahindra
06.2011 - 04.2015
  • Involved in development of Software Development Life Cycle (SDLC) and UML diagrams like Use Case Diagrams, Class Diagrams and Sequence Diagrams to represent the detail design phase
  • Create new tables, views, indexes and user defined functions
  • Perform daily database backup & restoration and monitor the performance of Database Server
  • Actively designed database to fasten certain daily jobs and stored procedures
  • Optimized query performance by creating indexes
  • Developed Stored Procedures, Views to be used to supply data for all reports
  • Complex formulas were used to show derived fields and to format data based on specific conditions
  • Involved in Administration of SQL Server by creating users & login ids with appropriate roles & grant privileges to users and roles
  • Worked on authentication modules to provide controlled access to users on various modules
  • Create joins and sub-queries for complex queries involving multiple tables
  • Developed stored procedures and triggers using PL/SQL in order to calculate and update tables to implement business logic
  • Responsible for report generation using SQL Server Reporting Services (SSRS) and Crystal Reports based on business requirements
  • Developed complex SQL queries to perform efficient data retrieval operations including stored procedures, triggers etc
  • Designed and Implemented tables and indexes using SQL Server
  • Eclipse, Java/J2EE, Oracle, HTML, PL/SQL, Oracle, XML, SQL.

Education

Masters - Engineering Management

University of Houston Clear Lake

Bachelors - Electronics and communication engineering

Nagarjuna University

Skills

TECHNICAL SKILLS

Splunk Enterprise Suite,ITSI, Splunk ES

Oracle, No SQL DB's

GIT

HTML

GCP, Azure

Kubernetes,Docker,GKE

Python, GO,PowerShell

Salt,Ansible

Certification

Splunk User

Timeline

GCP-Associate

10-2023

CKAD

03-2023

Splunk Power user

01-2023

Splunk Admin

01-2023

Splunk User

02-2022

Splunk Architect

01-2022

SEC 301

07-2021

Splunk Architect

Ebay.Inc
06.2017 - Current

Splunk Developer

Veridic Solutions
12.2016 - 07.2017

Software Developer

Tech Mahindra
06.2011 - 04.2015

Masters - Engineering Management

University of Houston Clear Lake

Bachelors - Electronics and communication engineering

Nagarjuna University

Similar Profiles

CREATE PROFILE
Pruthvi Krishna PolavarapuSplunk Admin/Architect