Summary
Overview
Work History
Education
Skills
Certification
Timeline
Generic

Pruthvi Krishna Polavarapu

Splunk Admin/Architect
Concord,NORTH CAROLINA

Summary

- 10+ years of IT experience and 5+ years of experience with Splunk - Enterprise Splunk, Splunk ITSI, Splunk DB Connect, Splunk configuring, implementing, and supporting Splunk

Server Infrastructure across Windows, UNIX and Linux.

- Extensive knowledge of Splunk architecture and various components. Passionate about Machine data and operational Intelligence.

-Responsible for Implementing ITSI in clustered environment.

-Extensively Created and managed NEAP Policies, Glasstables and services in ITSI.

-Experience with creating correlation searches and respective notable aggregation policies in Splunk ITSI.

-Good Understanding in analyzing Splunk episodes and notable events.

- Having experience in understanding of Splunk 8.x and 9.x product, Distributed Splunk architecture and components including search heads, indexers, forwarders.

-Implemented security use cases to alert on Vulnerabilities by mapping logs to MITRE framework.

- Developed lot of customized scripts in Splunk to enable remediation's to be done directly from Splunk.

- Great understanding on ongoing vulnerabilities and remediation's.

- Good Understanding of Public Cloud and built cloud Templates.

-Enabled Salt infrastructure to manage complete Splunk infrastructure- used this for patching and managing nodes.

- Expertise in Splunk Enterprise architecture such as Search Heads, Indexers, Deployment server, Deployer, License Master, Heavy/Universal Forwarders.

- Headed Proof-of-Concepts on Splunk implementation, splunk indexing and plugins, mentored and guided other team members on Understanding the use case of Splunk.

- Extensively used Splunk ITSI and Phantom for operational requirements.

- Built advanced and interactive dashboards using Splunk Studio.\

- Experience on log parsing, complex Splunk searches, including external table lookups, Splunk data flow, components, features and product capability.

- Experience on Splunk query language and Monitored Database Connection Health by using Splunk DB connect health dashboards.

- In depth and extensive Knowledge in setting up alerts and Monitoring recipes from the Machine generated data.

- Exposure to Application Servers like Web Logic, IBM Web Sphere, JBoss and Apache Tomcat Web Server.

- Experience in PL/SQL programming - Stored Procedures, Functions, Packages, SQL tuning, and creation of Oracle Objects - Tables, Views, Materialized Views, Triggers,

- Expertise in SOX/PCI, System Enterprise Reporting, and performance tuning of use case reports.

Overview

13
13
years of professional experience
8
8
Certifications

Work History

Splunk Architect

Ebay.Inc
06.2017 - Current
  • Manage ~300 Splunk indexers handling 20 TB of daily ingestion
  • Deployed Salt infrastructure to manage patching for Splunk infrastructure
  • Upgraded Splunk ES from 6.x to 7.x, Enterprise from 7.x to 8.x to 9.x
  • Creating, maintain, support, repair, customizing System & Splunk applications, search queries and Dashboards.
  • Worked on enhancing Splunk search performance by expanding one node SH to 7 node SH Cluster
  • On boarded new data into a multi-tiered Splunk environment
  • Deploy new Splunk systems and Monitor Splunk internal logs from monitoring Console (MC) to identify and troubleshoot existing or potential issues
  • Responsible for Implementing ITSI in clustered environment.
  • Served as primary admin for Splunk ITSI
  • Created and managed Glass Tables in ITSI
  • Responsible for onboarding entities, creating services and managing NEAP Policies according to orgs requirements.
  • Experience with creating correlation searches and respective notable aggregation policies in Splunk ITSI
  • Good Understanding in analyzing Splunk episodes and notable events helping SOC for incident resolution.
  • Worked on uploading and analyzing entities in Splunk ITSI.
  • Integrated different applications like Servicenow with Splunk ITSI to create Incidents/events in Splunk for various applications
  • Integrated and enabled security monitoring for Public Cloud like GCP and automated the logging process.
  • Correlating events from a Network, OS, Anti-Virus, IDS/ IPS, Firewalls or Proxies and handing it to CSIRT for analyzing them to identify possible threats
  • Good in depth knowledge on Security Monitoring enabling alerting for CSIRT.
  • Good understand of MITRE Frameworks and Ransomeware updates.
  • Worked on designing scripts to automate SPLUNK maintenance and alerting tasks
  • Support SPLUNK on UNIX, Linux and Windows-based platforms
  • Automated splunk windows deployments using powershell scripts.
  • Good level understating with Splunk Enterprise in CIM, Data models, Event management and Tags
  • Expertise knowledge and experience with Normalization and Data Modeling, specifically in a Splunk environment
  • Worked on using HDR(Hadoop Data Roll) to handle retention data.
  • Good Understanding on Cloud environment, worked on implementing Splunk cluster on GCP environment
  • Conducted security audits to identify vulnerabilities on infrastructure.
  • Monitored use of data files and regulated access to protect secure information by integrating with FIM.

Splunk Developer

Veridic Solutions
12.2016 - 07.2017
  • Splunk implementation, planning, customization, integration with Application servers, big data and statistical and analytical modelling
  • Worked on Splunk Enterprise version 5.x & 6.x with indexing rate of 300 GB/day
  • On boarded new data into a multi-tiered Splunk environment
  • Configured and Maintained Splunk forwarders across different platforms
  • Created Glasstables in Splunk ITSI for multiple data sources.
  • Created Dashboards, Visualizations, Statistical reports, scheduled searches, alerts.
  • Experienced in Splunk user administration and created custom ITSI roles for specific requirements.
  • Configuration and administration of Connection pools for JDBC connections
  • Splunk DB Connect 2.0 in search head environments of Oracle, MySQL
  • Designed and maintained production quality Splunk dashboards
  • Worked on new indexers and search head in Cluster environment on Linux platform with Splunk 6.4 version
  • Monitor and Support Splunk ITSI deployment and management
  • Used HUNK to pull the unstructured data from HDFS data into the Splunk environment
  • Create, test and deploying operational search strings
  • Standardize Splunk forwarder deployment, configuration and maintenance in Linux and windows platforms
  • Extensively used Splunk Search Processing Language (SPL) queries, Reports, Alerts and Dashboards
  • Worked on log parsing, complex Splunk searches, including external table lookups
  • Used RegEx (regular expressions) for field extraction
  • Worked on different apps in Splunk like JVM for Tomcat, DB connect, Windows Infrastructure setup for windows performance, Nmon for linux/unix/aix performance
  • Environment: Splunk, Linux, UNIX, Python, HUNK, AWS, MS SQL Server2012, SQL.

Software Developer

Tech Mahindra
06.2011 - 04.2015
  • Involved in development of Software Development Life Cycle (SDLC) and UML diagrams like Use Case Diagrams, Class Diagrams and Sequence Diagrams to represent the detail design phase
  • Create new tables, views, indexes and user defined functions
  • Perform daily database backup & restoration and monitor the performance of Database Server
  • Actively designed database to fasten certain daily jobs and stored procedures
  • Optimized query performance by creating indexes
  • Developed Stored Procedures, Views to be used to supply data for all reports
  • Complex formulas were used to show derived fields and to format data based on specific conditions
  • Involved in Administration of SQL Server by creating users & login ids with appropriate roles & grant privileges to users and roles
  • Worked on authentication modules to provide controlled access to users on various modules
  • Create joins and sub-queries for complex queries involving multiple tables
  • Developed stored procedures and triggers using PL/SQL in order to calculate and update tables to implement business logic
  • Responsible for report generation using SQL Server Reporting Services (SSRS) and Crystal Reports based on business requirements
  • Developed complex SQL queries to perform efficient data retrieval operations including stored procedures, triggers etc
  • Designed and Implemented tables and indexes using SQL Server
  • Eclipse, Java/J2EE, Oracle, HTML, PL/SQL, Oracle, XML, SQL.

Education

Masters - Engineering Management

University of Houston Clear Lake

Bachelors - Electronics and communication engineering

Nagarjuna University

Skills

TECHNICAL SKILLSundefined

Certification

Splunk User

Timeline

GCP-Associate

10-2023

CKAD

03-2023

Splunk Power user

01-2023

Splunk Admin

01-2023

Splunk User

02-2022

Splunk Architect

01-2022

SEC 301

07-2021

Splunk Architect

Ebay.Inc
06.2017 - Current

Splunk Developer

Veridic Solutions
12.2016 - 07.2017

Software Developer

Tech Mahindra
06.2011 - 04.2015

Masters - Engineering Management

University of Houston Clear Lake

Bachelors - Electronics and communication engineering

Nagarjuna University
Pruthvi Krishna PolavarapuSplunk Admin/Architect