Summary
Overview
Work History
Education
Skills
Timeline
Generic

Sateesh K

Summary

A Senior Splunk Engineer having 12 years of Professional experience in the Information Technology. IT Professional with ability to Design, Develop Splunk and Continuous Monitoring, Integration, Continuous Delivery, Monitoring and Reporting, Build/Release management, Configuration Management, Linux/Windows/Cloud administration and support.

Overview

15
15
years of professional experience

Work History

Senior Splunk Engineer | Splunk

Peraton
06.2024 - Current
  • Company Overview: Peraton is a leading national security company that provides innovative, mission-critical solutions in space, cyber, defense, intelligence, and homeland security for U.S. government agencies.
  • Engineered and maintained Splunk infrastructure, including installations, upgrades, and onboarding of data from diverse sources such as firewalls, networks, IT applications, databases, and cloud services.
  • Developed dashboards, reports, alerts, and custom Splunk applications with built-in visualizations to support the Enterprise Data Management and Monitoring team.
  • Administered Splunk environments, including data onboarding, deployment, and maintenance of multi-tenant Splunk clusters.
  • Integrated MongoDB with Splunk using REST APIs and developed performance and usage reports based on MongoDB metrics.
  • Designed and implemented dashboards to monitor virtualization performance and resource utilization.
  • Led efforts in migrating Splunk Enterprise to Splunk Cloud, ensuring seamless transition and data integrity.

Senior Splunk Engineer | Splunk

Amex
05.2023 - 05.2024
  • Company Overview: American Express, commonly known as Amex, is a multinational financial services corporation headquartered in New York City, United States. Founded in 1850, Amex is one of the world's largest credit card issuers and operates a global payments network.
  • Creates and maintains custom apps, dashboards, and visualizations to address specific business needs.
  • Writes and optimizes complex search queries for data analysis and reporting purposes.
  • Develops data inputs and configurations for ingesting different types of data into Splunk.
  • Collaborates with other teams to integrate Splunk with other systems and tools.
  • Utilizes Splunk to monitor and analyze security events and incidents in real-time.
  • Creates and maintains security-related dashboards and alerts for detecting and responding to security threats.
  • Investigates security incidents and performs forensic analysis using Splunk's capabilities.
  • Collaborates with the Splunk Administrator to ensure the security of the Splunk environment itself.
  • Explores and analyzes data using Splunk to gain insights and make data-driven decisions.
  • Creates reports and visualizations for various stakeholders to present meaningful findings.
  • Provides ongoing support and assistance to users in utilizing Splunk for their tasks.
  • Successfully integrated Splunk with various security data sources for comprehensive SIEM coverage.
  • Implemented and customized correlation searches to identify security incidents and threats effectively.
  • Led end-to-end migration of enterprise-scale log analytics infrastructure from Splunk to ELK Stack (Elasticsearch, Logstash, Kibana), ensuring feature parity, data integrity, and zero data loss across a 12-month transition period.
  • Designed scalable, secure ELK Stack clusters with high availability and index lifecycle management (ILM), replacing costly Splunk indexes with efficient Elasticsearch mappings and retention policies.
  • Developed and implemented custom Logstash pipelines to replicate complex Splunk parsing, field extractions, and transformation logic across diverse data sources (Nessus, Forescout, Windows logs, cloud-native logs).
  • Built and optimized Kibana dashboards and visualizations to match existing Splunk panels and reports, delivering equivalent or improved user experiences for operations, DevSecOps, and compliance teams.
  • Automated migration workflows using Ansible and CI/CD pipelines (e.g., GitLab CI, Bitbucket), including scripted index creation, dashboard templating, and role-based access control (RBAC) setup within Kibana.
  • Performed cost analysis and monitoring with Elastic Stack's built-in tools, achieving over 40% reduction in licensing and operational costs compared to Splunk, while maintaining enterprise-grade observability and alerting.

Splunk Engineer | Splunk

CITI BANK, ATOS-SYNTEL
07.2021 - 11.2022
  • Company Overview: Citibank is a major global bank and a subsidiary of Citigroup, one of the largest financial institutions in the world. Citibank had a significant presence in various countries, providing a wide range of banking and financial services.
  • Splunk infrastructure Engineering – Installations, Upgrade and Data onboarding from multiple sources like firewall, network, IT applications, Databases and Cloud services.
  • Onboarded the CloudWatch metrics and Logs into Splunk and created the dashboards and visualizations using SPL and customized it with JavaScript and HTML.
  • Creating Splunk alerts and integrating them with BMC Remedy for ITSM.
  • On boarded data using Cribl stream and Cribl edge. By creating the groups for the data source collection and filtering/parsing before routing to the destinations.
  • Cut down Splunk costs to nearly 30% and saved 5 million of Splunk license by implementing Cribl.
  • Developed both classic and dashboard studio visualizations for monitoring the IT applications and infrastructure.
  • Worked in On-call support team to triage and troubleshoot the incidents in Splunk infrastructure.
  • Developed bash and python scripts to implement the automation for the Splunk deployments and data transformations.

Senior Splunk Consultant/ IT Systems Lead

Progressive Insurance, ValueLabs
07.2020 - 07.2021
  • Company Overview: The Progressive Corporation is an American insurance company, the third largest insurance carrier and the No. 1 commercial auto insurer in the United States. I worked in Enterprise Data Management org in Quoting department.
  • I have developed both dashboards, reports, alerts and custom applications with in-built dashboards for the enterprise data management and monitoring team.
  • Performed Splunk administration activities including Data-onboarding, Deployments and Maintaining Splunk clusters across multi-tenant deployments.
  • I have worked on MongoDB integration with Splunk using RestAPI’s and developed the reports for MongoDB metrics.
  • Worked on DevOps tool set – Ansible, Git and Jenkins for setting up CICD pipeline for Splunk automatic deployments.
  • Created the VMWare dashboards for the VM ware virtualization usage and Monitoring.
  • Worked on Splunk Cloud migration from On-prem Splunk Enterprise.
  • I have worked on SCOM Replacement project with Splunk ITSI and developed services, KPI’s and glass tables for the Enterprise Monitoring Team.
  • Built the custom JS, HTML and CSS scripts to customize the dashboards.

Senior Splunk Administrator/Engineer

Express Scripts, Cognizant Technology Solutions
08.2017 - 03.2020
  • Company Overview: Express Scripts is a pharmacy benefit management organization. It was the 25th-largest in the United States by total revenue as well as the largest pharmacy benefit management organization in the United States. Express Scripts had 2019 sales of $100.752 billion. I work in Splunk center of Excellence Team who provides Splunk as software Solution to both Security Operations and ITOPS.
  • Implemented Splunk in both Cloud – AWS and on perm – Linux Environment.
  • Created Customized Amazon images for the servers and their specifications.
  • Had a strong experience onboarding the data with Syslog-NG and Scripting using Python and Shell.
  • Configured and installed R-Syslog Ng and ingested the data from Syslog into Splunk.
  • Performed the malware analysis by querying the Mcafee databases using Splunk app for DB connect.
  • Worked on Containerization and orchestration using Docker and Kubernetes.
  • Writing Complex SPL searches and developing Dashboards.

Senior Informatica Developer

Cognizant Technology Solutions
03.2014 - 08.2017
  • Understanding the Requirement Specifications.
  • Created Informatica mappings to build business rules to load data.
  • Developed Informatica mappings using different Transformations like Expression, aggregator, Joiner, Lookup.
  • Involved in performance tuning.
  • Preparing the Test cases and unit test documents.
  • Monitoring the daily loads using workflow monitor.

Informatica Developer

Syntel
10.2010 - 01.2014
  • Designing the technical design specifications and program specification documents for ETL jobs.
  • Creating and running sessions and workflows required to load the data into data warehouse from flat files and staging tables.
  • Created reusable transformations and mapplets and used them in mappings.
  • Creating transformations like Normalizer, Router, Lookup, Expression, Joiner, Sequence generator and Update strategy.
  • Creating source to target mappings and developing the ETL mappings using Informatica Power center.
  • Analyzing the problems and providing optimum solutions to customers.
  • Tuning the mappings to achieve better performance.
  • Preparing unit test cases and documentation

Education

Bachelor of Technology - Information Technology

Jawaharlal Nehru Technology University
2007

Skills

  • Design, Develop Splunk and Continuous Monitoring, Integration, Continuous Delivery, Monitoring and Reporting, Build/Release management, Configuration Management, Linux/Windows/Cloud administration and support
  • Supporting, automating, and optimizing mission critical deployments in AWS, leveraging configuration management, CI/CD, and DevOps processes
  • Software Development Life Cycle (SDLC), Software Configuration Management (SCM) in Agile, Scrum and Waterfall methodologies
  • Setting up Splunk infrastructure for Alerting and Splunk Dashboard development
  • Integrated Cloud services – AWS Cloud watch, cloud trail, Athena with Splunk for setting up Observability on the Cloud Infrastructure
  • Migration from Splunk to ELK Stack
  • Designing and deploying scalable Elasticsearch clusters with secure RBAC, ILM policies, and HA
  • Complex Splunk parsing and alerting logic using Logstash pipelines and Kibana visualizations
  • Automated deployment and monitoring workflows via CI/CD and IaC
  • HTTP Triggers in the Azure Functions with Application insights
  • Git as a SCM tool with Azure DevOps (VSTS)
  • Python to collect and send data to Splunk
  • Python to run searches and queries against Splunk data
  • Designing a VPC (Virtual Private Cloud) environment
  • Creating server less architecture by using AWS Lambda, Kinesis and data transfer from on-premises to cloud
  • Configuration of AWS IAM and Security Groups in Public and Private Subnets in VPC
  • Utilizing Splunk Observability (formerly SignalFx) to monitor and analyze application and infrastructure performance in real-time
  • Configuring data collection for metrics, traces, and logs from various sources, such as containers, microservices, and cloud services
  • Custom monitoring dashboards to visualize critical performance metrics

Timeline

Senior Splunk Engineer | Splunk

Peraton
06.2024 - Current

Senior Splunk Engineer | Splunk

Amex
05.2023 - 05.2024

Splunk Engineer | Splunk

CITI BANK, ATOS-SYNTEL
07.2021 - 11.2022

Senior Splunk Consultant/ IT Systems Lead

Progressive Insurance, ValueLabs
07.2020 - 07.2021

Senior Splunk Administrator/Engineer

Express Scripts, Cognizant Technology Solutions
08.2017 - 03.2020

Senior Informatica Developer

Cognizant Technology Solutions
03.2014 - 08.2017

Informatica Developer

Syntel
10.2010 - 01.2014

Bachelor of Technology - Information Technology

Jawaharlal Nehru Technology University

Similar Profiles

CREATE PROFILE
Sateesh K