Shivajyothi Yella

⮚ Handling a team of 5 members and working closure with Clients, majorly on Data Onboardings, creation of Dashboards, reports and Scripting.

⮚ Experience in Large-scale Splunk Environments and applications, including data gathering, all types of Data Integrations and ensures the timely and accurate execution of Splunk administration duties.

⮚ Expertise in Administering core components like Indexers, Cluster master, Search heads, Deployment servers, License master, Deployer and Forwarders.

⮚ Integration of various sources using HECs,UF, Syslogs(using both TCP/UDP), Rest APIs, DB and many more using Splunk Add-ons as well.

⮚ Perform daily system monitoring, verifying the integrity of all hardware, server resources, system processes and review of system and application logs as well.

⮚ Also performed regularly scheduled patching on all the required servers and verify the same in secure-tools track.

⮚ Adding the servers in Nagios as well for monitoring purposes.

⮚ Involved in admin activities and worked on inputs.conf, indexes.conf, props.conf and transforms.conf to set up time zone and time stamp extractions, complex event transformations and whether any event breaking, ensuring accurate parsing. Also using Datamodes for normalizations, and enrichment.

⮚ On boarded various log sources and data normalization, CIM mapping to compliance(almost more than 30 log sources and Splunk TAS)

⮚Experience Working on Ansible to Automate the process of upgrades.

⮚ Proficiency in SPL (Search Processing Language), showcasing the ability to create complex search queries, reports, and dashboards

⮚ Designed complex Splunk queries and dashboards tailored for system performance metrics that informed strategic decisions and improved system uptime by 30%

⮚ Supporting and troubleshooting the entire environment where we are handling 5TB of data ingestion in Splunk.

⮚ High-Level Documentation of Application Architecture, Design process, best practices and maintain JIRA/Confluence for documentation

⮚ Stay up to date on relevant technologies, plug into user groups, understand trends and opportunities to ensure we are using the best possible techniques and tools.

⮚ Data quality and SIEM mappings for Splunk enterprise security product

⮚Expertise in Optimize Splunk indexing, searching, and storage efficiencies

⮚Expertise in integrating various tools to Splunk.

⮚ Expertise using CSS and html to add additional and advanced features to Splunk dashboards.

⮚ Creation of Dashboards with various dropdowns and drilldowns.

⮚ Expertise in creating base searches to make the dashboard load without any delays.

⮚ Expertise to use and group multiple data sources.

⮚ Responsible for completing full , independent review of each requirements/Specifications.

⮚ Extensively worked on test cases to create in order to verify the functionality for dashboard regarding health care cases.

⮚ Experience in setting up dashboards for senior management and production support required to use SPLUNK.

⮚ Develop design of application and Dashboards.

Optimizing long running searches and also experience in creating summary indexes.

⮚ Expertise in developing TAS, field extractions, custom data fields using REGEX and rex features .

⮚ Used custom API to build data connectors and reports for various teams.

⮚ Created KPIs for monitoring team part of ITSI app.

⮚ Worked on various Microsoft Addons in Splunk.

⮚ Monthly metrics and reports for the executive team for various products and needs.

⮚ Created end to end data feed monitoring for SOC teams using Splunk dashboard features

⮚ Used DB connect data and created performance DB for DBA teams.

⮚ Worked with the Windows and Linux team and created ADHOC System reports and dashboards for their needs.

⮚ Manage and support Splunk infrastructure Index cluster SH cluster and Deployer.

⮚ Managed and supported 1000 Plus UFs with 2TBs license on daily with UF/HEC/Syslog traffic.

⮚ Mange support SH cluster and Indexer Cluster and Deployment server on daily maintenance activities

⮚ Involved on Upgrades Version controls and new Indexer and SH setup all maintenance support work.

⮚ Worked with Splunk ES app monitor the threat detection, threat hunting and asset monitoring.

⮚ Created Dashboards, Visualizations, Statistical reports, scheduled searches, alerts and also worked on creating different other knowledge objects for various Apps.

⮚Experience in various Apps integrations to Splunk including Dynatrace using Dynatrace App for Splunk and Dynatrace Add-on for Splunk, SNOW for incident monitorings

⮚ Soc monitoring and privileged access reports data collection.

⮚ Threat monitoring using Splunk Enterprise security app and SPLUNK TA.

⮚ Performed weekly/monthly system maintenance and validation of all the environments.

⮚ Perform Splunk searches to collect various security use case reports.

⮚ Use case creation for various products

⮚ Provide backup support for other network security solutions.

⮚ Expertise in scripting to ingest the data to Splunk using REST APIs.

⮚ Monitoring and dashboard development using Dynatrace.

⮚ Perform install new apps upgrades and Splunk upgrades as timely manner

⮚ Monitor Data gaps for Splunk logs and monitor as per SOC standards.

⮚ Splunk Enterprise security and Correlation searches creation and audit data models.

⮚ Experience in monthly patching ,ensuring servers are compliant.

⮚Performed risk analyses to identify appropriate security countermeasures.

⮚ Created Dashboards, Visualizations, Statistical reports, scheduled searches, alerts and also worked on creating different other knowledge objects.

⮚ Knowledge about Splunk architecture and various components (indexer, forwarder, search head, deployment server), Universal and Heavy forwarder.

⮚ Provide Regular support guidance to Splunk project teams on complex solution and issue resolution.

⮚ Able to create real time data ingestions using Database connections and inputs in Splunk using both batch and Raising columns.

⮚ Expertise with Splunk UI/GUI development and operations roles.

⮚ Involved in helping the UNIX and Splunk administrators to deploy Splunk across the UNIX and windows environment.

Conducted security audits to identify vulnerabilities.

Enhanced project management skills by defining and presenting system solutions and timelines for business needs or technical problems.

Analyzed existing systems and databases and recommended enhancements to solve business needs

Designing and maintaining production-quality Splunk dashboards.

⮚ Troubleshooting of searches for performance issues by adding lookups, correct joins and using summary indexes.

⮚ Scripting and development skills (Shell) with strong knowledge of regular expressions.

⮚ Various types of charts Alert settings Knowledge of app creation, user and role access permissions. Creating and managing app, Create user, role, Permissions to knowledge objects.

⮚ Managed the Splunk Enterprise Deployment.

⮚ Experience in developing various scripts as per the requirement

⮚ Experience in analyzing and optimizing search queries.

⮚ Monitoring the Splunk infrastructure for capacity planning, scalability, and optimization

⮚ Providing 24X7 front line monitoring of Applications and Infrastructure supporting the Client and customers.

⮚Collaborated with upper management to drive strategy and implement new processes.

⮚Maintaining data integrity and security across hybrid cloud and on-premises infrastructures.

⮚ Developed robust, efficient queries that will feed custom Alert, Dashboards and Reports.

⮚ Worked on Splunk search processing language, Splunk dashboards and Splunk dbconnect app.

⮚ Publishing data into Splunk through configurations such as inputs.conf, serverclass.conf, server.conf, apps.conf and Outputs.conf configurations.

⮚ Developed dashboards, data models, reports and optimized their performance.

⮚ Provided engineering expertise and assistance to the Splunk user community.

⮚ Developed Splunk dashboards, data models, reports and applications, indexing, tagging and field extraction in Splunk.

⮚ Troubleshooting various configuration files in Splunk.

⮚ Created Splunk knowledge objects (e.g. fields, lookups, macros, etc).

⮚ Created Alerts on different SLAs and thresholds through Splunk.

⮚ Manipulating raw data and Field extraction.

⮚ Business Activity Monitoring and troubleshooting.

⮚ Good experience on Splunk Search Processing Language (SPL) and Regular expressions.

⮚ Monitor the applications and server infrastructure for optimization, performance and Utilization metrics.

⮚ Experience in teams to resolve the issues and involved in Root cause analysis for the issues encountered developing dashboards and customizing them.

⮚ Implemented various visualization Add-ons to the developed dashboards.

⮚ Help to document best practices in developing and using SPLUNK.

⮚ Experience with Splunk UI/GUI development and/or operations roles.

⮚ Work with business/IT and create the next steps plan and implement the same

⮚Experiencing in Renewing Certs of Management servers by creating csr of Splunk servers and updating web.conf and server.conf .

⮚ Ensuring support tickets are fully updated with the most current data. Provide proper escalations and handoffs to management and support staff.

⮚Performed internal system acceptance to deliver well-tested enhancements and meet business requirements.

⮚Analyzed existing systems and databases and recommended enhancements to solve business needs

⮚Communicated and explained business requirements to team members to understand and implement functional demands.