Splunk Administrator

  • Location

    Farnborough, Hampshire

  • Sector:


  • Job type:


  • Salary:

    £400 - £500 per day

  • Contact:

    Ben Mcrae

  • Contact email:


  • Job ref:


  • Published:

    5 months ago

  • Duration:

    6 Months

  • Expiry date:


  • Start date:


  • Client:


Splunk Administrator


6 Month Contract

Up to £500 per day

As a Splunk Administrator, your primary responsibility will be the build and support of the Splunk environment. This includes the administration and configuration of Enterprise Splunk monitoring suites, application performance management tools, and log correlation tools to ensure system up-time, provides system performance analysis, and troubleshooting for production Windows server environment. The Splunk Administrator will serve as Subject Matter Expert to assist the IT Operations monitoring team


  • Designing system solutions, implementing new features, resolving complex incidents and problems, responding to infrastructure monitoring and alerts, and consultation with application support and development staff.
  • Experience with managing Splunk in a windows environment.
  • Basic Linux administration or Splunk cloud administration.
  • Experience with planning for future Splunk growth, either on premise or cloud.
  • Administer Splunk users and roles.
  • Create advanced searches, reports, dashboards and visualizations.
  • Create field aliases, lookups, and calculated fields.
  • Create and manage alerts.
  • Implementing and configuring index and source types as well as Splunk Apps.
  • Install and manage forwarders, indexers, search heads.
  • Create and manage configuration files like inputs props, transforms, and lookups.
  • Deploy, configure and update Indexers, Search Heads, Heavy Forwarders, and Universal Forwarders as appropriate.
  • Configure/optimize current Indexer configuration, Search Heads/Search Head Clusters, Deployment server & Monitoring Console.
  • Configure/optimize current storage as needed.


  • Bachelor's Degree in Business Technology, Management Information Systems preferred.
  • Must have three (3) years' experience in Splunk Systems Administration enterprise level environment.
  • Splunk Certification is preferred.
  • Security Event and Incident Management (SIEM) knowledge is a plus.
  • Must have strong hardware and software troubleshooting skills.
  • Must have working knowledge of Windows server administration.
  • Must have working knowledge of Active Directory.
  • Must have general understanding of IT network and security procedures and standards.
  • Must have strong analytical and problem solving skills.
  • Must have exceptional communication and interpersonal skills in order to effectively communicate with a wide range of personnel.
  • Must have working knowledge of infrastructure management software such as VMWare vSphere, Hyper V, Citrix, Veeam and the like.
  • Must have working knowledge of server administration such as Microsoft Windows Active Directory, System Center Configuration Manager (SCCM), Systems Center Operations Manager (SCOM), IIS, Windows updates, backups, and reboots.