Ayan Infotech has an urgent and immediate requirement for a Splunk Data Administrator for a long term contract job opportunity in Melbourne.
All applicants must have full unrestricted work rights in Australia.
Title: Splunk Data Administrator
Location: Melbourne
Type: Contract (6 months +)
Required Skills and Experience:
Splunk:
- Good understanding of Splunk architecture and its components (Search Heads, Indexers, Deployers).
- Experience in managing and troubleshooting Splunk distributed environments (clusters), Splunk upgrade and migration .
Operating Systems & Cloud Platforms:
- Expertise in Linux systems, specifically RHEL and Amazon Linux.
- Experience with AWS services, including EC2, S3, IAM, VPC, Subnets, Security Groups and CloudWatch.
DevOps & Automation Tools:
- Experience with Jenkins pipelines and CI/CD processes, Ansible for configuration management and automation, Terraform for infrastructure provisioning.
- Ability to write custom Ansible playbooks and Terraform modules for system management and scripting languages like Bash, Python, or Shell for automation tasks.
Required Skills & Experience
- 5-10 years experience with Splunk administration and data onboarding (or equivalent depth).
- Strong practical knowledge of:
- CIM normalization, tags/eventtypes, datamodel alignment
- Field extraction (regex, JSON/KV extraction), and troubleshooting parsing issues
- props.conf / transforms.conf, sourcetypes, timestamps, line-breaking
- TA installation/configuration and deployment patterns across Splunk tiers - Experience with complex Splunk architectures:
- Indexer clusters, SH/SHC, forwarder management, deployment server
- Hybrid patterns (on-prem + cloud), connectivity, and ingestion strategies - Comfortable writing and validating SPL for data quality and CIM compliance.
- Strong log source knowledge across common domains:
- Security: EDR, firewall, proxy, IAM/auth, VPN, email security
- Infrastructure: Windows, Linux, network devices, virtualization
- Cloud: AWS/Azure/GCP logging patterns (nice-to-have)
Contact: 02 9412 4178 for more details.
www.ayaninfotech.com
