Seemanshu Bhatia

Product Manager

Delhi, India8 yrs 9 mos experience

Most Likely To Switch

Key Highlights

8+ years of IT experience with Splunk expertise.
Led a team of Splunk engineers in a major financial institution.
Proficient in developing security use-cases and dashboards.

Stackforce AI infers this person is a Cybersecurity and IT Operations expert with strong Splunk capabilities.

Contact

Skills

Core Skills

Splunk ObservabilityKubernetesSplunk EnterpriseSiemSplunk Enterprise SecuritySplunk Itsi

Other Skills

AnsibleApplication Performance MonitoringCC++Capacity PlanningCascading Style Sheets (CSS)Comptia Security+CrowdstrikeCybersecurityData AnalysisData AnalyticsElastic Stack (ELK)ElasticSearchGitGitHub

About

- Having 8+ years of experience in IT field with strong experience in Splunk Observability Cloud and Splunk Enterprise(Admin and Development) DevOps, and SIEM. Also, experience in leading and managing a team of Splunk engineers. - CompTIA Security+ certified - Splunk Certified Admin. - DevOps: Experience on Jenkins, Git, Github, BitBucket, Red Hat(RHEL), Shell, SQL Server, ELK Stack, Unix, Linux, Windows Server, Citrix Server, and Splunk. - SIEM: Experience on Crowdstrike, Incident Handling, Threat Hunting, Usecase development and Splunk- SIEM, Building Security Use Cases, and working on Splunk Enterprise Security App. - I have worked on the integration of Splunk with tools like Oracle/MySQL Database, SolarWinds, HPDP, NetApp, CommVault, SNOW, MoogSoft, etc using various data input methods including Rest Modular Input, Scripted Input, Db Connect, Add-on and created dashboards showcasing performance, capacity. - Proficient with Splunk deployment consisting of search heads, indexers, universal /heavy forwarders, deployment server, cluster master, deployer, License model. - Manipulating raw data and defining search time extractions. - Worked on Splunk configuration files (inputs, outputs, props, transforms). - Creating dynamic dashboards and reporting. - Hands-on field alias, field extraction, lookups, calculated fields and macros. - Involved in ITIL processes such as Incident Management, Problem Management, and Change Management.

Experience

Transaction network services

Observability Engineer

Sep 2023 – Present · 2 yrs 6 mos · Noida, Uttar Pradesh, India

> Instrumenting APM logs & Traces in Splunk Observability
> developing Dashboards in Splunk Observability using Signal Flow.
> Instrumenting Kubernetes logs into the Splunk Onbservability
> Ingesting APM logs and Metrices in Splunk Observability.
> Managing Splunk Cloud and its environment (including Hybrid and On-Prem Search Heads).
> Building Ansible scripts for automating and managing the otel agents and gateway setup over multiple servers and hosts.

Splunk ObservabilitySignal FlowKubernetesAnsible

Morgan stanley

Manager

Jun 2021 – Sep 2023 · 2 yrs 3 mos

> Technically managing and leading a team of Splunk engineers.
> Working on Splunk Enterprise and SIEM for developing different reports and dashboards.
> Onboarding data into Splunk - working with various conf files(inputs, index, props) and Splunk
components (forwarder, indexer, and search head).
> Experience with hands-on experience in Build Release management.
> Used GIT and BitBucket as source code repositories, managed for branching, merging, and tagging the
files.
> Automated build and deployment using Jenkins as part of Continuous Integration.
> Managed and developed dashboards for various Mainframe Computing and Security teams.

Splunk EnterpriseSIEMGitJenkins

Allstate india

Splunk SIEM Developer - Allstate Information Security

Mar 2020 – Jun 2021 · 1 yr 3 mos · Bengaluru, Karnataka, India

> Working on Splunk Enterprise Security Application and building security use-cases.
> Developing different kinds of interactive dashboards for different teams like - Threat Hunting, Incident
Handling, and Vulnerability Management
> Working with SOC and Incident Handlers for resolving the incidents and Problem tickets over SIEM.
> Log ingestion management and onboarding of different logs for various products and applications
> Working on Crowdstrike endpoint application for managing and investing different threats in the
environment.
>Troubleshoot Splunk searches, Server, and Forwarder issues.

Splunk Enterprise SecurityCrowdstrikeThreat HuntingSIEM

Hcl technologies

Senior Analyst

Jul 2017 – Mar 2020 · 2 yrs 8 mos · SEZ

> Have worked on Splunk projects from domains like Banking, Pharmaceuticals, Finance, Security, and
Logistics sector.
> Experience with Splunk Enterprise, Splunk ITSI, Splunk DB Connect, configuring and implementing, and
supporting Splunk Server Infrastructure across Windows, UNIX, and Linux.
> Configuring Splunk ITSI at the secondary layer of the monitoring environment
> Configured Auto-ticketing on ServiceNow using Correlation Searches and Aggregation Policies
> Monitor Splunk Infrastructure for capacity planning and optimization.

Splunk ITSIServiceNowCapacity PlanningSplunk Enterprise