02/19/2024 updated
VM
100 % available
Splunk Enterprise/Splunk SOAR Architect
Belo Horizonte, Brazil
Worldwide
Java (Programming Language)Active DirectoryApplication Programming Interfaces (APIs)Apache HTTP ServerApplication Lifecycle ManagementBackup DevicesC Sharp (Programming Language)UnixCloud ComputingComputer ProgrammingDatabasesData CentersExtract Transform Load (ETL)Data RetentionDatabase ServersDesktop ComputingDisaster RecoveryWeb ServersIBM NotesIBM Rational SoftwareInternet Information Services (IIS)Issue Tracking SystemsKnowledge ManagementPostgreSQLLog FilesMicrosoft Visual StudioSystem Center Operations ManagementMicrosoft ServersMicrosoft SQL ServersSystem Center Configuration ManagerTeam Foundation ServerWindows ServersNetwork AdministrationOracle ApplicationsRegular ExpressionsRemote AccessZabbixNetwork RoutersData ProcessingEnterprise Application PlatformData IngestionOracle Enterprise ManagerSystem AvailabilitySybaseFirewalls (Computer Science)SplunkNetwork ServerText FilesServicenowControl MOracledb
Active Directory, Apache, Application Management, API, backing up, C#, cloud, programming, Control-M, Data Center, data ingestion, data filtering, data retention, Database servers, database, computers, disaster recovery, enterprise applications, ETL, firewall, Lotus Notes, IBM Rational, IT Infrastructure, IIS, support ticket, Java, Knowledge Management, log files, Access, Outlook, MSSQL, SQL Server, Microsoft System Center, Microsoft Visual Studio, network management, router, Servers, Oracle, Oracle Enterprise Manager, Oracle DB, PostgreSQL, Regular Expressions, SOAR, ServiceNow, Splunk, SyBase, high availability, System Center Configuration Manager, SCCM, SCOM, Team Foundation Server, TFS, text files, Unix, Web Server, Windows Server, Zabbix
Languages
EnglishNative speakerPortugueseNative speaker
Project history
Continuing my path as Splunk administrator at Dell, I have been also working
with Splunk SOAR (Phantom) as Architect and Application Owner, responsible
for building up the whole environment and customizing it to fit our needs at
Dell. Currently offering SOAR for several internal teams with 300+ active
playbooks and automations for automatic remediation/investigation along with
partnership on the security orchestration part of Phantom at Dell. In addition to
that, being responsible for the API integration part from Splunk with Dell Digital
Cloud to offer our users a frictionless request way to get monitors deployed,
and providing consultancy for other internal teams to develop the same level of
integration.
with Splunk SOAR (Phantom) as Architect and Application Owner, responsible
for building up the whole environment and customizing it to fit our needs at
Dell. Currently offering SOAR for several internal teams with 300+ active
playbooks and automations for automatic remediation/investigation along with
partnership on the security orchestration part of Phantom at Dell. In addition to
that, being responsible for the API integration part from Splunk with Dell Digital
Cloud to offer our users a frictionless request way to get monitors deployed,
and providing consultancy for other internal teams to develop the same level of
integration.
As Splunk administrator, I work with Splunk deployment across our
infrastructure to collect the data, managing data filtering and complex
extraction to transform raw logs into structured data by extracting complex
fields from different types of log files using Regular Expressions.
As part of innovation, working also with automation of tasks and features by
using the native API structure, Control-M and Bladelogic Server Automation
jobs running custom scripts to either proactively identify situations that could
harm us and fix them before that or remediate unexpected events in a 24/7
schedule. I'm also the currently SME of integration with external apps such
as ServiceNow, enabling Splunk ability to transform events into events in the
ITSM tool.
Monitor and track Splunk performance problems along with the customer and
interfacing recurring sessions with the vendor.
Started in 2019 to work with Splunk Phantom SOAR tool, becoming the
technical owner and currently certified as Phantom Administrator by Splunk.
infrastructure to collect the data, managing data filtering and complex
extraction to transform raw logs into structured data by extracting complex
fields from different types of log files using Regular Expressions.
As part of innovation, working also with automation of tasks and features by
using the native API structure, Control-M and Bladelogic Server Automation
jobs running custom scripts to either proactively identify situations that could
harm us and fix them before that or remediate unexpected events in a 24/7
schedule. I'm also the currently SME of integration with external apps such
as ServiceNow, enabling Splunk ability to transform events into events in the
ITSM tool.
Monitor and track Splunk performance problems along with the customer and
interfacing recurring sessions with the vendor.
Started in 2019 to work with Splunk Phantom SOAR tool, becoming the
technical owner and currently certified as Phantom Administrator by Splunk.
Responsible for the second level of support (L2 analyst) for IT division of
Dell Technologies company, providing 24x7 coverage through assigned
shifts and on-call rotations. Supporting critical production applications and
working closely with Development, Automation and Testing Teams, as well as
various shared services groups (vendors) in order to maintain our portfolio of
enterprise applications and their correlated working properly during all days
and nights.
In the principal accountabilities, I would highlight the Ticket Management
to analysis and prevention of root cause, Crisis Management during crisis
conditions/bridge conferences, Knowledge Management developing and
documenting of key support aspects, Customer Interface interacting regularly
with global team members and Change Management for the launch of new
code into production during the scheduled maintenance windows.
I would also point it out the daily contact with technologies such as Microsoft
Visual Studio Team Foundation Server (TFS), Microsoft System Center
Operations Manager (SCOM) Servers and System Center Configuration
Manager (SCCM), Oracle Enterprise Manager (OEM12c), BMC Control-M
jobs scheduling routine/servers, Unix-based OS and third-party monitoring,
management and data-related applications, ServiceNow ticket/event
management.
Dell Technologies company, providing 24x7 coverage through assigned
shifts and on-call rotations. Supporting critical production applications and
working closely with Development, Automation and Testing Teams, as well as
various shared services groups (vendors) in order to maintain our portfolio of
enterprise applications and their correlated working properly during all days
and nights.
In the principal accountabilities, I would highlight the Ticket Management
to analysis and prevention of root cause, Crisis Management during crisis
conditions/bridge conferences, Knowledge Management developing and
documenting of key support aspects, Customer Interface interacting regularly
with global team members and Change Management for the launch of new
code into production during the scheduled maintenance windows.
I would also point it out the daily contact with technologies such as Microsoft
Visual Studio Team Foundation Server (TFS), Microsoft System Center
Operations Manager (SCOM) Servers and System Center Configuration
Manager (SCCM), Oracle Enterprise Manager (OEM12c), BMC Control-M
jobs scheduling routine/servers, Unix-based OS and third-party monitoring,
management and data-related applications, ServiceNow ticket/event
management.