MOHD SHAKIB KHAN

Splunk Technical Support Engineer

iOPEX Technologies

10.2023 - Current

Working as a Splunk Engineer in both on-premises and cloud environments, responsible for break-fix activities in Splunk. This includes analyzing diagnostics to determine the root cause of issues, implementing fixes, or raising bug tickets with the development team as needed.
Good knowledge of installation & implementation, configuration and troubleshooting of Splunk, in accordance with the data flow on test or prod environment, based on the customer needs and requirements.
To reproduce the issues and collaborating with other departments for technical issues related to Splunk.
Working knowledge on Salesforce and creating knowledge base articles for investigated and resolved issues.
Hands-on experience in handling P2, P3 and P4 tickets on Salesforce and providing quick resolutions/workarounds.
Good knowledge with multiple methods for onboarding the data and on Knowledge Objects.
Resolved search head clustering, Multisite clustering and indexer clustering issue.
Knowledge of ingestion pipeline: parsing, merging, typing, indexing queues.
Understanding of distributed search architecture, indexers, forwarders, cluster configurations, and scaling solutions.
Implemented replication factor and search factor strategies to ensure data consistency and fault tolerance across multiple sites.
Monitoring Console, KV Store (WiredTiger), and performance troubleshooting.
Configuration files - inputs.conf, outputs.conf, server.conf, limits.conf, indexes.conf, props.conf, transforms.conf.
Exposure to Splunk search and reporting, alerts creation, field extraction, tags and aliases, lookups, workflow actions and Configuration.
Linux troubleshooting (logs, CPU/memory/network diagnostics).
Resolved search head clustering, Multisite clustering and indexer clustering issue.
Performing maintenance of Splunk Infrastructure and server health checks.
Troubleshoot the Splunk slowness, Bucket Fix-up and unavailability issues also Monitoring processes utilization, top monitoring utilities.
Resolved high CPU/memory utilization issues on Splunk components by analyzing logs and hardware metrics.
Onboarding of logs from Splunk add-on for Unix and Linux.
Implementing Indexer and Search Head Clustering.
SPL (Search Processing Language) - troubleshooting & data analysis.
Diagnosed queue blockages, parsing issues, cooked connections, and indexing latency.
Supported multi-site indexer clusters and SHC environments with knowledge of raft, captaincy, and replication issues.
Investigated KV Store failures including corruption, WiredTiger migration, and node recovery.
Assisted customers in resolving data onboarding issues: source misconfiguration, sourcetype errors, timestamps, and line-breaking issues.
Knowledge on Correlation searches, notable events, Adaptive Response action, Threat intelligence, CIM, Mission Control, and SIEM.
Collaborated with Cloud Ops, EngOps, and internal dev teams to resolve escalations.

Summary

Overview

Work History

Splunk Technical Support Engineer

Education

B.Tech in Computer Science -

Skills

Certification

Personal Information

Languages

Timeline

Splunk Technical Support Engineer

B.Tech in Computer Science -

Similar Profiles

Vijayan BVijayan B

Eepsha SinghEepsha Singh

Kapil Dharampal PatilKapil Dharampal Patil

Jessie JosephJessie Joseph

Mritunjay Mritunjay null