John Francis K.

Experience

• 

  Portland OR

  Sept 2015 - Jun 2017

  System Analyst
• 

  BMW of North America

  Jun 2017 - Dec 2017

  Sr Splunk Architect
• 

  Express Scripts by Evernorth

  Jan 2018 - Jul 2019

  Sr. Splunk Developer
• 

  NYC Human Resources Administration

  Jul 2019 - Jul 2022

  Splunk Engineer
• 

  Mastercard

  Aug 2022 - now

  Lead Splunk Engineer

  • Developed Splunk infrastructure and related solutions as per business requirements and automation toolsets.• Designed Splunk Cloud Architecture to Integrate with Windows Infrastructure • Integrated ITSI and Unix/Linux Apps to monitor health of the servers. • Monitoring Domain Controller server to push Active Directory logs to splunk.• Splunk expert level understabing with Splunk Enterprise in CIM, Data models, Event management and Tags• Expertised knowledge and experience with Normalization and Data Modeling, specifically in a Splunk environment• Articulated and conveyed advanced technical concepts in presentation on face-to-face related to designing/developing processes that can be understood and followed by splunk developers and administrators• Expert in producing high quality technical documentation for team of experts for project implementation• Monitors, analyzes, enriches and parses logs from a variety technologies across multiple platforms such as IDS/IPS(sourcefire,Dell securework)• Experience in Splunk GUI development creating Splunk apps, searches, Data models, dashboards, and Reports using the Splunk query language.• Responsible for documenting the current architectural configurations and detailed data flow and troubleshooting guides for application support.• Involved as a Splunk Admin in capturing, analyzing and monitoring front end and middle ware applications.• Worked with Client engagements and data onboarding and writing alerts, dashboards using the Search Processing Language (SPL).• Analyzed security based events, risks and reporting instances.• As part of SIEM, monitored notable events through Splunk Enterprise Security (Using V3.0).• Generated Shell Scripts to install Splunk Forwarders on all servers and configure with common Configuration Files such as Bootstrap scripts, Outputs.conf and Inputs.conf files.• Onboard new log sources with log analysis and parsing to enable SIEM correlation. Show less