Splunk Operations Lead

Date Opened: Oct 15, 2021

Location: IN

Company: Allstate Insurance Company

Job Description

Senior level technician role within Allstate's Global Fusion Center. Responsible for the installation, maintenance, configuration, and integrity of the Enterprise Log Management and Analytics and Security information and Event Management solution Splunk. May also include other/future Global Fusion Center systems, tools and related software.  You will practice and be the champion of Operational delivery ensuring best practices and the availability of our services.

You will actively drive the decision-making process of the team ensuring that appropriate technology and design is chosen to meet user needs. You will collaborate with engineering partners and coach team members, creating an environment of continuous learning, and constantly challenging and stretching the knowledge of the team.

Job Responsibilities

  • Support and Administering Splunk solutions
  • Integrating Splunk with a wide variety of legacy data sources that use various protocols
  • Consulting with customers to customize and configure Splunk in order to meet their requirements
  • Technical writing of formal documentation such as reports, training material, slide decks, and architecture diagrams
  • Direct, review and validate the work of more junior engineers serving as Subject Matter Expert for requirements within areas of responsibility
  • Provide leadership and technical guidance in project management, planning, task definition, estimating, reporting, scheduling, and workflow
  • Develop, update, and advocate for the technical direction of product/solution
  • Encourage healthy debate between team members and facilitate the decision-making process
  • Take on distractions to allow the rest of the team to work more effectively
  • See and find workarounds for challenges the team will face in advance
  • Delegate responsibility to capable and appropriate team members

Primary Skills



  • Supporting and deploying Splunk Enterprise implementations in medium to large size installations
  • 4 - 6 years Spunk Enterprise Experience engineering, configuring, deploying, and customizing the tool, preferably both in supporting the application and utilizing the application for information security monitoring, incident response, and compliance
  • Active knowledge of SIEM experience corresponding to maintenance, administration, and utilization of tool a plus.
  • Ability to create visualizations in Splunk and custom queries to manipulate views.
  • Excellent skills in systems management and experience with monitoring and alerting solutions
  • Expert knowledge of a scripting language and UNIX command line.
  • Effectively communicate, not only with other engineers, but also with leadership, product managers, stakeholders, designers, and anyone who might have a need to express relevant ideas.
  • Bachelor’s degree in IT related field

Shift Timing

General ASPL shift timings