VIVEK ANAND

Dedicated and experienced Splunk Architect with a proven track record of designing, implementing, and
optimizing Splunk environments to drive operational efficiency and maximize data insights. Seeking to leverage
expertise in Splunk architecture and administration to contribute to the success of a dynamic organization.

[email protected] +91-7406688448

Key Skills Profile Summary

Project Operations & Service Delivery A competent professional offering 17+ years of experience across various
Management Project operations & Delivery Management
Currently associated with HCLTECH. as Associate Consultant -
Splunk SIEM Design and Architecture Implementation of SIEM platform (Splunk)
Extensive experience in architecting, deploying, and managing Splunk
Linux/Unix Administration Enterprise and Splunk Cloud environments.
Single handedly upgraded Splunk to latest release in multisite environment,
30+ components, 60+ apps and deployed 2000+ UF agents.
NOC & SOC Implementation
Working with Multiple customers across the globe on SIEM solutions.
Strong understanding of IT infrastructure, including networking, servers,
Client & Escalation Management storage, and security, to integrate Splunk solutions effectively.
Working on Integrating varies tools into Chronicle SOAR Platform.
Troubleshooting and Debugging Handled 90K Midrange Storage – Enterprise support customers across the
globe by supporting 5 Storage products VNX, UNITY, VNXe, CLARRiiON &
SLA & TAT Management Celera.
Displayed efforts in operations management; led process excellence
Team Building & Leadership initiatives which provided client & business, benefits like increased process
efficiency, reduced cost & risk, and improved quality of service.
Rich experience in conceptualizing, designing, developing, implementing, and
Soft Skills maintaining Networking Solutions & System Administration
Exposure in managing projects on System Administration, Configuration,
Communicator Installation, Upgradation, Maintenance and Troubleshooting; registered
Motivational Leader excellence in configuring, supporting, upgrading, and administering
applications such as OP5, SPLUNK, Spiceworks, SecureWorks, Hyperic
Strategic Thinker
HQ, Open NMS, Mwatch, coDesk, SNAPPiMON, Asset Manager, NOC-I & C-
Collaborative SAT, and so on
Team Player Keen customer-centric approach with skills in addressing client priorities
Innovative and resolving escalations within prescribed TAT, thereby attaining client
delight and high compliance scores; exposure of managing key clients.
Certifications Impeccable record of leading cross-functional multi-cultural teams that
Splunk Certified Architect excel in delivering business value with high morale & low attrition, recruiting,
Splunk – Power & Enterprise training and monitoring the team members for maintaining excellence in the
Admin service operations.
CISA
Cisco Certified Network Associate
ITIL V3 Foundation Certified Career Timeline
CISSP – from Skillsoft
CCOE – Cribl Cerified Admin
Education
Diploma in Electrical and
Eletronics Engineering –
FULLTIME – 85%
BBA -3Yrs – Distance – 65.4%
Personal Details
Date of Birth: 8th November
Languages Known: English,
Malayalam, Tamil, Telugu &Kannada
Address: Based Out of Bangalore
 Technical Skills
Splunk Enterprise & Cloud
Splunk Search Processing Language (SPL)
Integration of CrowdStrike & Cribl with Splunk.
Splunk SIEM & ITSI
Google Chronicle integration
Splunk Enterprise Security (ES)
Threat Intelligence Platforms (TIPs)
Incident Response and Forensics
Network & Endpoint Security
Vulnerability Management
Linux/Unix Administration
Scripting (Python, Bash)
coDesk, SNAPPiMON, Netcool, IBM Tivoli, Nagios, HP OpenView, OpenNMS, Hyperic HQ & SolarWinds
SOC tools: Cylance PROTECT, Prisma, Cybereason, Q radar, Okta, CyberArk,
Implementation of System Center Operations Manager 2012 & Management Packs
Amazon Web Services (AWS), Windows Azure & GCP deployment,
EMC Tools: Voyence & SMARTS, Secure works, RSA.
DELL EMC VNX, VNXe, UNITY, CLARRiiON, Celera
Participating in high level infrastructure design change & mitigation plan.
MSSQL, MySQL & Mongo DB scripting
SDLC, STLC & Agile Methodologies
Work Experience
Since Apr’23 with HCL Tech as Associate Consultant - Implementation
Key Result Areas:
Lead & manage the implementation projects of Splunk ES as well as Splunk enterprise deployment at the global level.

CyberSecurity Fusion Center -MSSP Engineering

Single handedly implemented & upgraded Splunk to latest release in multisite environments, ex.30+ components, 60+ apps
and deployed 2000+ UF agents.
Designed and implemented Splunk architectures tailored to meet clients' requirements, including distributed deployments,
index clustering, and search head clustering.
Working with customers to prepare the implementation strategy of Splunk components.
Conducted training sessions and workshops to educate end-users and administrators on Splunk capabilities, usage, and
best practices.
Managed Splunk infrastructure, including installation, configuration, and ongoing maintenance of Splunk Enterprise and
Splunk Cloud environments.
Developed and implemented best practices for Splunk deployment, configuration, and usage to maximize the value of
Splunk solutions.
Working with the MSSP customers environment and provide value add services and service improvements on regular
basis.
Worked on multiple upgrades from one version to another version as per their requirements.
Worked on revamping of Splunk ES from V4 to latest V7.
Provided technical services to projects, user requests and data queries.
Built custom apps to ingest the logs to Splunk from different applications and platforms.
Built customs apps for pulling the logs through API from the cloud platforms & Applications through REST.
Resolved configuration-based issues in coordination with infrastructure support teams.
Created and configured management reports and dashboards. Developed, evaluated, and documented specific metrics for
management purpose.
Skilled in integrating and normalizing diverse data sources to provide comprehensive security monitoring and analysis.
Strong knowledge of compliance standards and frameworks, including PCI DSS, HIPAA, and NIST, to ensure regulatory
compliance.
Trained Splunk security team members for complex search strings and ES modules.
Analysed security-based events, risks and reporting instances.
Collaborated with stakeholders to gather requirements, define project scope, and develop solutions to meet business
objectives.
Implemented security best practices to secure Splunk environments and data, including role-based access control and data
encryption.
Single Handedly absorbed the Transition KT and derived a whole SOC Process/Procedures for the Environment.
 Created the End to Complete Investigative procedure for the Security Incidents in Splunk ES for the SOC Team Proofpoint
TAP/TRAP, Cybereason EDR, Cylance AV,
Created the SOP’s of all the Process/Procedures which is to be followed in the team.
Reactive and proactive approach of monitoring and Operations through various tools like RiskRecon (3rd Party
Assessment), Imperva WAF, Symantec Antivirus, TrendMicro Antivirus, Office365 Email DLP, RSA Splunk Monitoring,
Forcepoint Websense DLP. Vulnerability Assessment
Creation of Use Cases around the Azure Security Centre for the Splunk Integration.
Creation of SOP around the Threat and Vulnerability Management in the Microsoft Defender.
Created a new process of Threat Advisories which included publishing of New Exploited Vulnerabilities/Zero Day
Vulnerabilities.
Analysis of the Compliance status on all the AV deployed.
Analysis and investigation of all the vulnerabilities on RiscRecon through Passive reconnaissance and providing proper
remediation by Liaising with the respective team for resolution.
Created Daily/Weekly monthly report from different tools and investigating on the trend of alerts being hit on the
organisation.
Working on integrating Google chronicle with Splunk through connectors and create use cases as per the SOP.
Worked with multiple operations teams and normalising the use cases through chronicle.

Aug’22 to Apr’23 with Wipro Limited as Project Manager

Key Result Areas:
Leading a team of 200+ resources and delivering 24/7 DELL EMC Midrange Storage Technical Support working with
Customer base of 90K customers across the global.

Enterprise Support – DELL EMC Midrange Storages

Handling the Monthly technical support volume of 8K cases across the globally per month.
Working with DELL EMC stakeholders on delivering the technical support for the midrange storage level.
Working with Accounts team on engaging the customer renewals and new implementation of the Storage devices.
Resolving & managing escalations and monitoring utilization of existing resources and manpower
Prioritising the Technical Support Engineers to manage the support Queues (Phone, Chat & Dial home Tickets)
Review the daily progress through huddles and meetings along with the Geo managers.
Preparing the weekly action and Metrics to the DELL stakeholders.
Tracking all the channel metrics and forecast the plans to the team to proactive availability.
Working with Partner Vendor manager for immediate resolution and support from DELL EMC on resolving the customer
queries.
Driving the Critical Incidents by implementing the major incident process and update the stakeholders and customer
periodically till closures.
Conduct Periodic backlog reviews and drive for the closures & prioritise the cases.
Driving the SR audit and identify the TSE’s misses and create the internal action plans to avoid the misses.
Drive the process governance along with the Geo managers and maintain the process Uniqueness across the Geo support.
Identify the Technical gaps and highlight the same on the Geo leadership meetings to get the proper KT transferred to L1
and L2 support team.
Driving operational excellence in rendering services while adhering to the Standard Operating Procedures.
Supporting and providing inputs to the baseline cost structure & performance metrics; suggesting action to decrease cost
and improve efficiency.
Developing weekly reports of team performance, conducting meetings, and providing the updates to stakeholders.
Steering daily service delivery, continuous development, and improvement of provider services in accordance with
targets / objectives included in service plans.
Ensuring staff motivation by setting up the R&R Awards for the top performers within the team
Drive the mandatory technical skills through facilitating internal training and EMC training team.
Conceptualizing & implementing Client (DELL EMC) SOPs for accomplishment of business goals
Working with Wipro SLT on the facilities & hiring; designing & streamlining processes to ensure smooth functioning of the
business operations.

June’20 to Aug’22 with Infosys BPM Limited as Technical Operations Manager

Key Result Areas:
Leading a team of 50 members and delivering IT Service support & Platform operations. working with cross-functional
multi-region team from Germany, US and Singapore
Project – GSD & Splunk Platform Operations
GSD Support
Working with Multi-domain Team to look for the automation opportunities in business process management.
Administering critical customer operations within committed SLA in Incident/ PM/ SR/ Change Management (CAB)
Supporting and providing inputs to the baseline cost structure & performance metrics; suggesting action to decrease cost
 and improve efficiency.
Developing weekly reports of team performance, conducting meetings, and providing the updates to SLT
Steering daily service delivery, continuous development, and improvement of provider services in accordance with
targets / objectives included in-service plans.
Directing Operation Control Tower Team, engaged in IT Service Management Process, End User Service, and Infrastructure
Support
Driving operational excellence in rendering services while adhering to the Standard Operating Procedures
Addressing critical issues and escalations in relation to end user services.
Working with SLT on the facilities & hiring; designing & streamlining processes to ensure smooth functioning of the
business operations.
Participated in the service transition from customer to Infosys.
Driven Transition governance along with other stakeholders and provide updates to SLT.
Platform Operations
Installed, configured, and maintained Splunk Enterprise and Splunk Cloud environments to support business
requirements.
Managed Splunk forwarders, indexers, search heads, and deployment servers to ensure optimal performance and
availability.
Implemented Splunk best practices for data ingestion, indexing, and search optimization to maximize efficiency and
scalability.
Conducted performance analysis and tuning to optimize Splunk infrastructure and improve search performance.
Developed and maintained documentation, including standard operating procedures (SOPs) and configuration guides, for
Splunk environments.
Collaborated with stakeholders to gather requirements, define project scope, and implement solutions to meet business
needs.
Provided technical support and troubleshooting for Splunk-related issues, including log parsing, data normalization, and
search queries.
Participated in security assessments, audits, and compliance activities to ensure adherence to regulatory requirements and
industry standards.
Worked on setting up the Monitoring environment at Bangalore at Infosys premises.
Onboarded the 100k devices both on premises and cloud monitoring (Servers, Switches, Firewalls, load balancers and
corporate DMZ zone devices)
Conducting KT sessions on each Domain stakeholders about the functionalities and operations within Infosys.
Created Site specific monitoring and governance flow diagrams for the administration purpose.
Worked with Senior leadership in creating the SOPS and Policies around the Monitoring solutions.
Conducted multiple sessions of training with all the business units in the IT infrastructure.
Transitioned out the Infra responsibilities to the inhouse team to maintain the monitoring environment.

Achivements
Achieved PPM (internal Project Certifications) within 6 months of Project onboarding at Infosys.
Achievement in leading the Lean Practitioner project and timely closure.
Secured 6 out 7 in Engagement level Feedback from client.
Received Multiple Client appreciations from SLT levels on driving the short-term projects.

May’16- May’20 with Globalfoundries Engineering India Ltd. as Principle Analyst- Business Systems Analysis &
Transformation
Key Result Areas:
Leading a team of 25 members and delivering Global IT Support. working with cross-functional multi-region team
from Germany, US and Singapore

Project 1 –GSD & NOC Technical Operations

Joined with the regional team and coordinating with the HR and started the on boarding process of GSD Team.
24/7 shift model, team rostering, facilities arrangements & process set-up.
Integrated the GSD process with Monitoring process for level1 issues.
Created Escalations procedures for the Monitoring alerts and Service alerts.
Conceptualizing & implementing customer-oriented service policies, systems & SOPs for accomplishment of business goals
Defining service standards & guidelines, governance structure that acted as benchmark for excellent service delivery.
Directing Operation Control Tower Team, engaged in IT Service Management Process, End User Service, and Infrastructure
Support
Heading service delivery operations including KPIs, SLA Management, Headcount & Forecasting
Steering daily service delivery, continuous development, and improvement of provider services in accordance with
targets / objectives included in-service plans.
Developing weekly reports of team performance, conducting meetings, and providing the updates to SLT
Creating monthly performance reports for each customer across all the teams
Administering critical customer operations within committed SLA in Incident/ PM/ SR/ Change Management (CAB)
 Working with Multi-domain Team to look for the automation opportunities in business process management.
Creating and sustaining a dynamic environment that fosters development opportunities and motivates high performance
amongst team members.
Resolving & managing escalations and monitoring utilization of existing resources and manpower
Ensuring staff motivation by setting up the R&R Awards for the top performers within the team
Leading the Major incident management process of the client.
Participated in Major incidents process meetings and drive to the closure.

Project 2- RPA Solution implementation

Identifying and analysing the scope of RPA provisioning on both application and Infrastructure.
Implementing the approved RPA solutions over the infrastructure
Implemented the RSA Token assignment solutions through the RPA Solution.
Implemented the Employee on boarding process in RPA and successfully went live with the multiple modules like AD ID
creation, Email ID creations and share drive creation.
Implemented the Employee termination request fulfilment through RPA by connecting multiple IT infrastructure access.
Pioneered the implementation of RPA Solution in the RSA requests & user on-boarding fulfilment and managed to reduce
65K manual tasks.
Project 2- Integrated NOC & SOC Implentation
Identifying the Scope of 64 monitoring tools across 24 datacenters globally and completed the inventory.
Started with POC of Splunk enterprise With BLR site datacenters.
Configured Splunk enterprise HA cluster with 10TB daily processing rate.
Configured site specific heavy forwarders and deployed Multiple UFs in the DMZ for log monitoring.
Deployed networking and server monitoring add-ons & apps in the Splunk.
Worked with multi domain stakeholders and demonstrated the tools.
Worked with all domain teams to collect the prerequisites of KPI parameters.
Implemented the site-specific configurations and metrics as per the stakeholders.
Integrated and normalized diverse data sources, including logs, events, and threat intelligence feeds, to provide
comprehensive security visibility.
Conducted threat hunting activities to proactively identify and mitigate security risks and vulnerabilities.
Collaborated with security analysts and incident responders to investigate and respond to security incidents in a timely
manner.
Created custom dashboards, reports, and visualizations to present security insights and findings to stakeholders and
management.
Provided technical guidance and support to junior team members on Splunk Enterprise Security configuration, usage, and
best practices.
Participated in security assessments, audits, and compliance activities to ensure adherence to regulatory requirements and
industry standards.
Onboarded the 60k devices both on premises and cloud monitoring (Servers, Switches, Firewalls, load balancers and
corporate DMZ zone devices)
Worked on setting up the Monitoring environment at Bangalore location by consolidating the 4 Geo locations (US,
GERMANY, SGP & China)
Created Site specific monitoring and governance flow diagrams for the administration purpose.
Patching the Monitoring environments (Managers & UFs) and work with the vendor on specific requirements
Worked with Vendors to get the application-level issues resolved.
Worked with Senior leadership in creating the SOPS and Policies around the Monitoring solutions.
Conducted multiple sessions of training with all the business units in the IT infrastructure.
Coordinated in SOC dashboards in Splunk for the centralized monitoring.

Oct’14-Mar’16 with Dimension Data, Bangalore as Service Delivery Engineer

Highlights:
Headed a team of 15 members and rendered excellent support in tools- SNOW Service Now, EMC SMARTS, EMC NCM,
Linux Server Administration & Splunk Activities
Showcased customer handling skills by successfully managing Critical Customer Operations across Australia; managed 104
customers in terms of event management and deployment.
Managed the entire gamut of functions entailing change management, requirement gathering, audits, deployment,
migration, client support, Linux production environment and pre-production environment kernel patching.
Worked as Linux Admin to ensure 99.9% uptime in Linux Prod and Preprod Servers
Led Partition Management by LVM including adding a disc space to existing volume group and creating new LVMs from the
existing volume group.
Performed IP migrations in Linux Prod and Preprod Servers
Managed Splunk infrastructure components, including indexers, search heads, forwarders, and deployment servers, to
ensure optimal performance and availability.
Implemented best practices for data ingestion, indexing, and search optimization to maximize efficiency and scalability.
Conducted performance analysis and tuning to optimize Splunk infrastructure and improve search performance.
 Developed and maintained documentation, including standard operating procedures (SOPs) and configuration guides, for
Splunk environments.
Provided technical support and troubleshooting for Splunk-related issues, including log parsing, data normalization, and
search queries.
Collaborated with stakeholders to gather requirements, define project scope, and implement solutions to meet business
needs.
Contributed towards deployment of major customers from Australia like Commonwealth Bank of Australia (CBA), Grain
Corp, Woolworth Telecommunications, National Australian Bank (NAB), MMG, Village Roadshow & KPMG Holdings

May’12-Oct’14 with Mindtree Ltd., Bangalore as Senior Engineer- Application Support

Highlights:
Exhibited leadership in configuring, supporting, upgrading, and administering monitoring applications (Tools) such as
Hyperic HQ, Open NMS and Mwatch
Proactively worked in major customers projects- The Carlyle Group & Silicon Valley Bank (USA)
Customising the scripts for different monitoring requirements and deploy the same in the productions.
Deployed new plugins to monitor the KPIs and configure the nodes and scripts to track the SNMP V3 devices.
Led daily including addition and removal of assets in monitoring tool, configuration changes in monitoring tool and
resolution of user's issues through Service now Ticketing Tool
Managed Web Logic Support and Basic Database level jobs
Setting up the Script based log monitoring and customised file monitoring on the banking sectors.
Maintained & monitored infrastructure both prods and pre-prod server environment remotely.
Merit of managing key customers The Carlyle Group & Silicon Valley Bank and Cadence

Jul’10-May’12 with Network Solutions, An IBM Company. Bangalore as Senior Technical Service Specialist
Highlights:
Successfully configured, supported, upgraded, and administered ITIL based Applications (Tools) entailing coDesk,
SNAPPiMON, Asset Manager and NOC-i & C-SAT
Interfaced with customers for demonstration and query resolution and worked with Onsite Engineer to deploy
applications on client’s servers.
Handled deployment of the tools in the customer locations (EFL, Apollo Munich, Royal Sundaram, Al Rajhi Bank, Moodys)
Troubleshot and upgraded applications (migrating to the latest versions and regular uploading of the patches)
Contributed to QA Team to design & execute test cases, find bugs and report in Bug Tracking Tool
Effectively worked onsite with Customers MetLife India Insurance, Apollo Munich and Eureka Forbes & Royal Sundaram
for the tool implementations

Apr’08-Jun’10 with MetLife India Insurance Co. Ltd., Bangalore as Senior Executive IT
Highlights:
Addressed and resolved IT related issues for 30 branches in Tamil Nadu.
Interfaced & followed up with the various departments and maintained 100% branch up time of the IT equipment.
Actively participated in the installation and configuration of:
o ADS, DNS, WINS & DHCP
o WDS on the server with the various types of OS images
o SQL Server and created DB access as per the business needs
Conducted daily checks, developed DAR Report (Daily Activity Report) and troubleshot network related problems.

Dec’07-Apr’08 with Wipro InfoTech Ltd. (Franchise), Coimbatore as FM Engineer

Highlights:
Successfully managed IT related issues as FM Engineer for ITC Ltd., Coimbatore
Ensured backup of all the servers more than 5TB data by using Dell Power Vault 124t & using Legato Networker
Engaged in the configuration of:
o Different RAID levels in the server environment
o CA Unicenter Software Delivery Tool in server and desktops
Worked on WIN 9X, 2000, XP, 2003 while managing server administration.

Dec’06-Dec’07 with Trimax Computer Ltd., Coimbatore as Customer Service Engineer

Highlights:
Contributed as Site Support Engineer, administered IT issues and provided technical telephone support to sub locations.
Assembled, configured ad troubleshot all types of PCs & rendered Symantec Antivirus Support for SBI, SBH & others.
Installed Windows 2003 Server, Windows 2000 Professional and Windows 95, 98, 2000 & XP