praveen sande
@praveensande
Senior Splunk Engineer specializing in enterprise SIEM security, threat detection, and SOC integrations.
IndiaWhat I'm looking for
I’m a Certified Splunk Enterprise Security Admin and Splunk Core Certified professional with 8 years of IT experience, including 6+ years as a Splunk Administrator & Splunk Developer. I focus on building and optimizing enterprise-scale Splunk deployments for cybersecurity and compliance outcomes.
In my current role, I work closely with SOC teams to onboard security device logs (e.g., Fireeye, Cortex-XDR, Prisma Cloud, and firewall devices) and to develop Splunk Enterprise Security use cases. I implement and tune Splunk ES correlation rules across endpoints, Microsoft 365, and cloud environments to strengthen threat detection and incident response.
I also manage medium to large Splunk environments end-to-end—installation, configuration, indexer clustering, upgrades, and data lifecycle across Hot/Warm/Cold/Frozen buckets. I integrate Splunk with the Microsoft Defender suite (EDR, MDI/MDC/MDCA, MDR) and configure Azure Entra ID for identity monitoring, while delivering actionable insights through dashboards, scheduled searches, alerts, and reports.
Experience
Work history, roles, and key accomplishments
Handled SOC-cyber security operations by onboarding security device logs (e.g., FireEye, Cortex-XDR, Prisma Cloud, firewall). Implemented and optimized Splunk Enterprise Security (ES) use cases with correlation rules for threat detection and compliance, and integrated Splunk with Microsoft Defender suite and Azure Entra ID for unified monitoring and incident response.
Splunk Engineer
Diverse Lynx India Pvt Ltd
Oct 2021 - Dec 2021 (2 months)
Set up Splunk forwarders on Linux and Windows and troubleshot Splunk ingestion and configuration issues in coordination with infrastructure and Splunk support teams. Created alerts, extracted complex fields with regular expressions, and monitored/optimized ingestion and performance.
Splunk Admin (L1)
Cassixcom Enterprises Pvt Ltd
Jan 2018 - Oct 2021 (3 years 9 months)
Installed and administered Splunk by managing indexes, clustering, forwarding, distributed search, and Splunk component upgrades. Secured Splunk, optimized searches, integrated ServiceNow with Splunk for incident generation, and managed users, roles, and permissions for knowledge objects.
Education
Degrees, certifications, and relevant coursework
Vardhaman College of Engineering
Bachelor of Science, Mechanical Engineering
2011 - 2015
Earned a Bachelor of Science in Mechanical Engineering at Vardhaman College of Engineering, Hyderabad from 2011 to 2015.
Trinity Junior College
2009 - 2011
Completed intermediate education under the Board of Intermediate Education at Trinity Junior College, Karimnagar from 2009 to 2011.
Availability
Location
IndiaAuthorized to work in
Job categories
Skills
Interested in hiring praveen?
You can contact praveen and 90k+ other talented remote workers on Himalayas.
Message praveenFind your dream job
Sign up now and join over 250,000+ remote workers who receive personalized job alerts, curated job matches, and more for free!
