Splunk ITSI Implementation Engineer

Posted 2 days 4 hours ago by WNTD

Contract
Not Specified
Other
Not Specified, United Kingdom
Job Description

Job Title: Splunk ITSI Implementation Engineer
Location: Remote (with occasional site visits to Welwyn Garden City or Farringdon - once a month or week, if possible)
Duration: Initial 1-2 month contract (potential for extension into BAU run service)
Inside IR35

About the Role:

We are seeking an experienced Splunk ITSI Implementation Engineer to support the initial setup and configuration of a Splunk ITSI environment for one of our enterprise customers. This is a high-impact role involving close collaboration with both Splunk and customer teams during the scoping phase, with the potential for a longer-term engagement during the operational run phase.

Key Responsibilities:

  • Lead or support the implementation and configuration of Splunk ITSI (IT Service Intelligence).

  • Collaborate with internal and external stakeholders to gather requirements and define service/application KPIs, health scores, and thresholds.

  • Set up ITSI modules, including glass tables, service trees, deep dives, and alerting mechanisms.

  • Integrate relevant data sources (logs, metrics, etc.) into Splunk for effective service monitoring and analysis.

  • Build correlation searches, notable events, and aggregation policies.

  • Conduct testing and validation of dashboards and KPIs with customer stakeholders.

  • Provide documentation and knowledge transfer to internal teams for ongoing support.

  • Support the handover into business-as-usual (BAU) operations.

Skills & Experience:

  • Proven hands-on experience with Splunk Enterprise and Splunk ITSI (ideally including end-to-end implementations).

  • Strong understanding of IT operations, service monitoring, and observability best practices.

  • Experience building correlation searches, KPI base searches, and managing service dependencies.

  • Familiarity with data onboarding and transformation in Splunk (eg, field extractions, indexing strategies).

  • Scripting and automation skills (eg, Python, Bash, PowerShell) are a plus.

  • Ability to work independently in a remote environment and engage with technical and non-technical stakeholders.

Nice to Have:

  • Splunk certifications (eg, Splunk Core Certified Power User, Splunk ITSI Certified).

  • Experience integrating Splunk with other monitoring or ITSM platforms.

  • Exposure to environments with high data volumes or critical Real Time alerting needs.

Engagement Details:

  • Remote-first role with flexibility.

  • Ideally available for occasional site visits in Welwyn Garden City or Farringdon (monthly or weekly as needed).