Splunk Developer

-Bachelor's Degree required from an accredited university.

-Minimum of two (2) years of experience in Splunk.

-Work experience in developing or administering an enterprise-level implementation of Splunk.

-Proficient in Splunk query language.

-Proficient in scripting languages (Python, and/or others).

-Carry experience in developing custom Splunk search head applications.

-Strong knowledge working with the Splunk Common Information Model.

-Comprehend and understand when a problem arises and assist in developing potential corrective actions.

-Splunk Certification is a plus.

-Ansible Chef/Puppet Automation playbooks is a plus.

-Google Cloud Platform Experience is a plus.

-Complete onboarding data sources through various methods (UF, HF, Syslog, Splunk TA, HEC, FTP(S), CSV, DB Connect, Cloud/SaaS etc.)

-Skillful at parsing fields from unstructured logs (without the needs of Splunk Apps).

-Administration of Splunk ITSI and Splunk Enterprise.

-Administration / setup of Splunk Enterprise Security.

-Maintain Data Models and base save searches.

-Recommend and develop on-demand dashboards, rules, alerts, and reports using Splunk Enterprise and ITSI.

-Manage and support parsing fields from unstructured logs.

-Administrator and support Splunk cluster environment.

-Assist in developing use cases to fill gaps that may be identified using several securities tools.

-Ability to communicate findings or new rule logic on a technical and logical level to teams and leadership.

-Gather requirements and propose solution options for stakeholders.

-Install, configure, maintain, tune, and support a clustered Splunk Enterprise 8.x/9.x /ITSI 3+ environment on Centos servers.

Good communication skills.

Thoughtful leadership and innovative thinking Positive customer service attitude Advanced communication skills, including business/technical writing and presentations