Splunk Content Developer

This role focuses on developing and optimizing Splunk content (dashboards, alerts, reports) to enhance operational visibility and deliver actionable insights. Ideal for someone who can transform data into strategic narratives and support enterprise-level monitoring initiatives.

Content Development & Optimization

• Build and improve dashboards, alerts, and reports using SPL

• Optimize queries for performance and clarity

• Turn complex data into actionable insights

Data Integration & Ingestion

• Develop scalable data models and ingestion pipelines

• Ensure log compliance with CIM and monitor ingestion reliability

Collaboration & Enablement

• Work with stakeholders to gather requirements and train users

• Create documentation and conduct training sessions

Tooling & Best Practices

• Manage Knowledge Objects and Splunk Premium Apps (especially ES)

• Apply security and performance best practices across content

• Bachelor's degree (or equivalent experience)

• 3+ years of Splunk content development experience

• Strong SPL, data visualization, and troubleshooting skills

• Scripting experience (Python, Bash, PowerShell)

• Familiarity with JSON, XML, Syslog, CSV log formats

• Linux admin skills and basic networking/security knowledge

• Excellent communication and multitasking ability

• Experience with SOC environments is a plus

• Splunk certifications (e.g., Certified Developer, ES Admin)

• REST API integration, AI/ML, or Data Science exposure

• Agile methods, FedRAMP/DoD experience

• Passion for empowering users and driving adoption