Description :

We are seeking an experienced and highly skilled Senior Splunk Developer to lead the design, development, and optimization of our Splunk environment.

This role involves creating advanced dashboards, developing custom searches, integrating diverse data sources, and supporting security and operations teams with actionable insights.

The ideal candidate will have a strong background in enterprise logging, monitoring, and security analytics, with hands-on experience in both administering and developing within Splunk environments.

Role & Responsibilities :

- Design, implement, and maintain advanced Splunk dashboards, reports, alerts, and data models tailored to business and technical requirements.

- Develop custom SPL (Search Processing Language) queries and correlation rules for proactive monitoring, anomaly detection, and incident response.

- Integrate various data sources into Splunk from on-premises and cloud-based systems.

- Optimize performance of searches and dashboards; implement best practices for indexing and data onboarding.

- Collaborate with security, IT operations, and application teams to provide real-time visibility into system performance and security posture.

- Lead Splunk architectural enhancements, upgrades, and scaling strategies.

- Support compliance initiatives by creating monitoring and alerting for relevant audit logs and controls.

- Provide mentorship to junior Splunk developers and assist with knowledge transfer across teams.

- Maintain documentation of configurations, use cases, and procedures.

Qualifications and Education Requirements :

- Bachelor's degree in Computer Science, Information Technology, or a related field (or equivalent experience).

- 5+ years of hands-on experience with Splunk, including Splunk Enterprise and Splunk Enterprise Security (ES).

- Expertise in writing complex SPL queries, developing data models, and configuring CIM-compliant data inputs.

- Strong experience in log ingestion, parsing, and normalization from a wide variety of sources.

- Solid understanding of IT operations, system administration, and cybersecurity principles.

- Familiarity with scripting languages (Python, Bash, PowerShell) for automation and integration.

- Splunk certifications such as Splunk Certified Power User, Splunk Certified Admin, or Splunk Certified Architect are strongly preferred.

Skills :

- Experience with other monitoring and SIEM tools (e.g., Instana, Solarwind, AppDynamics).

- Understanding of compliance frameworks (e.g., SOC 2, ISO 27001, HIPAA).

- Experience with DevOps tools (CI/CD pipelines, Git, Ansible, Terraform) is a plus.