Splunk Developer - Dashboard & Reporting (5-7 yrs)

About the Role :

We are seeking a highly skilled Splunk Developer with 5-7 years of experience to join our team.

The ideal candidate will have expertise in building, configuring, and optimizing Splunk applications, dashboards, and reports.

You will work closely with various business teams to design and implement Splunk solutions that enable data-driven decision-making and provide real-time insights for operational monitoring, security, and business intelligence.

Key Responsibilities :

- Splunk Application Development : Design, develop, and maintain custom Splunk applications and solutions, including dashboards, reports, and alerts.

- Data Integration : Implement and configure data inputs from various sources such as logs, SNMP traps, syslog data, and other custom data sources into Splunk.

- Query Optimization : Write and optimize complex SPL (Search Processing Language) queries to extract actionable insights from large datasets.

- Dashboard and Report Creation : Design and develop custom dashboards and reports to visualize data and monitor critical systems in real-time.

- Event Management & Alerting : Create custom event types, alerts, and triggers to notify stakeholders of critical events and anomalies.

- Security and Compliance : Work with security teams to build security-related use cases, such as threat monitoring, incident response, and compliance reporting.

- Performance Tuning : Optimize the performance of Splunk queries and dashboards to ensure fast response times and scalability.

- Collaboration with Stakeholders : Collaborate with business and technical stakeholders to gather requirements, understand business goals, and translate them into Splunk solutions.

- Troubleshooting & Support : Provide ongoing support, troubleshooting, and maintenance of Splunk environments, ensuring they are running smoothly and efficiently.

- Documentation : Maintain thorough documentation of Splunk configurations, best practices, and solution architectures for future reference and knowledge sharing.

Required Skills and Qualifications :

- Experience : 5-7 years of hands-on experience working with Splunk, including the development and implementation of Splunk solutions.

- Splunk Knowledge : Expertise in Splunk enterprise administration, search processing language (SPL), and performance tuning.

- Data Integration : Experience in integrating a wide variety of data sources into Splunk, including syslog, JSON, XML, and structured/unstructured data.

- Dashboard/Visualization : Proficiency in building custom dashboards, reports, and alerts in Splunk to provide business-critical insights.

- Advanced SPL : Strong understanding of Splunk's SPL to design and optimize searches, reports, and alerts.

- Security Use Cases : Experience in building security use cases within Splunk, such as monitoring, threat intelligence, and incident management.

- Splunk Apps : Experience with Splunk Apps, such as Splunk ITSI (IT Service Intelligence) and Splunk Enterprise Security (ES), is a plus.

- Cloud Platforms : Familiarity with Splunk Cloud, AWS, or other cloud services and deploying Splunk in cloud environments.

- Monitoring & Reporting : Familiarity with monitoring systems, network monitoring, and log management tools in addition to Splunk.

- Scripting & Automation : Knowledge of scripting languages such as Python, PowerShell, or Bash for automating Splunk data ingestion, search jobs, and workflows.

- Collaboration & Communication : Excellent communication skills with the ability to interact with various stakeholders, from business users to IT teams, to understand requirements and deliver solutions.

Desired Skills :

- Security Information and Event Management (SIEM) : Knowledge of SIEM concepts and best practices, particularly in a Splunk environment.

- Big Data Integration : Experience integrating big data platforms with Splunk (e.g, Hadoop, Spark) for advanced analytics.

- Machine Learning : Experience working with machine learning features in Splunk for anomaly detection, predictive analytics, and pattern recognition.

- Certifications : Splunk Certified Admin, Splunk Certified Architect, or other relevant certifications are a plus.

- Cloud & DevOps : Experience with DevOps tools and cloud infrastructure (AWS, Azure) is an added advantage