![using splunk enterprise security using splunk enterprise security](https://i.ytimg.com/vi/S_96bD9Y7Xk/maxresdefault.jpg)
![using splunk enterprise security using splunk enterprise security](https://www.esecurityplanet.com/wp-content/uploads/2020/11/splunk-enterprise-security-es-siem-product-overview-and-insight_5facde1d9f20b.jpeg)
Develop custom scripted Splunk inputs using Python, Bash, Perl, to collect unique customer data when native collection methods were lacking a plus.Solid understanding of data flow, data formatting/normalization, and logging best practices.Strong understanding of the underlying search processes and components (lookups, modular inputs, standard inputs, relationships between varying configuration files, etc.).off the shelf TAs and alternative technologies such as home grown TAs or Cribl), as well as search/query design and run(and the differences between Federated Search and standard peering or Hybrid model). Experience with ES and data ingest, data normalization (e.g.JS / XML and extensive dashboarding experience.Strong Ansible, Terraform, Git, Chef, Puppet, and/or other automation technologies and their use with Splunk.Hands-on experience developing and supporting enterprise technology and network infrastructure in a hybrid-cloud environment, AWS and/or Azure preferred.At least 2 years of experience creating custom dashboards, interacting with and helping to develop/implement APIs or other automation with Splunk Enterprise, experience with Splunk Cloud and APIs is not required but preferred.Splunk Engineers must successfully work with Platform engineers to ensure integration of Splunk within the broader platform, including articulating requirements for Splunk on the Platform/Application side and implementing Requirements on the Splunk side.
![using splunk enterprise security using splunk enterprise security](https://news-cdn.softpedia.com/images/news2/nvidia-s-462-31-rtx-quadro-update-adds-support-for-new-gpu-532666-2.jpg)
In some cases, Splunk Engineers may show sufficient expertise without either of these certs. For this role you need to have experience with Enterprise Security(ES) and have an understanding of how Splunk, ES, and the supporting apps interact with one another at the search and configuration level.Ī Splunk Engineer should have either an active Splunk Certified PowerUser cert or the Splunk Certified Developer certificate. BlueVoyant is seeking an experienced Splunk Engineer to work with some of the top minds in cybersecurity and be at the forefront of driving a successful partnership with Splunk as BlueVoyant implements the latest in Splunk Cloud capabilities.