Splunk Engineer

• Design, build, and maintain Splunk dashboards, reports, and alerts to support operational, security, and business monitoring needs
• Develop and optimize SPL (Search Processing Language) queries for efficient searches, reports, and visualizations
• Create and maintain field extractions (regex, delimiter-based, calculated fields) for structured and unstructured data
• Work with stakeholders to understand reporting requirements and translate them into Splunk solutions
• Build scheduled reports and alerts with appropriate thresholds and actions (email, webhook, etc.)
• Support onboarding of new data sources by validating data quality and ensuring proper parsing and indexing
• Familiarity with monitoring and alerting concepts
• Partner with application and infrastructure teams to improve system reliability and availability
• Assist with Root Cause Analysis (RCA) using log, metric, and event correlations in Splunk
• Maintain documentation for dashboards, reports, and searches

10+ years overall Technology experience 2-3 years of hands-on experience with Splunk 2-3 years of log analysis, SRE work, * 10+ years overall Technology experience

• 2-3 years of hands-on Splunk experience (Splunk Enterprise or Splunk Cloud)
• 2-3 years of log analysis, SRE work
• Strong knowledge of SPL, including stats, timechart, transaction, eval, rex, lookup, mv commands
• Experience building: Interactive dashboards, Drilldowns, Scheduled and ad-hoc reports
• Solid experience with field extractions using: Regex (rex), Search-time extractions, Lookups (CSV, KV store - basic)
• Understanding of: Indexes, sourcetypes, hosts, Search-time vs index-time concepts
• Familiarity with JSON, XML, CSV, and log formats
• Basic understanding of Linux/Unix commands for log analysis
• Ability to analyze data and present insights in a clear visual format