This role is for our large software client.
In the role of Splunk Content Developer at NS2, you will be instrumental in enhancing our operational monitoring capabilities. We are looking for a dynamic individual who will take charge of developing, implementing, and optimizing Splunk content, such as dashboards, alerts, and reports. Your expertise will enable us to transform raw data into valuable insights, empowering stakeholders across NS2 to make informed decisions that drive innovation and fulfill business objectives.
At NS2, we see data as more than just logs and metrics; it represents insight, security, and proactive action. As a Splunk Content Developer, you will weave together streams of raw data into compelling narratives that guide smarter decisions and protect our systems.
Day to Day:
Content Development & Optimization
Build, maintain, and optimize Splunk dashboards, alerts, and reports that give teams real-time, actionable visibility.
Create, modify, and troubleshoot complex multi-layer searches and dashboards using advanced SPL commands, macros, and search chaining.
Continuously evaluate and improve existing content for clarity, performance, and value.
Write efficient searches and troubleshoot poorly written or misconfigured queries.
Analyze complex data sets and convert them into actionable insights.
Data Integration & Ingestion
Develop and manage data models that support scalable, high-performance content.
Design and implement ingestion solutions via APIs, scripted inputs, and Universal Forwarders.
Monitor log ingestion rates and ensure data consistency and reliability.
Ensure logs are compliant with the Common Information Model
Collaboration & Enablement
Partner with cross-functional teams to gather content requirements and translate them into impactful Splunk solutions.
Create clear documentation and training materials for end-users.
Conduct training sessions to help technical and non-technical stakeholders become confident Splunk users.
Tooling & Best Practices
Manage Splunk Knowledge Objects with a focus on organization and efficiency.
Integrate security and performance best practices into all aspects of Splunk content.
Administer and support Splunk Premium Apps, especially **Enterprise Security (ES)**.
Stay current with IT ecosystem integrations and opportunities to extend Splunks capabilities.
We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
Human Resources Request Form. The EEOC "Know Your Rights" Poster is available
here.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
- 3+ years of experience developing Splunk content in an enterprise environment
- 3+ years of experience writing and optimizing SPL queries and visualizing complex data
- Expert at troubleshooting dashboards, alerts, and reports in Splunk
- Can script in Bash or Python to support Splunk functions
- Has worked in a Splunk environment within a Security team or SOC
- Splunk certifications (Certified Developer, Advanced Power User, ES Admin, etc.).
- Experience with Splunk Enterprise Security (ES).
- Prior experience supporting DoD or FedRAMP environments.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.