|
|
|
|
|
|
by HelloNurse
2050 days ago
|
|
|
You seem divided between becoming more involved with security, continuing as a Splunk expert, and becoming a "product guy". Choosing between these and other career directions is mostly a matter of finding a specific good job in a specific good workplace. My impression about Splunk (as a casual user who consults logs to debug application errors) is that if you are already managing data sources and creating dashboards you don't have much left to learn about Splunk: the logical step forward, depending on how senior you are, is either (instead of wasting time with more Splunk) switching to something else to learn a lot about some other important product (not to mention different people, culture, projects etc. in another job) or climbing one step in the architecture ladder and becoming the engineer who plans Splunk deployments and chooses between it and competing and complementary products. |
|
|
If I'm understanding you correctly and reading a bit between the lines, you'd recommend a move toward either a new product (within the same space?) or take a bigger drink of the Splunk kool-aid and move on to architecture.
I noticed you didn't mention CTI at all. I ass-ume that you're recommending the Splunk Engineer side more (they can also get into architecture, so that fits your description)?