{"id":2,"date":"2026-03-16T07:48:49","date_gmt":"2026-03-16T11:48:49","guid":{"rendered":"http:\/\/www.wpnux.godaddy.com\/personal-blog\/?page_id=2"},"modified":"2026-06-01T05:18:44","modified_gmt":"2026-06-01T09:18:44","slug":"about","status":"publish","type":"page","link":"https:\/\/www.machinedatainsights.com\/blog\/about\/","title":{"rendered":"About Me"},"content":{"rendered":"\n<figure class=\"wp-block-image alignright size-full is-resized\"><img decoding=\"async\" width=\"890\" height=\"1145\" src=\"https:\/\/www.machinedatainsights.com\/blog\/wp-content\/uploads\/2026\/03\/James-Baxter-2026-03-15-1.png\" alt=\"\" class=\"wp-image-417\" style=\"aspect-ratio:0.7773063805007903;width:278px;height:auto\"\/><\/figure>\n\n\n\n<p>My name is James H. Baxter &#8211; Jim &#8211; and I&#8217;m the founder of Machine Data Insights, Inc., an independent security data engineering consultancy based in Winter Springs, Florida.<\/p>\n\n\n\n<p>I&#8217;ve spent the better part of 45 years building solutions: in the Air Force, at MCI, IBM, BP, Daou Systems, Disney, and more recently at enterprises running Splunk as their core security platform. The through-line across all of it has been automation &#8211; finding the manual, time-consuming work that nobody enjoys and building tools that eliminate it.<\/p>\n\n\n\n<p>These days my focus is narrow by design: CIM normalization, security data integrity, and the AI-powered tooling that makes both dramatically faster and more reliable. I hold Splunk certifications as Core Consultant, Architect, and Developer, and I work directly in client environments &#8211; not through a bench of consultants or a project management layer.<\/p>\n\n\n\n<p>The recent development I&#8217;m most proud of: CIM normalization that used to take weeks of manual work now takes a few hours to a few days &#8211; AI driven, fully automated, with a human in the loop. That&#8217;s the outcome of building the right tools and processes and refining them across real enterprise deployments.<\/p>\n\n\n\n<p>This blog is where I write about the work &#8211; the problems I&#8217;m solving, the tools I&#8217;m building, and the broader landscape of security data engineering, AI\/ML, and Splunk. If it&#8217;s here, it came from something I actually built or learned firsthand.<\/p>\n\n\n\n<p>WHAT I&#8217;VE BUILT<\/p>\n\n\n\n<p>The CIM Assessment Toolkit (CAT) will soon be available on Splunkbase &#8211; a free app for assessing CIM health, field coverage, and data model acceleration status across your Splunk environment. If you&#8217;re running Enterprise Security and aren&#8217;t sure whether your data models are actually healthy, you&#8217;ll want to start there. &#8211; Splunkbase release coming Q2 2026<\/p>\n\n\n\n<p>Beyond CAT, I&#8217;ve developed the &#8216;Paydirt&#8217; log scrubber (<a href=\"https:\/\/github.com\/machinedatainsights\/paydirt\">https:\/\/github.com\/machinedatainsights\/paydirt<\/a>) for scrubbing sensitive data (CUI, PII, and credential redaction) from Splunk log exports so they can be safely imported into the MDI &#8216;Data Refinery&#8217; for end-to-end automated CIM normalization. <\/p>\n\n\n\n<p>The Data Refinery will soon support identifying just those fields you need to send to Splunk and generating Cribl packs to route log data to long-term storage and Splunk, as well as performing CIM normalization in Cribl instead of relying on Splunk TAs. <\/p>\n\n\n\n<p>Also under development or refinement is the &#8216;DataGen&#8217; artifical log event generator, a refactored &#8216;Data Source Integrity Monitor (DSIM)&#8217; for ML-based pipeline health monitoring, and a Performance and Capacity Analytics Splunk app for day-to-day resource utilization and performance monitoring and trending to support capacity planning. These are the tools I use in client engagements.<\/p>\n\n\n\n<p><strong>PUBLISHED WORK<\/strong><\/p>\n\n\n\n<p>I&#8217;ve written two technical books:<\/p>\n\n\n\n<p>Splunk 7.x Quick Start Guide &#8211; a practical reference for architecting and administering Splunk that I still use regularly myself.<br>https:\/\/www.amazon.com\/Splunk-7-x-Quick-Start-Guide\/dp\/1789531098<\/p>\n\n\n\n<p>Wireshark Essentials &#8211; covering packet analysis, protocols, and network traffic interpretation. Somewhat dated on the Wireshark version but the fundamentals hold.<br>https:\/\/www.amazon.com\/Wireshark-Essentials-James-H-Baxter\/dp\/1783554630<\/p>\n\n\n\n<p><strong>CONNECT<\/strong><\/p>\n\n\n\n<p>LinkedIn: <a href=\"https:\/\/www.linkedin.com\/in\/jameshbaxter\/\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/www.linkedin.com\/in\/jameshbaxter\/<\/a><br>MDI Website: <a href=\"https:\/\/machinedatainsights.com\" target=\"_blank\" rel=\"noreferrer noopener\">https:\/\/machinedatainsights.com\/#contact<\/a><br>Email: <a href=\"mailto:jim.baxter@machinedatainsights.com\">jim.baxter@machinedatainsights.com<\/a><\/p>\n\n\n\n<p>If you&#8217;re working through a CIM normalization problem, dealing with data quality issues in ES, or just want to talk through a Splunk architecture challenge &#8211; reach out.<\/p>\n\n\n\n<p><\/p>\n\n\n\n<p><\/p>\n<!-- PMB print buttons is only displayed on a single post\/page URLs-->","protected":false},"excerpt":{"rendered":"<p>My name is James H. Baxter &#8211; Jim &#8211; and I&#8217;m the founder of Machine Data Insights, Inc., an independent security data engineering consultancy based in Winter Springs, Florida. I&#8217;ve spent the better part of 45 years building solutions: in the Air Force, at MCI, IBM, BP, Daou Systems, Disney, and more recently at enterprises running Splunk as their core security platform. The through-line across all of it has been automation &#8211; finding the manual, [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":417,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_coblocks_attr":"","_coblocks_dimensions":"","_coblocks_responsive_height":"","_coblocks_accordion_ie_support":"","_s2mail":"yes","site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"set","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"class_list":["post-2","page","type-page","status-publish","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/pages\/2","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/comments?post=2"}],"version-history":[{"count":19,"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/pages\/2\/revisions"}],"predecessor-version":[{"id":431,"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/pages\/2\/revisions\/431"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/media\/417"}],"wp:attachment":[{"href":"https:\/\/www.machinedatainsights.com\/blog\/wp-json\/wp\/v2\/media?parent=2"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}