Enable job alerts via email!
Sr. Cribl Data Engineer | Remote, USA
Lensa
Nashville (TN)
Remote
USD 80,000 - 100,000
Full time
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Job summary
A leading security firm is seeking a Data Engineer to enhance their Managed Security Services team. The role involves overseeing observability platforms, managing Splunk systems, and providing technical support to clients. The ideal candidate will have strong problem-solving skills and experience with security technologies. This position offers remote work capabilities and a commitment to diversity and inclusion.
Benefits
Qualifications
- 2+ years managing observability platforms.
- 1+ years as a Splunk Administrator.
- Experience with big data technologies.
Responsibilities
- Act as a point of escalation for other engineers.
- Document account governance processes.
- Lead the Splunk team by prioritizing client requests.
Skills
Education
Tools
Job description
1 day ago Be among the first 25 applicants
Lensa is the leading career site for job seekers at every stage of their career. Our client, Optiv, is seeking professionals. Apply via Lensa today!
The Data Engineer works in Optiv Security’s 24x7x365 Security Operations Center as a member of the Managed Security Services (MSS) team. The engineer will be responsible for creating procedures, implementing the software pipeline, focusing on monitoring and platform maintenance, and securing client environments. Essential experience includes observability pipelines, Splunk SIEM, and other security technologies. The candidate will collaborate with management, principal engineers, senior engineers, solution architects, threat analysts, and other teams to deliver high-profile, critical services to existing MSS clients. They will serve as a primary responder for client systems, owning issues and tracking resolutions.
How you’ll make an impact
- Act as a point of escalation for other engineers, providing guidance and mentorship.
- Assist with client transition and onboarding, serving as the primary contact for MSS clients.
- Document account governance processes, generate reports, and notify leadership of potential SLA issues.
- Explain and demonstrate the use of observability and SIEM products to both technical and non-technical personnel.
- Provide remote consulting to assist with implementation of various products and technologies.
- Implement, configure, and maintain SIEM software and appliances in large enterprise and government environments.
- Develop, deploy, and tune SIEM content such as rules, dashboards, reports, and models.
- Support Tier 1 escalation support for authorized customers, following established processes.
- Lead the Splunk team by prioritizing client requests, projects, and tasks.
- Collaborate with management and engineers to define processes and procedures.
- Identify and improve existing processes, procedures, and documentation.
- Support team development by defining strategies and responsibilities.
- Develop internal training methods for MSS and clients.
- Perform knowledge transfers and train clients on security and system configuration.
What we’re hiring for
- 2+ years managing and maintaining observability platforms.
- 1+ years as a Splunk Administrator.
- 2+ years as a Cribl Administrator.
- Expertise in Splunk Enterprise Security.
- Experience with installing and configuring Splunk CORE and Enterprise Security.
- Ability to analyze logs from security devices.
- Confident in resolving complex technical problems.
- Willingness to learn multiple observability vendor platforms.
- Experience designing, automating, and optimizing observability platforms.
- Knowledge of security logging for Linux, Windows, EDRs, Firewalls, and Active Directory.
- Experience with big data technologies like Kafka, Splunk, TSDB.
- Experience with cloud platforms (AWS, Azure, GCP).
- Awareness of industry standards in telemetry and pipelines.
- Experience creating custom content, dashboards, reports, and alerts.
- Flexibility to provide on-call support (24/7).
- Experience with incident and problem tracking systems (Jira, Confluence, ServiceNow).
- Security certifications (e.g., GIAC, CISSP, CISA).
- Knowledge of Linux and Windows OS.
- Understanding of server applications like DBMS, Exchange, DNS, etc.
- Experience with security products like Devo, Chronicle, EDR, XDR, etc.
- Familiarity with DevOps practices.
- Strong communication skills.
- Ability to understand and follow instructions in various formats.
What You Can Expect From Optiv
- Commitment to Diversity, Equality, and Inclusion.
- Work/life balance.
- Professional training resources.
- Opportunity to work on complex projects.
- Volunteer opportunities through "Optiv Chips In".
- Remote work capabilities where applicable.
EEO Statement
Optiv is an equal opportunity employer. We consider all qualified applicants without regard to race, color, religion, sex, gender identity, sexual orientation, age, marital status, genetic information, national origin, disability, military or veteran status, or other protected categories.
We respect your privacy. By applying, you acknowledge collection and use of your information as detailed in our Privacy Notice.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
