TalentProfile
Back to Jobs
Remote (Country) Full-time

Optiv is hiring a Sr. Cribl Engineer | Remote, USA

About the Role

Optiv is seeking a Senior Cribl Engineer to join our 24/7/365 Security Operations Center as part of the Managed Security Services team. You will be responsible for designing and implementing the software pipeline for our monitoring and observability platforms, maintaining security systems for client environments, and creating operational procedures.

What You'll Do

  • Act as a point of escalation for other Engineers, providing guidance and mentoring.
  • Assist with client transition and onboarding, serving as the primary point of contact for Managed Security Service clients.
  • Document Account Governance processes and generate reports for senior leadership about potential client SLA issues.
  • Explain and demonstrate observability products to both technical and non-technical personnel.
  • Provide remote consulting services via interactive client sessions to assist with the implementation of multiple product vendors and technologies.
  • Implement, configure, and maintain SIEM software and appliance-based products in large enterprise and Government environments.
  • Develop, deploy, and tune SIEM content such as correlation rules, dashboards, reports, and models.
  • Provide escalation support to Tier 1 for Authorized Support Customers.

What We're Looking For

  • 2+ years of experience in Cribl Administration.
  • 2+ years of professional experience managing and maintaining observability platforms.
  • Ability to deal confidently with complex technical problems.
  • Willingness to learn and support multiple observability vendor platforms.
  • Experience in designing, automating, maintaining, and optimizing observability platforms (metrics, logging, and tracing).
  • Knowledge of security logging for Linux, Windows, major EDRs, Firewalls, and Active Directory.
  • Expertise in delivering large-scale systems using big data technologies like Enterprise-scale Kafka, Splunk, and TSDB.
  • Previous experience working with Cloud platforms (AWS, Azure, GCP).
  • Abreast of industry standards and trends related to telemetry and software pipelines.
  • The ability to aggregate and analyze logs from various deployed security devices.
  • Some experience with creating custom content, dashboards, reports, and alerts.
  • Shift flexibility, including the ability to provide on-call support (24/7) when needed.
  • Experience working with Internal and client Ticketing and Knowledge Base Systems like Jira, Confluence, and ServiceNow.
  • General security knowledge (GIAC, CISSP, CCSE, CISA, HBSS, NSA, CEH, Cisco Security, Security +, or other security certifications).
  • Knowledge of Linux and Windows Operating Systems.
  • An understanding of a wide array of server-grade applications such as: DBMS, Exchange, DNS, SMTP, IIS, Apache, SharePoint, Active Directory, Identity Management, Patch Management, LDAP, and SQL.
  • Experience with various security products/technologies such as: Devo, Chronicle, EDR, XDR, Exabeam, Sentinel, QRadar, Splunk, LogRhythm, Securonix, Elastic, RSA NetWitness, SumoLogic, and infrastructure components such as proxies, firewalls, IDS/IPS, and DLP.
  • Familiarity with DevOps.

Technical Stack

  • Cribl, SIEM, Kafka, Splunk, TSDB
  • AWS, Azure, GCP
  • Linux, Windows, Active Directory
  • Jira, Confluence, ServiceNow
  • Devo, Chronicle, EDR, XDR, Exabeam, Sentinel, QRadar, LogRhythm, Securonix, Elastic, RSA NetWitness, SumoLogic

Team & Environment

You will work as a member of the Managed Security Services team within the Security Operations Center, collaborating closely with Management, Principal Engineers, Senior Engineers, Solution Architects, Threat Analysts, other internal teams, and clients.

Benefits & Compensation

  • Professional training resources.
  • Volunteer Opportunities (Optiv Chips In).
  • The ability and technology necessary to productively work remotely.

Work Mode

This is a remote position open to candidates located within the United States.

Optiv is an equal opportunity employer. All qualified applicants for employment will be considered without regard to race, color, religion, sex, gender identity or expression, sexual orientation, pregnancy, age 40 and over, marital status, genetic information, national origin, status as an individual with a disability, military or veteran status, or any other basis protected by federal, state, or local law.

Required Skills
CriblSIEMKafkaSplunkTSDBAWSAzureGCPLinuxPythonBashTerraformAnsibleDockerKubernetes
Need to work legally in Thailand?

Work permits without the paperwork nightmare

Thai immigration rules are strict and easy to get wrong. SVBL handles the bureaucracy — correct visa type, proper documentation, timely submissions. You focus on your work.

Right visa type for your situation
Document preparation & submission
Deadline tracking & renewals
Direct liaison with immigration
Talk to an expert
10+ years experience
About company
Optiv

Cybersecurity consulting and solutions company that provides security services, risk assessments, and strategic security guidance

Visit website
Job Details
Category infrastructure
Posted 8 months ago

Similar Jobs

Other opportunities you might be interested in

GEICO

Senior Engineer - DevOps - AZURE/C#/Python/Java (REMOTE)

GEICO

Remote (Country)
CrowdStrike

Collaboration & Tools Engineer (Remote, IND)

CrowdStrike

Remote (Country)
Velotio Technologies

Infrastructure Site Reliability Engineer (SRE)

Velotio Technologies

Pune, Maharashtra, India
SAP Fioneer

DLM Associate - SAP Basis Administration

SAP Fioneer

Calgary, Alberta, Canada Hybrid
Pixomondo (PXO)

IT System Engineer

Pixomondo (PXO)

Barrie, Ontario, Canada Hybrid
Oscar Medical Group / Oscar Health

EUC/IT-Support Engineer- L1

Oscar Medical Group / Oscar Health

Bengaluru, Karnataka, India On-site