Advisor, Cybersecurity Engineering & Operations

Accountabilities

Works on cybersecurity problems that may be diverse and highly complex, with particular emphasis on security operations. Selects methods and techniques for identifying and advocating effective security solutions.Specializes in security operations in one or more areas, including network, host, database, application, event management, cloud, cryptography, identity, and other emerging technology. Participates in reviews of available tools, technologies, and processes to secure all aspects the enterprise. Maintains and optimizes tools, processes, documentation, reporting, and technologies, and defines success criteria for their effective usage.Deploys tools, processes, documentation, and technologies, and defines success criteria for their effective usage.

Responsibilities

Manager usually provides the problem and a high-level solution for more complicated problemsDevelops and maintains detailed documentation to support cybersecurity programsWorks on cybersecurity problems that have medium complexity, with particular emphasis on security operations Selects methods and techniques for identifying and advocating effective security solutionsMaintains and optimizes tools, processes, documentation, reporting, and technologies, and defines success criteria for their effective usageParticipates in reviews of available tools, technologies, and processes to secure all aspects the enterpriseActs as the bridge between technical and non-technical contributors in cybersecurity operations discussions"

Logging and Monitoring Engineer

As a Logging and Monitoring Engineer, you will support the day‐to‐day operation and continued evolution of client's logging and telemetry platforms. You will work hands-on with Cribl, Elastic, and Corelight to onboard new data sources, maintain healthy pipelines, troubleshoot issues, and ensure reliable delivery of security and operational telemetry across the environment. This role is strongly execution-focused and works closely with senior engineers and partner teams to support enterprise detection and monitoring capabilities.

You will:

• Configure, operate, and monitor log and telemetry pipelines using Cribl, including basic data routing, filtering, and transformations
• Support Elastic environments by onboarding log sources, validating data quality, assisting with troubleshooting, and performing routine maintenance tasks
• Assist with the deployment, operation, and monitoring of Corelight sensors to ensure reliable network telemetry ingestion
• Troubleshoot logging and data pipeline issues, working through data flow, parsing, transport, and ingestion problems
• Perform routine operational tasks such as platform upgrades, configuration changes, documentation updates, and capacity monitoring
• Partner with security operations, infrastructure, and application teams to support log onboarding requests and resolve data gaps
• Follow established change management, operational procedures, and escalation paths while contributing feedback to improve processes
• Maintain basic operational documentation and runbooks to support consistent platform operations
  
  

Essential Requirements

• 3-5 years of hands-on experience supporting enterprise logging, monitoring, or security telemetry platforms
• Practical experience working with Cribl for log routing or pipeline support (hands-on configuration and troubleshooting)
• Experience supporting Elastic environments, including log onboarding, basic troubleshooting, and operational maintenance
• Exposure to network telemetry or NDR solutions (e.g., Corelight or similar technologies)
• Strong Linux and Windows system administration fundamentals
• Working knowledge of scripting or automation (e.g., Bash, Python) to assist with operational tasks
• Experience supporting platforms in cloud, hybrid, or large enterprise environments
• Familiarity with monitoring concepts such as data health, throughput, latency, and alerting