[Remote] Cribl Data Modeling Security Engineer - REMOTE (W2 ONLY)

Note: The job is a remote job and is open to candidates in USA. Dice is seeking a Data Modeling Security Engineer to work remotely, focusing on cribl ingestion within the Division of Information Security. The successful candidate will design, implement, and maintain data modeling for log ingestion in large scale security environments, collaborating with security architects to enhance enterprise security solutions.

Responsibilities

• Primarily assist in the planning, design, deployment and operational support of enterprise security platforms, including:
• CRIBL data modeling and log pipeline ingestion
• Security information and event management (SIEM)
• Assist with design and configuration of linux based security sensors and endpoint monitoring tools
• Secondarily Assist in the planning, design, deployment and operational support of enterprise security platforms, including:
• Extended Detection and Response (XDR)
• Vulnerability Management platforms and processes
• Data Loss Prevention (DLP) solutions
• Security Awareness and training platforms
• Collaborate with security architects to design and implement enterprise security solutions that align with LEADERSHIP’s business goals, regulatory requirements and organizational risk tolerance
• Design, deploy and manage countermeasures to address known security threats and contribute to mitigation strategies for emerging threats to enterprise data, systems and services
• Ensure consistent application of security controls across enterprise infrastructure and applications; validate control effectiveness and recommend improvements
• Support incident detection and response activities through monitoring, log analysis and reporting
• Develop technical documentation, implementation guides and standard operating procedures as needed
• Perform other duties as assigned in support of the Department of Administration’s Division of Information Security

Skills

• CRIBL DATA MODELING AND LOG PIPELINE DESIGN AND IMPLEMENTATION
• Strong understanding of enterprise security architecture and engineering principles
• Experience implementing and supporting enterprise security tools (SIEM, XDR, Vulnerability Management, DLP, endpoint security)
• Experience developing automation and integrations using scripting languages such as Python and Bash
• Knowledge of cybersecurity best practices, threat detection, and defensive security strategies
• Experience with Linux and Windows operating systems, including system hardening and security configuration
• Understanding of networking concepts, security protocols, and secure system design
• HANDS-ON CRIBL DATA MODELING EXPERIENCE
• Hands-on SIEM administration, analysis, and reporting experience
• Experience building and deploying Linux-based security sensors
• Familiarity with security frameworks and compliance standards such as NIST CSF, CJIS, IRS 1075, and CMS MARS-E

Company Overview