Cribl Engineer

about 10 hours ago

Washington, DC, USASenior / Staff+

H1B Sponsor

Responsibilities

Lead architecture and design for Cribl Stream/Edge across multiple enclaves and data domains.
Build high throughput pipelines with advanced routing, filtering, enrichment, and replay workflows.
Optimize system performance, worker topology, CPU/memory distribution, queues, and transport mechanisms.
Engineer secure data flows with governance controls.
Integrate pipelines with SIEM/analytics ecosystems.
Develop reliability frameworks and failure mode response processes.
Maintain reusable Cribl packs and operational standards.
Serve as the senior escalation point for Cribl issues.
Mentor engineers and conduct design reviews.
Support cross-functional teams on logging and telemetry strategy.

Must possess a TS/SCI w/Poly (CI or FS).
10+ years of experience in logging, observability, or SIEM engineering.
5+ years architecting enterprise scale log/telemetry pipelines.
3+ years hands-on with Cribl Stream and Cribl Edge in production environments.
Demonstrated success operating and scaling pipelines at 5–10+ TB/day.
Expert-level experience with Splunk forwarding/ingestion and indexing practices.
Strong Linux fundamentals and scripting expertise (Python/Bash).
Strong understanding of transport protocols and data storage.
Experience designing secure data flows and compliance controls.
Demonstrated ability to mentor senior engineers.
Certified Cribl Certified Engineer (CCOE) or equivalent expertise.
Must possess or be willing to obtain DoD 8570.01-M certifications.