DevOps Security Engineer (Cribl)

Insight is looking to hire a DevOps Security Engineer to join the Security Observability team in the Cybersecurity Engineering organization.
Cybersecurity Engineering – scales the means and mechanisms for monitoring, detection, analysis, and accountability for remediation of violations against security expectations in environments such as Network, Endpoint (IOT / OT), Cloud, Containers, and Data Security etc.

Key Responsibilities

• Own end-to-end onboarding for assigned log sources (intake, discovery, build, and delivery) through handoff to downstream security platforms.
• Design, build, and maintain Cribl (Edge/Stream) ingestion pipelines to collect, transform, normalize, and route logs reliably.
• Implement source-specific pipeline logic for varied formats, access methods, and delivery mechanisms across cloud and hybrid environments.
• Partner with log source owner (application) teams to understand logging capabilities and constraints; translate requirements into scalable, maintainable pipelines.
• Collaborate with the SOC to ensure pipelines meet monitoring needs (completeness, consistency, and expected data quality).
• Troubleshoot and resolve ingestion issues (gaps, duplication, schema drift, malformed events, and volume anomalies).
• Use infrastructure-as-code (e.g., Terraform) for repeatable, auditable, and scalable pipeline deployments.
• Validate end-to-end delivery to downstream destinations (e.g., SIEM) and drive continuous improvements to onboarding playbooks and ingestion patterns.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• 3+ years of engineering experience with log ingestion & pipeline engineering (Cribl Edge/Stream): parse/transform/normalize/route logs; validate end-to-end delivery.
• Cloud & infrastructure foundations (AWS/Azure): logging access patterns and IAM; Terraform; Linux/CLI operations and troubleshooting.
• Security logging & automation: SIEM fundamentals; ADX/Sentinel ingestion integration; Python/Bash for automation and validation; REST ingestion + ASIM familiarity
• Bachelor’s degree in computer science, engineering, or related discipline.
• Knowledge of networking, security best practices, and cloud-based infrastructure.
• Excellent spoken and written communication skills (verbal and non-verbal).
• Strong analytical and problem-solving skills (data modelling skills would be an asset).
• Ability to create detailed, high quality, design deliverables.
• Hands-on experience working with large, complex datasets in enterprise-scale environments

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.