Alliance Integration Engineer

North America

Corelight

Disrupt future attacks with complete network visibility, next-level analytics, faster investigations, and expert threat hunting.

View all jobs at Corelight

Apply now Apply later

By making evidence the heart of security, we help customers stay ahead of ever-changing cyber-attacks. 

Corelight is a cybersecurity company that transforms network and cloud activity into evidence.  Evidence that elite defenders use to proactively hunt for threats, accelerate response to cyber incidents, gain complete network visibility and create powerful analytics using machine-learning and behavioral analysis tools.  Easily deployed, and available in traditional and SaaS-based formats, Corelight is the fastest-growing Network Detection and Response (NDR) platform in the industry.  And we are the only NDR platform that leverages the power of Open Source projects in addition to our own technology to deliver Intrusion Detection (IDS), Network Security Monitoring (NSM), and Smart PCAP solutions.  We sell to some of the most sensitive, mission critical large enterprises and government agencies in the world.

At Corelight, we are at the forefront of network security, helping organizations protect their environments with an open NDR platform that delivers unparalleled network visibility. We are looking for a passionate and driven Presales Engineer to join our team, contributing to our mission of helping customers stay ahead of evolving threats.

Position Summary: As an Alliance Integration Engineer at Corelight, you will be instrumental in enhancing the integration capabilities of our NDR sensors for data export into Security Information and Event Management (SIEM) systems like Splunk. You will be working on the forefront of SIEM technology, focusing on the development of dashboards, workflows, and applications that provide our users with unparalleled insights and control over their security data.

Key Responsibilities:

  • Develop and improve integration solutions for sensor data export into SIEM platforms, with a focus on Splunk.
  • Design and build custom dashboards and workflows that enable users to visualize and manage security data effectively.
  • Engage in application development for SIEM systems, ensuring seamless operation and enhanced user experience.
  • Collaborate with cross-functional teams to gather requirements and translate them into effective technical solutions.
  • Manage a team of external contractors to expand to other SIEM platforms; prioritize and delegate effectively.
  • Maintain up-to-date knowledge of SIEM technologies and industry best practices to ensure the delivery of cutting-edge solutions.
  • Provide technical guidance and support to partners and customers for integration-related issues.
  • Work closely with product management and engineering teams to influence the roadmap and development of Corelight's integration capabilities.

Minimum Qualifications:

  • Bachelor's degree in Computer Science or a related technical field, or equivalent practical experience.
  • Proven experience in SIEM integration, preferably with Splunk.
  • Strong development skills, with experience in languages and tools supported by Splunk (e.g., Java, Python, Splunk Query Language).
  • Solid understanding of data visualization and the creation of interactive dashboards.
  • Familiarity with networking and security concepts, including IDS, NSM, and cybersecurity attack techniques.
  • Experience with common security workflows and processes (IR, threat hunting), especially related to network traffic + detection
  • Knowledge of the security application and technology integration landscape across a variety of technologies including SIEM, XDR, and SOAR
  • Excellent problem-solving abilities and a strong customer focus.
  • Strong communication skills and the ability to work effectively in a team environment.

Preferred Qualifications:

  • Advanced knowledge of SIEM systems and their deployment in large-scale environments.
  • Experience with other SIEM platforms like Elasticsearch, LogRhythm, or QRadar.
  • Familiarity with cloud technologies and services, particularly those related to data processing and analytics.
  • Prior experience in a cybersecurity company or a similar high-tech environment.
  • Experience with Agile development methodologies and working with distributed teams.

We are proud of our culture and values - driving diversity of background and thought, low-ego results, applied curiosity and tireless service to our customers and community.  Corelight is committed to a geographically dispersed yet connected employee base with employees working from home and office locations around the world.  Fueled by an accelerating revenue stream, and investments from top-tier venture capital organizations such as Crowdstrike, Accel and Insight - we are rapidly expanding our team.  

Check us out at www.corelight.com

Notice of Pay Transparency:
The compensation for this position may vary depending on factors such as your location, skills and experience. Depending on the nature and seniority of the role, a percentage of compensation may come in the form of a commission-based or discretionary bonus. Equity and additional benefits will also be awarded.

Compensation Range$159,000—$185,000 USD
Apply now Apply later
Job stats:  2  0  0

Tags: Agile Analytics Cloud Computer Science CrowdStrike Elasticsearch IDS Intrusion detection Java LogRhythm Monitoring Network security NSM Open Source PCAP Python QRadar SaaS SIEM SOAR Splunk XDR

Perks/benefits: Career development Equity / stock options Salary bonus

Region: North America

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.