Elastic Stack Security Engineer

Elastic Stack Security Engineer

Location: Ashburn, Virginia

Type: Full-time, Onsite

Clearance: Must be a US citizen and must be willing and be able to favorably pass a (BI) Background Investigation to join this program.

JOB DESCRIPTION

Critical Solutions is seeking a Elastic Engineer to support federal program in Ashburn, VA.

The ideal candidate will have experience working with Elastic Stack (Elasticsearch, Logstash, Kibana, and Beats) to develop, manage, and support scalable search and analytics solutions. The Elastic Engineer will be part of the Enterprise Logging Solution Team, responsible for maintaining the Agency's Elastic instances with a heavy emphasis on data on-boarding, content development, configuration, troubleshooting, reporting, and visualizations. Prior experience with Splunk is a strong plus.

PRIMARY ROLES AND RESPONSIBILITIES:

• Design, develop, and maintain custom dashboards using Elastic stack for monitoring and visualization of system metrics, logs, and traces.
• Monitor and optimize the performance of Elastic Stack clusters to ensure high availability, reliability, and performance.
• Work with data sources and ETL processes to integrate and normalize data into Elasticsearch, ensuring data quality and consistency.
• Implement and maintain security best practices for Elastic Stack, including access controls, encryption, and compliance with regulatory standards.
• Create and maintain comprehensive documentation for Elastic Stack configurations, processes, and procedures.
• Maintain Elasticsearch clusters in a cloud based environment across multiple availability zones.

BASIC QUALIFICATIONS:

• Must be a US citizen and must be willing and be able to favorably pass a (BI) Background Investigation to join this program.
• Bachelors' degree in Computer Science, Engineering, Information Technology, Cyber Security, or related field and 4 to 8 years of related experience. Additional years of experience and cyber certifications may be considered in lieu of degree.
• 3+ years of Elasticsearch stack (Elasticsearch, Logstash, Beats, Kibana) experience in active production environment.
• Experience with data ingest, Extract, Transform, and Load (ETL) techniques.
• Experience with multi-node clustering, architecture, development, implementation, and health monitoring of the indexes.
• Advanced understanding of Elasticsearch Management, reindexing and data mappings, JSON and KQL searching syntax, and Kibana dashboard options.
• Experience working with various versions of JAVA.
• Experienced Linux administrator with strong bash scripting ability.
• Proficient with managing AWS Elastic Kubernetes Service.
• Experience troubleshooting, tuning, and configuring Elasticsearch clusters, nodes, shards, and analyzers from the "ground up."
• Experience configuring and managing Elastic CDM Dashboard / XML.
• Proficient with Ansible Ad-hoc commands and creating / editing playbooks for automation.
• Experience designing, documenting, implementing, securing, and maintaining Elasticsearch, Logstash, Kibana (ELK Stack) Enterprise solutions.
• Excellent problem-solving skills with the ability to troubleshoot and resolve complex issues in a timely manner.
• Familiar with the management, operational, and technical aspects of IT Security in a complex enterprise environment.

CERTIFICATION REQUIREMENT:

• Must have one of the following certifications: Elastic Certified Analyst, Elastic Certified Engineer, or Elastic Certified Observability Engineer

PREFERRED QUALIFICATIONS:

• Elastic Engineer, Elastic Analyst, and/or Elastic Observability Engineer Certifications Preferred.
• Experience with deploying and using Elasticsearch in Commercial Cloud Platform (ex, AWS, Google Cloud, Azure).
• Proficiency in scripting languages such as Python or PowerShell for automation and integration tasks.
• Knowledge of PKI (ability to create and validate certificates).

LOCATION:

• On-Site
• Must be willing and able to commute to Ashburn, VA

ADDITIONAL INFORMATION:

CLEARANCE REQUIREMENT: US CITIZENSHIP IS REQUIRED. In addition, selected candidate must undergo background investigation (BI) and finger printing by the federal agency and successfully pass the preceding to qualify for the position.

CRITICAL SOLUTIONS PAY AND BENEFITS:

Salary range $135,000 - $173,000. The salary range for this position represent the typical salary range for this job level and this does not guarantee a specific salary. Compensation is based upon multiple factors such as responsibilities of the job, education, experience, knowledge, skills, certifications, and other requirements.

BENEFIT SNAPSHOT: 100% premium coverage for Medical, Dental, Vision, and Life Insurance, Supplemental Insurance, 401K matching, Flexible Time Off (PTO/Holidays), Higher Education/Training Reimbursement, and more.