Elasticsearch (ELK) Data Engineer

At Criterion Systems, we developed a different kind of business—a company whose real value is a reputation for excellence built upon the collective skills, talents, perspectives, and backgrounds of its people. By accepting a position with Criterion Systems, you will join a group of professionals with a collaborative mindset where we share ideas and foster professional development to accomplish our goals. In addition to our great culture, we also offer competitive compensation and benefit packages, company-sponsored team building events, and advancement opportunities. To find out more about how Criterion can help you take your career to the next level please visit our website: www.criterion-sys.com. Criterion Systems is a Military/Veteran Friendly Company therefore we encourage Veterans to apply.

We are seeking a mission-focused Senior ELK Data Engineer to support and contribute to our government customer’s success remotely!

Support and assist in Cybersecurity and Information Protection Division (S83) Program to establish, implement and maintain technology and capabilities to ensure the effective management of Federal information technology resources. Cybersecurity and information technology engineering tasks following the systems engineering process, formally known as, the System’s Development Life Cycle (SDLC) to fully deliver and maintain an operational ELK solution.     

Evaluate the delivered ELK solution as a system against the Federal initiatives, evolving threats, cybersecurity industry best practices, compliance information (e.g. Executive Orders, Binding Operating Directives, NIST special publications, DOT processes for supporting authority to operate (ATO) decision, ensuring compliance with cybersecurity control requirements (including applicable documentation), on-going recommendations for the mitigation of all threats and measurement of risk affecting the DOT environment.

• Expert services to install and manage Elasticsearch clusters in cloud environments, 
• Support development and capacity planning for searching and analyzing indexed data. 
• Implement secure data transport between the DOT Enterprise Logging System or other identified systems or components to include on premises and cloud hosted.   
• Will present change proposals, as needed, for implementation and updates to internal change management or the DOT Change Control Board 
• Engage with the shared services organization for network configuration, cloud services provisioning, authentication services, and certificate services. 

• Provide expert services to implement observability, from ingesting metrics, logs, Application Performance Monitoring (APM) and uptime data to a single data source 
• Develop analysis and automation reacting to events using Kibana, machine learning, and alerting. 
• Integrate multiple Indicators of Compromise (IOC) threat sources to develop correlation and automated notification to the DOT SOC that includes relevant artifacts.    
• Provide expert services to use Kibana for both data visualization and analysis.  
• Provide dashboards to analyzing time-series data to developing machine learning jobs. 
• Provide dashboards using unique data sets from system logs, vulnerability assessment data, and other endpoint information sources. 

• Expert services to use Kibana for both data visualization and analysis. 
• Provide dashboards to analyzing time-series data to developing machine learning jobs. 
• Dashboards using unique data sets from system logs, vulnerability assessment data, and other endpoint information sources; product should display minimal errors in data and visualizations 
• Document methods of data collections, reporting applications sources, and processes using plain language, graphs, charts and other means for communications. 

In addition to the expertise above, the Cybersecurity SME must meet the following qualification(s): 

• Proficient in Elastic to support Data Management, Searching Data, Develop Search Applications, Data Processing and Cluster Management.  
• Proficient in Elastic to support uptime, metrics, logging, application performance monitoring (APM), structuring and processing data and working with observability data. 
• Proficient in Elastic to support searching data, visualizing data and analyzing data 

Security Clearance Level

• Ability to obtain and maintain a security clearance

Certification

• Elastic Certification required (Elastic Certified Engineer, Elastic Observability Engineer OR Elastic Certified Analyst) or the ability to obtain it once hired

Work Schedule

• Ability to support work remotely

Benefits Offered

• Medical, Dental, Vision, Life Insurance, Short-Term Disability, Long-Term Disability, 401(k) match, Tuition/Training Assistance, Parental Leave, Paid Time Off, and Holidays.

Criterion Systems, LLC and its subsidiaries are committed to equal employment opportunity and non-discrimination at all levels of our organization. We believe in treating all applicants and employees fairly and make employment decisions without regard to any individual’s protected status:  race, ethnicity, color, national origin, ancestry, religion, creed, sex/gender, gender identity/gender expression, sexual orientation, physical and mental disability, marital/parental status, pregnancy (including childbirth, lactation, and related medical conditions), age, genetic information (including characteristics and testing), military and veteran status, or any other characteristic protected by law. For our complete EEO/AA and Pay Transparency statement, please visit https://careers-criterion-sys.icims.com/.