Senior Consultant, SIEM Engineer (Logstash)

Infinitive IncAshburn, VA
$90,000 - $140,000

About The Position

Infinitive is seeking a highly skilled SIEM Engineer to support our client's Cybersecurity Operations team. In this role, you will be responsible for building, optimizing, and maintaining the data pipelines that power our security monitoring infrastructure. You will focus heavily on data ingestion, log parsing, and transformation to ensure high-fidelity data reaches our analytics platforms. The ideal candidate bridges the gap between Security Operations and DevOps, leveraging modern CI/CD practices to manage infrastructure-as-code and building resilient data architectures.

Requirements

  • Logstash Expertise (Required): Deep understanding of Logstash syntax, plugin configurations (input, filter, output), and advanced string manipulation using Regular Expressions (Regex).
  • DevOps & Automation: Hands-on experience with version control (GitHub) and building/maintaining deployment pipelines (Jenkins or equivalent CI/CD tools).
  • Big Data & Architecture: Strong grasp of big data concepts, data transformation patterns, and source-to-target pipeline architectures.
  • Cloud Messaging: Experience with event-based, distributed messaging systems, specifically Amazon SQS and Amazon SNS.
  • SIEM & Analytics: Proficiency in Splunk, specifically for reading logs, diagnosing infrastructure error messages, and validating data ingestion.
  • Database Skills: Solid understanding of SQL syntax for querying and validating data.
  • 3+ years of experience in Security Engineering, Data Engineering, or a DevSecOps role.
  • Strong analytical and troubleshooting skills with a keen eye for data anomalies.
  • Ability to work collaboratively in an agile environment.

Nice To Haves

  • Experience with the broader Elastic Stack (Elasticsearch, Kibana).
  • AWS Certified Security or AWS Certified SysOps Administrator.
  • Familiarity with containerization (Docker, Kubernetes) for scaling log collectors.

Responsibilities

  • Log Ingestion & Parsing: Design, develop, and maintain complex Logstash pipelines. Write efficient Regular Expressions (Regex) and utilize Logstash syntax to parse, filter, and enrich unstructured log data.
  • Data Architecture & Engineering: Implement and optimize source-to-target data architectures, ensuring scalable and reliable data transformation from diverse security sources.
  • Event-Driven Systems: Manage and troubleshoot data flowing through cloud-native event-driven messaging systems, specifically AWS SQS and SNS.
  • CI/CD & Version Control: Treat SIEM configurations as code. Manage configurations using GitHub and automate testing and deployment via Jenkins or similar CI/CD pipelines.
  • SIEM Analysis & Troubleshooting: Analyze and query log data within Splunk to audit data quality, troubleshoot parsing errors, and investigate system messages.
  • Database Querying: Write and understand SQL syntax to interact with relational databases for data validation, lookups, and reporting.

Benefits

  • Infinitive is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state, or local law.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service