Senior Specialist, Cybersecurity Engineering

About The Position

Requirements

• Bachelor's degree
• Minimum 4 years of experience in security data engineering, cloud engineering, or platform engineering roles.
• Hands‑on experience with Cribl or equivalent security data pipeline / ETL tooling.
• Strong experience building and managing infrastructure using IaC (Terraform, ARM/Bicep, or similar).
• Practical experience with Google Cloud and/or Azure.
• Solid understanding of security telemetry, logging, and data lifecycle concepts.
• Experience operating platforms in large, enterprise‑scale environments.
• Certificate Services
• Cloud Security
• Cybersecurity Analytics
• Cybersecurity Operations
• Delivery of Security Applications
• Design Applications
• Identity Access Management (IAM)
• Incident Response
• Information Security
• Network Segmentation
• Operational Technology (OT) Security
• Security Analytics
• SLA Management
• System Designs
• Team Leadership
• Technical Advice

Nice To Haves

• Current Employees apply HERE
• Current Contingent Workers apply HERE
• US and Puerto Rico Residents Only: Our company is committed to inclusion, ensuring that candidates can engage in a hiring process that exhibits their true capabilities. Please click here if you need an accommodation during the application or hiring process.
• As an Equal Employment Opportunity Employer, we provide equal opportunities to all employees and applicants for employment and prohibit discrimination on the basis of race, color, age, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or other applicable legally protected characteristics.
• As a federal contractor, we comply with all affirmative action requirements for protected veterans and individuals with disabilities.
• For more information about personal rights under the U.S. Equal Opportunity Employment laws, visit: EEOC Know Your Rights EEOC GINA Supplement
• We are proud to be a company that embraces the value of bringing together, talented, and committed people with diverse experiences, perspectives, skills and backgrounds. The fastest way to breakthrough innovation is when people with diverse ideas, broad experiences, backgrounds, and skills come together in an inclusive environment. We encourage our colleagues to respectfully challenge one another’s thinking and approach problems collectively.
• Learn more about your rights, including under California, Colorado and other US State Acts
• San Francisco Residents Only: We will consider qualified applicants with arrest and conviction records for employment in compliance with the San Francisco Fair Chance Ordinance
• Los Angeles Residents Only: We will consider for employment all qualified applicants, including those with criminal histories, in a manner consistent with the requirements of applicable state and local laws, including the City of Los Angeles’ Fair Chance Initiative for Hiring Ordinance
• Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails.

Responsibilities

• Engineer and operate Cribl pipelines to ingest, parse, enrich, route, and transform high‑volume security telemetry.
• Optimize data flows for performance, reliability, and cost efficiency across security analytics platforms, including SIEM, XDR, and data lakes.
• Implement and enforce data standards for normalization, metadata enrichment, and data quality validation.
• Support onboarding of new security data sources and continuous improvement of existing pipelines.
• Design, deploy, and maintain cloud infrastructure using Infrastructure as Code (IaC) across Azure and Google Cloud.
• Manage infrastructure for security data platforms, ingestion services, and supporting components using Terraform, ARM/Bicep, or equivalent tooling.
• Ensure infrastructure deployments are consistent, repeatable, and auditable across environments (development, test, production).
• Partner with cloud and platform teams to align infrastructure with enterprise security, networking, and governance standards.
• Ensure availability, scalability, and resilience of security data pipelines and supporting infrastructure.
• Implement monitoring, alerting, and operational metrics for ETL and ingestion services.
• Participate in incident response and root cause analysis related to data pipeline or infrastructure issues.
• Proactively identify and remediate performance bottlenecks and operational risks.
• Drive automation for infrastructure provisioning, pipeline deployment, and configuration management.
• Contribute to roadmap planning, technical debt reduction, and operational maturity initiatives.
• Develop and maintain documentation, standards, and runbooks for data pipelines and infrastructure.
• Promote reuse and standard patterns across CD&A engineering.
• Work closely with Cyber Defense (CFC/SOC), XDR/SIEM engineers, Cloud Security, Platform Engineering, and Compliance teams.
• Support audit, compliance, and data retention requirements impacting security telemetry.
• Provide technical input into architecture decisions, onboarding reviews, and platform changes.

Benefits

• medical
• dental
• vision healthcare
• other insurance benefits (for employee and family)
• retirement benefits, including 401(k)
• paid holidays
• vacation
• compassionate and sick days