Elastic Engineer

Job#: 3025160

Job Description:
Elastic Security Engineer

Location: 100% REMOTE!

Employment Type: Permanent Direct Hire

Role Overview

Serve as a senior member of the Cybersecurity Engineering team responsible for designing, implementing, and optimizing enterprise security monitoring and automation capabilities. This role will lead the architecture and operational maturity of the organization's SIEM platform with a focus on Elasticsearch and security automation to improve threat detection, incident response, and visibility across the enterprise infrastructure.

Key Responsibilities

• Design, implement, and maintain enterprise SIEM infrastructure, including Elasticsearch clusters, log pipelines, indexing strategies, and data ingestion.
• Develop and maintain SIEM detection content, including correlation rules, dashboards, and threat detection use cases.
• Lead the Elasticsearch roadmap and platform strategy, ensuring scalability, high availability, and performance optimization.
• Build security automation workflows and scripts using Python to streamline incident response and security operations processes.
• Integrate SIEM/SOAR capabilities with security technologies like EDR, threat intelligence platforms, and vulnerability scanners.
• Tune detection logic and log pipelines to reduce false positives.
• Collaborate with SOC analysts and incident response teams to investigate alerts and conduct forensic analysis.
• Partner with cross-functional teams to integrate security telemetry from cloud platforms (Azure/AWS), Linux/Windows servers, and applications.
• Sometimes work as a SOC Analyst to help with performance tuning.
• Provide mentorship and guidance to junior security engineers and analysts.

Required Qualifications

Experience:

• At least 5 years of experience in cybersecurity, specifically in a security engineering role.
• Strong Elastic fundamentals, including standing up components, maintenance, and managing data ingestion pipelines.
• Experience in a Linux environment and with API work.
• Progressive technology management experience in cross-functional teams.

Education:

• Bachelor's degree (B.A. or B.S.) in computer science, cybersecurity, or a related field from a four-year college or university.

Technical Skills:

• SIEM Platforms: Elastic Stack (Elasticsearch, Logstash, Kibana), Azure Sentinel.
• Automation & Scripting: Python, PowerShell, Bash, Ansible.
• Security Technologies: EDR, CASB, SASE, SWG, ZTNA, DLP, IAM, PAM/PIM, WAF, IDS/IPS, Palo Alto.
• Infrastructure: Linux, Windows Server, Cloud (Azure/AWS/Google Cloud Platform), network security devices.
• Logging & Data Processing: Syslog, log parsing, regex/grok pipelines, data normalization.

Preferred Qualifications

• Certified Information Systems Security Professional (CISSP).
• Additional certifications such as GIAC, CEH, or SIEM platform certifications.
• Hospitality industry product development experience.

Work Environment

The duties of this role require the ability to stand, bend, stoop, sit, walk, twist, and turn. The role may occasionally require lifting up to 25 pounds and involves the use of a computer keyboard and calculator.

This employer is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Apex uses a virtual recruiter as part of the application process. Click for more details.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Benefits Department at or .

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.