Job Description
Location:
Onsite – Dubai, UAE
Engagement:
Contract / Third-Party (Resident Engineer)
Duration:
24 months (extendable)
Experience:
5–8+ years
Tools (Mandatory):
Cribl Stream / Edge, Splunk
Company Description
AS13 Tech Innovations Pvt Ltd specializes in developing advanced solutions in Artificial Intelligence, Cybersecurity, Big Data, and Automation through a dedicated in-house R&D division. The company focuses on building intelligent systems, predictive analytics, and forward-thinking security frameworks for an ever-evolving threat landscape. With expertise in custom software development, cloud integration, and enterprise automation, AS13 Tech Innovations crafts secure, scalable, and tailored digital solutions to drive innovation and growth. Functioning as strategic technology partners, the company is committed to delivering impactful solutions that enable businesses to innovate and succeed.
Role Description
We are looking for a senior, hands-on Cribl Engineer with strong Splunk integration expertise to support a large-scale enterprise log and telemetry pipeline. You’ll own the design, onboarding, governance, and day-to-day operations of secure, high-performance data pipelines while working closely with SOC, platform, and application teams.
Key Responsibilities
Cribl Platform Engineering
Deploy, configure, and manage Cribl Stream & Cribl Edge (HA, scaling, leader/worker/edge models)
Build and manage pipelines from source → processing → destination
Implement parsing, filtering, sampling, masking/redaction, enrichment, and routing
Splunk Integration & SIEM Enablement
Integrate Cribl with Splunk (HEC, Syslog, UF/HF)
Ensure data quality, normalization (CIM where required), field extractions, and metadata tagging
Manage raw data routing, replay, and rehydration workflows
Security, Governance & Compliance
Implement RBAC, tenant-based access, and policy controls
Enforce PCI / PII compliance via masking and controlled routing
Integrate with SSO (Azure AD) and secrets management (e.g., Vault)
Enable audit logging and SOC visibility
Automation & GitOps
Implement GitOps/CI-CD for pipeline configurations and releases
Create reusable onboarding templates and runbooks
Operations & Reliability (BAU)
Monitor platform health, throughput, latency, and backpressure
Perform capacity planning, performance tuning, and preventive maintenance
Support incidents, changes, and vendor escalations
Produce operational dashboards and monthly KPI/SLA reports
Stakeholder Collaboration
Partner with application, platform, and SOC teams
Deliver documentation, SOPs, and admin/user training
Required Skills
5–8+ years in Cybersecurity / SOC / Log Management
Strong hands-on Cribl Stream/Edge experience (production)
Strong Splunk integration experience
Deep understanding of log pipelines, syslog, JSON, regex, routing, buffering, replay
Linux administration & troubleshooting
Networking fundamentals (ports, firewalls, TLS)
IAM, RBAC, and audit logging concepts
Good to Have
Kubernetes / OpenShift exposure
VMware environments
Observability tools (Datadog, Dynatrace)
ITSM tools (ServiceNow)
ITIL knowledge
Preferred Certifications
Cribl Certified (Admin/User)
Splunk Certifications
Security certifications (CISSP, CISM, CEH)