Cribl Engineer / Cybersecurity Engineer (Cribl & Splunk)

Location:

Onsite – Dubai, UAE Engagement:

Contract / Third-Party (Resident Engineer) Duration:

24 months (extendable) Experience:

5–8+ years Tools (Mandatory):

Cribl Stream / Edge, Splunk

Company Description AS13 Tech Innovations Pvt Ltd specializes in developing advanced solutions in Artificial Intelligence, Cybersecurity, Big Data, and Automation through a dedicated in-house R&D division. The company focuses on building intelligent systems, predictive analytics, and forward-thinking security frameworks for an ever-evolving threat landscape. With expertise in custom software development, cloud integration, and enterprise automation, AS13 Tech Innovations crafts secure, scalable, and tailored digital solutions to drive innovation and growth. Functioning as strategic technology partners, the company is committed to delivering impactful solutions that enable businesses to innovate and succeed.

Role Description We are looking for a senior, hands-on Cribl Engineer with strong Splunk integration expertise to support a large-scale enterprise log and telemetry pipeline. You’ll own the design, onboarding, governance, and day-to-day operations of secure, high-performance data pipelines while working closely with SOC, platform, and application teams.

Key Responsibilities

Cribl Platform Engineering Deploy, configure, and manage Cribl Stream & Cribl Edge (HA, scaling, leader/worker/edge models) Build and manage pipelines from source → processing → destination Implement parsing, filtering, sampling, masking/redaction, enrichment, and routing Splunk Integration & SIEM Enablement Integrate Cribl with Splunk (HEC, Syslog, UF/HF) Ensure data quality, normalization (CIM where required), field extractions, and metadata tagging Manage raw data routing, replay, and rehydration workflows Security, Governance & Compliance Implement RBAC, tenant-based access, and policy controls Enforce PCI / PII compliance via masking and controlled routing Integrate with SSO (Azure AD) and secrets management (e.g., Vault) Enable audit logging and SOC visibility Automation & GitOps Implement GitOps/CI-CD for pipeline configurations and releases Create reusable onboarding templates and runbooks Operations & Reliability (BAU) Monitor platform health, throughput, latency, and backpressure Perform capacity planning, performance tuning, and preventive maintenance Support incidents, changes, and vendor escalations Produce operational dashboards and monthly KPI/SLA reports Stakeholder Collaboration Partner with application, platform, and SOC teams Deliver documentation, SOPs, and admin/user training Required Skills

5–8+ years in Cybersecurity / SOC / Log Management Strong hands-on Cribl Stream/Edge experience (production) Strong Splunk integration experience Deep understanding of log pipelines, syslog, JSON, regex, routing, buffering, replay Linux administration & troubleshooting Networking fundamentals (ports, firewalls, TLS) IAM, RBAC, and audit logging concepts Good to Have

Kubernetes / OpenShift exposure VMware environments Observability tools (Datadog, Dynatrace) ITSM tools (ServiceNow) ITIL knowledge Preferred Certifications

Cribl Certified (Admin/User) Splunk Certifications Security certifications (CISSP, CISM, CEH)