Cribl Engineer / Cybersecurity Engineer (Cribl & Splunk)

Location: Onsite Dubai, UAE

Engagement: Contract / Third-Party (Resident Engineer)

Duration: 24 months (extendable)

Experience: 58+ years

Tools (Mandatory): Cribl Stream / Edge, Splunk

Company Description

AS13 Tech Innovations Pvt Ltd specializes in developing advanced solutions in Artificial Intelligence, Cybersecurity, Big Data, and Automation through a dedicated in-house R&D division. The company focuses on building intelligent systems, predictive analytics, and forward-thinking security frameworks for an ever-evolving threat landscape. With expertise in custom software development, cloud integration, and enterprise automation, AS13 Tech Innovations crafts secure, scalable, and tailored digital solutions to drive innovation and growth. Functioning as strategic technology partners, the company is committed to delivering impactful solutions that enable businesses to innovate and succeed.

Role Description

We are looking for a senior, hands-on Cribl Engineer with strong Splunk integration expertise to support a large-scale enterprise log and telemetry pipeline. Youll own the design, onboarding, governance, and day-to-day operations of secure, high-performance data pipelines while working closely with SOC, platform, and application teams.

Cribl Platform Engineering

• Deploy, configure, and manage Cribl Stream & Cribl Edge (HA, scaling, leader/worker/edge models)
• Build and manage pipelines from source processing destination
• Implement parsing, filtering, sampling, masking/redaction, enrichment, and routing

Splunk Integration & SIEM Enablement

• Integrate Cribl with Splunk (HEC, Syslog, UF/HF)
• Ensure data quality, normalization (CIM where required), field extractions, and metadata tagging
• Manage raw data routing, replay, and rehydration workflows

Security, Governance & Compliance

• Implement RBAC, tenant-based access, and policy controls
• Enforce PCI / PII compliance via masking and controlled routing
• Integrate with SSO (Azure AD) and secrets management (e.g., Vault)
• Enable audit logging and SOC visibility

Automation & GitOps

• Implement GitOps/CI-CD for pipeline configurations and releases
• Create reusable onboarding templates and runbooks

Operations & Reliability (BAU)

• Monitor platform health, throughput, latency, and backpressure
• Perform capacity planning, performance tuning, and preventive maintenance
• Support incidents, changes, and vendor escalations
• Produce operational dashboards and monthly KPI/SLA reports

Stakeholder Collaboration

• Partner with application, platform, and SOC teams
• Deliver documentation, SOPs, and admin/user training

• 58+ years in Cybersecurity / SOC / Log Management
• Strong hands-on Cribl Stream/Edge experience (production)
• Strong Splunk integration experience
• Deep understanding of log pipelines, syslog, JSON, regex, routing, buffering, replay
• Linux administration & troubleshooting
• Networking fundamentals (ports, firewalls, TLS)
• IAM, RBAC, and audit logging concepts

• Kubernetes / OpenShift exposure
• VMware environments
• Observability tools (Datadog, Dynatrace)
• ITSM tools (ServiceNow)
• ITIL knowledge

• Cribl Certified (Admin/User)
• Splunk Certifications
• Security certifications (CISSP, CISM, CEH)