Job Description

Dragonfli Group is a cybersecurity and IT consulting firm providing services to federal agencies and Fortune 100 enterprises. Headquartered in Washington, DC, Dragonfli supports clients in securing mission-critical systems across on-site, hybrid, and fully remote environments.

This contract Cyber Data Engineer role supports a large federal agency in protecting its cybersecurity data pipelines within a large-scale IT environment. The engineer will manage and develop security data pipelines, focusing on tools like Cribl and associated integrations. Key responsibilities include supporting pipeline development and administration, and integration across SIEM, EDR, and other platforms. The role requires seasoned IT security expertise, hands-on technical skills, and strong communication/planning. It's a high-impact opportunity to shape data security within a major federal agency.

This is a multi-year contract position involving a large US federal agency. Candidates with previous federal contracting experience are preferred. U.S. Citizenship or Permanent Residency required. If hired, all work related to this role must be performed within the continental U.S.

Responsibilities:

• Manage and develop security data pipelines.
• Ensure reliable and efficient data movement and transformation.
• Support pipeline development and administration.
• Integrate across SIEM, EDR, and other platforms.
• Assist system owners to achieve logging and monitoring objectives.
• Create and maintain deployment and data pipelines documentation.
• Support security analytics capabilities expansion.
• Collaborate with stakeholders to optimize data processes.

Requirements

• Four (4)+ years of experience managing and engineering data pipelines (Cribl preferred).
• BS/BA in a cyber-related field or equivalent experience/certifications.
• Experience with SIEM ingestion, data transformation, and integration.
• Experience integrating event feeds with ELM/SIEM systems using syslog methods.
• Knowledge of ELM/SIEM threat and incident detection automation.
• Knowledge of Splunk software and CrowdStrike Falcon Platform features.
• Familiarity with cloud and on-premises data environments.
• Strong problem-solving and technical documentation skills.

Skill(s)

• Proficiency in data pipeline management and development.

• Strong technical documentation abilities.

• Effective team and stakeholder communication.

• Problem-solving and analytical skills.

• Experience with Cribl and SIEM platforms.

• Familiarity with cloud and on-premises environments.

• Ability to support security analytics expansion.

• Strong integration and transformation skills.

Benefits

• Insurance – health, dental, and vision

• Paid Time Off (PTO) and 11 Federal Holidays

• 401(k) employer match

Travel

None