Elastic Engineer

Responsibilities

• Design, deploy, and operate scalable distributed Elastic clusters, including capacity planning and performance tuning
• Build and maintain ingestion pipelines aligned to security frameworks and Elastic Common Schema (ECS)
• Manage large-scale Elastic Agent and Fleet deployments
• Serve as the SME for log ingestion, parsing, normalization, and analysis using Logstash and GROK/DISSECT
• Deliver Elastic infrastructure as code (IaC) and automate deployments and configurations
• Create automation scripts to detect anomalies and improve operational workflows
• Build dashboards, visualizations, and investigation workflows in Kibana
• Support the development of network intrusion analytics in collaboration with detection teams
• Administer supporting Linux systems for Elastic components and data pipeline services

Requirements

• Certified Elastic Engineer
• Experience with Elastic Stack architecture, design, and deployment (on-premises and Elastic-Cloud)
• Deep understanding of Elasticsearch internals, including indexing, search, and data aggregation
• Proficiency in Elasticsearch Query DSL for complex queries and aggregations
• Proficiency in programming languages such as Java, Python, or Ruby
• Proven track record in cybersecurity, including understanding attack vectors and threat landscapes
• Experience with data parsing using GROK/DISSECT and ETL workflows
• Expertise in Elastic Security, Detection Rules, Machine Learning, and AI Assistant

Preferred Qualifications

• Experience developing complex Elasticsearch Watchers
• Knowledge of scripting languages for advanced automation
• Experience implementing role-based access control and encryption within Elasticsearch

About the Company

Jolera offers MSPs and IT solution providers next-generation managed services, enabling them to create world-class experiences for their clients. With over 20 years of experience, Jolera provides elevated managed service experiences through a collection of tenured experts.