About the position
Starr Insurance Companies is a leading insurance and investment organization, providing commercial property and casualty insurance, including travel and accident coverage, to almost every imaginable business and industry in virtually every part of the world. Cornelius Vander Starr established his first insurance company in Shanghai, China in 1919. Today, we are one of the world's fastest growing insurance organizations, capable of writing in 128 countries on 6 continents. Starr's Information Security Team is seeking a qualified and experienced candidate to fill the newly created role of Data Analytics Engineer. As a Data Analytics Engineer specializing in Splunk, SIEM, and Cribl, you will be responsible for designing, implementing, and maintaining data pipelines and analytics solutions that enhance our security and operational intelligence capabilities. You will work closely with cross-functional teams to ensure the seamless integration and optimization of our data infrastructure.
Responsibilities
- Design, develop, and maintain data pipelines and ETL processes using Splunk, SIEM, and Cribl.
- Implement and manage Splunk infrastructure, including indexers, search heads, and forwarders.
- Develop and maintain SIEM solutions to monitor and analyze security events and incidents.
- Utilize Cribl to optimize data ingestion, routing, and transformation processes.
- Implement and manage SIEM infrastructure, including log collection, normalization, and correlation.
- Develop and maintain data ingestion processes to ensure timely and accurate data flow from various sources.
- Collaborate with security, and operations teams to ensure data accuracy and integrity.
- Create and maintain dashboards, reports, and alerts to provide actionable insights.
- Troubleshoot and resolve issues related to data ingestion, processing, and analysis.
Requirements
- Bachelor's degree in Computer Science, Information Technology, or a related field.
- 3+ years of experience in data engineering, with a focus on Splunk, SIEM, and Cribl.
- Proficiency in designing and managing Splunk infrastructure and applications.
- Strong understanding of SIEM concepts and experience with SIEM tools.
- Hands-on experience with Cribl for data routing and transformation.
- Proficiency in scripting languages such as Python, Bash, or PowerShell.
- Experience with cloud platforms (AWS, Azure, GCP) is a plus.
- Strong analytical and problem-solving skills.
- Excellent communication and collaboration abilities.
Nice-to-haves
- Relevant certifications (e.g., Splunk Certified Architect, Cribl Certified Administrator) are a plus.
A Smarter and Faster Way to Build Your Resume