Cribl Engineer Expert Security Clearance

Position: Cribl Engineer Expert with Security Clearance
Recro, a Certified Small Business, helps federal agencies achieve their goals through IT infrastructure, cybersecurity, Dev Ops, cloud services, and digital transformation. We prioritize innovation, employee growth, and a collaborative work environment, guided by our core value - to make a difference. Currently, Recro is seeking a motivated, career and customer-oriented Cribl Engineer Expert join our team in Tampa FL, Reston VA, Norfolk VA, Mclean VA, JB Andrews MD, College Park MD, Colorado Springs CO.

Clearance:
• TS/SCI CI Poly or FS Poly

Summary:

We are seeking a highly experienced Cribl Engineer to serve as the principal technical authority for observability pipelines built on Cribl Stream and Cribl Edge. This role is designed for a senior technologist with deep expertise in log/telemetry routing, large scale data engineering, and enterprise-grade observability architectures. You will shape pipeline strategy, design complex routing and transformation logic, drive platform reliability, mentor senior engineers, and serve as the top technical escalation point for Cribl-related challenges.

Responsibilities include but are not limited to:
* Lead architecture and design for Cribl Stream/Edge across multiple enclaves and data domains.
* Build high throughput pipelines (multiTB/day) with advanced routing, filtering, enrichment, and replay workflows.
* Optimize system performance, worker topology, CPU/memory distribution, queues, and transport mechanisms.
* Engineer secure data flows with masking, tokenization, RBAC, PKI/TLS, and other governance controls.
* Integrate pipelines with SIEM/analytics ecosystems (Splunk, Elastic, SaaS telemetry platforms, cloud services).
* Develop HA/DR patterns, reliability frameworks, fleet health metrics, and failure mode response processes.
* Maintain reusable Cribl packs, shared patterns, runbooks, and operational standards.
* Serve as the senior escalation point for Cribl issues; interface with vendor engineering as required.
* Mentor engineers, conduct design reviews, drive engineering excellence, and enforce architectural standards.
* Support cross functional teams (security, cloud, analytics, infrastructure) on logging and telemetry strategy.

Required Qualifications:

* 10+ years of experience in logging, observability, or SIEM engineering.
* 5+ years architecting enterprise scale log/telemetry pipelines.
* 3 + years hands‑on with Cribl Stream and Cribl Edge in production environments.
* Demonstrated success operating and scaling pipelines at 5-10+ TB/day.
* Expert-level experience with Splunk forwarding/ingestion, source type management, and indexing practices.
* Strong Linux fundamentals; scripting expertise (Python/Bash);
Git; automation (Ansible/Terraform).
* Strong understanding of transport protocols (HTTP, TCP, TLS/MTLS), Kafka, S3/object storage.
* Experience designing secure data flows, including encryption, RBAC, secrets management, and compliance controls.
* Demonstrated ability to mentor senior engineers and lead technical decision making.
* Certified Cribl Certified Engineer (CCOE) or equivalent Cribl product expertise.
* Must possess the following DoD 8570.01-M certifications or be willing to obtain within 30 days of hire: o Information Assurance Technician (IAT) Level II certification (currently Security+ CE, CCNA-Security, GSEC, SSCP, CySA+, GICSP, or CND). o IAT Level III certification requirements (currently CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, or GCIH). o Cyber Security Service Provider (CSSP) - Infrastructure Support (IS) certification requirements (currently CEH, CySA+, GICSP, SSCP, CHFI, CFR, Cloud+, or CND).

Preferred Qualifications:

* Expertise creating and maintaining Cribl Packs and reusable pipelines.
* Experience with cloud telemetry (AWS, Azure, hybrid) and cross‑domain data movement patterns.
* F amiliarity with NIST / CIS control frameworks and secure engineering practices.
* Experience building observability frameworks for large distributed systems.
* Vendor engagement experience (Cribl PS, product teams, troubleshooting escalations). Benefits at Recro:
* 1 00% paid medical, dental, and vision
* 401k - 6%…