Senior Cybersecurity Engineer - Security Telemetry and Analytics

About the Role

Are you passionate about security engineering and looking to make a significant impact in a leading biopharmaceutical company? Join our company as a Senior Cybersecurity Engineer - Security Telemetry and Analytics and play a key role in designing, implementing, and optimizing our next-generation security telemetry and analytics platforms. This Senior Cybersecurity Engineer remote position allows you to drive complex engineering initiatives and collaborate with cross-functional teams to deliver high-impact security outcomes.

What You'll Do

• Design and optimize enterprise-scale Sentinel SIEM/analytics solutions.
• Architect and manage ADX clusters for scalable, cost-optimized query and hunting workloads.
• Build and tune Cribl pipelines (Edge & Stream) for telemetry routing, enrichment, and normalization.
• Integrate across the Azure stack (Logic Apps, Event Hub, Functions, Key Vault, etc.) for automation and resilience.
• Design and engineer ingestion pipelines from multiple log sources into Sentinel/ADX.
• Develop and optimize KQL queries, detection rules, dashboards, and workbooks.
• Ensure telemetry pipelines are reliable, scalable, and compliant with enterprise logging standards.
• Drive performance benchmarking and cost governance for large-scale data ingestion.
• Act as a technical SME and advisor for cross-functional security and infrastructure teams.
• Mentor and support Specialist-level engineers to uplift team skills in Sentinel, ADX, and Cribl.
• Partner with incident response, threat hunting, and cloud engineering teams to translate requirements into scalable solutions.

Requirements

• 6–10+ years of IT/security engineering experience, with 3–5+ years focused on Microsoft Sentinel & Azure security stack.
• Proven expertise in ADX schema design, query optimization, and capacity planning.
• Hands-on experience with Cribl (Stream, Edge) for enterprise-scale log routing and transformation.
• Strong proficiency in KQL, Azure Logic Apps, and data ingestion pipelines.
• Deep understanding of SIEM architectures, SOAR automation, and cloud-native security controls.

Nice to Have

• Experience with ServiceNow SIR or equivalent case management integrations.
• Familiarity with MITRE ATT&CK mapping for detection engineering.
• Scripting skills (PowerShell, Python, Bash) for automation.
• Strong communication skills to influence technical and non-technical stakeholders.

What We Offer

• Flexible work arrangements with a hybrid work model.
• Relocation package for eligible candidates.
• Opportunities for professional growth and development.
• Collaborative and inclusive work environment.
• Competitive salary and benefits package.

Interested in remote work opportunities in Cyber Security? Discover Cyber Security Remote Jobs featuring exclusive positions from top companies that offer flexible work arrangements.