Professional Services Engineer - TS/SCI - Full Poly jobs in United States
cer-icon
Apply on Employer Site
company-logo

Corelight · 19 hours ago

Professional Services Engineer - TS/SCI - Full Poly

positionWashington, DC
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
date5+ years exp

Corelight is a leading network detection and response platform focused on cybersecurity. The role of Staff Resident PSE involves preparing and validating equipment configurations, developing detection content, and assessing the health of Corelight infrastructure at client locations.

AnalyticsCyber SecurityNetwork SecuritySecuritySoftware
check
Growth OpportunitiesbadNo H1BnoteSecurity Clearance RequirednoteU.S. Citizen Onlynote

Responsibilities

Help customers improve their cybersecurity posture, with a particular focus on process optimization
Help investigate incidents
Educate on Zeek Log use, including as it relates to Corelight Suricata alerts
Design and implement technical solutions with ecosystem partners (packet brokers, asset managers, SOAR systems, etc.)
Implement queries and dashboards in SIEMs - Splunk, Elastic, Humio, etc
Influence customers and Corelight teams and be seen as a technical expert
Conduct network-related testing to ensure Corelight products operate correctly
Perform validation testing of Corelight products
Provide ongoing, informal, knowledge transfer
Collaborate with product management on product features/integrations
Work with back-end tools like Kafka and Logstash
Documenting the process for importing of data (MISP, Intel, etc)
Developing custom content for threat hunting use cases as defined by the customer
Developing playbooks for SOC/IR workflow automation based on Corelight data
Ad-hoc (as requested) written summary reports on equipment and security problems
Technical input to major service outage root cause analysis and corrective action reports
Leading project status meetings and wrap-up/post-mortem meetings
Some on-site work required

Qualification

Cybersecurity experienceSIEM experienceNetwork administrationZeek/Corelight experienceScripting languagesSecurity certificationsBriefing skillsSOCOperating systems expertise

Required

US Citizen
TS/SCI CI Poly Required
5+ years of experience in cybersecurity (Prior startup experience preferred)
Extensive experience with a SOC environment
Zeek/Corelight experience is a plus
Security and/or Networking related certification(s)
Demonstrated expertise in Windows/MacOS/Linux/Unix operating systems, IDS/IPS
Network administration, firewall configuration, and strong knowledge of TCP/IP
SIEM experience (Splunk required, others a bonus)
Scripting in (some of) Zeek, Bash, Python, Perl, Powershell, etc
Strong briefing skills; experience interacting with SES/general officer-level management

Company

Corelight

twittertwittertwitter
company-logo
Corelight is a cybersecurity company specializing in network traffic analysis (NTA) solutions.
dateFounded in 2013
location
San Francisco, California, USA
people-size201-500 employees
web-link
https://www.corelight.com

Funding

Current Stage
Late Stage
Total Funding
$309.2M
Key Investors
AccelEnergy Impact PartnersGeneral Catalyst
2024-04-30Series E· $150M
2021-09-02Series D· $75M
2019-10-17Series C· $50M

Leadership Team

leader-logo
Gregory Bell
Co-founder and Chief Strategy Officer
linkedin
leader-logo
Robin Sommer
Co-Founder
linkedin

Recent News

PR Newswire
Corelight Welcomes Leading Cybersecurity Executives as Advisors
2025-12-09
Business Wire
Blackbird PPC Wins Second Straight B2B for PPC Award From Search Engine Land
2025-11-05
Help Net Security
Infosec products of the month: October 2025
2025-11-01
Company data provided by crunchbase