Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
Reinsurance Group of America, Incorporated

Staff SOC Engineer – Security Telemetry, Detection Platforms

Reinsurance Group of America, Incorporated

Staff SOC Engineer at RGA responsible for building and improving security telemetry and detection platforms. Focused on ensuring high quality visibility and detection throughout operations and delivery lifecycles.

Posted 5/8/2026full-timeRemote • Montana • 🇺🇸 United StatesLead💰 $126,710 - $188,840 per yearWebsite

Tech Stack

Tools & technologies
AWSAzureCloudSplunk

About the role

Key responsibilities & impact
  • administer and engineer improvements to enterprise security telemetry and detection platforms—including Splunk Cloud, Cribl Cloud, CrowdStrike Falcon, and Tines
  • implement secure by default telemetry patterns and logging standards across operating systems, cloud, and network data sources
  • design, build, and maintain Cribl Cloud pipelines for secure, cost managed, and high throughput log routing
  • engineer Splunk Cloud content with an emphasis on signal quality, performance, and SLO/KPI driven cost control
  • define and maintain role-based access controls (RBAC)
  • contribute to integration and automation across SOC tooling and enterprise systems
  • participate in incident response by developing targeted searches, conducting log analysis, and identifying root causes

Requirements

What you’ll need
  • 6+ years of progressive experience in security/infrastructure engineering or SOC engineering focused on SIEM/EDR, telemetry pipelines, and detection content
  • relevant platform certifications (e.g., Splunk Core/Cloud, Cribl Certified Observability Engineer, CrowdStrike CCFA/CCFR) – Preferred
  • security certifications (e.g., CISSP, GSEC, GCDA, Cloud+) – Preferred
  • demonstrated success deploying and operating Splunk Cloud, Cribl Cloud, and CrowdStrike Falcon at enterprise scale
  • hands-on experience engineering data ingestion pipelines and normalizing logs from operating systems, AWS, Azure, and network sources
  • strong technical background and tacit understanding of detection engineering, OCSF modeling, SPL optimization, CIM mapping, and content tuning to reduce ingest volume and improve signal to noise
  • proven ability to collaborate across security operations, architecture, infrastructure, and product teams

Benefits

Comp & perks
  • health, retirement, and other employee benefits
  • annual bonus plan
  • long-term equity incentive plan

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
security telemetrydetection platformslog routingdata ingestion pipelinesSPL optimizationCIM mappingOCSF modelinglog analysisincident responserole-based access controls
Soft Skills
collaborationcommunicationproblem-solvinganalytical thinkingteamworkattention to detailadaptabilitycritical thinkingleadershiporganizational skills
Certifications
Splunk CoreSplunk CloudCribl Certified Observability EngineerCrowdStrike CCFACrowdStrike CCFRCISSPGSECGCDACloud+