Openkyber
Identity Security Architect
⭐ - Featured Role | Apply direct with Data Freelance Hub
This role is for an Identity Security Architect (Security Data Architect - SIEM Data Pipeline) on a contract basis for over 6 months, offering remote work. Requires 10+ years in Cybersecurity, 5+ years with Cribl, and proficiency in JavaScript or Python.
🌎 - Country
United States
💱 - Currency
Unknown
-
💰 - Day rate
Unknown
-
🗓️ - Date
February 3, 2026
🕒 - Duration
More than 6 months
-
🏝️ - Location
Remote
-
📄 - Contract
Unknown
-
🔒 - Security
Unknown
-
📍 - Location detailed
Texas
-
🧠 - Skills detailed
#Security #Storage #Documentation #Data Architecture #Snowflake #NiFi (Apache NiFi) #"ETL (Extract #Transform #Load)" #Compliance #Data Pipeline #Groovy #Scala #JavaScript #Data Lineage #Anomaly Detection #Metadata #Observability #Python #Monitoring #Strategy #Cybersecurity #Normalization #Scripting
Role description
We are looking for Security Data Architect (SIEM Data Pipeline) - Remote / Telecommute for our client in Dallas, TX
Job Title: Security Data Architect (SIEM Data Pipeline) - Remote / Telecommute
Job Location: Dallas, TX
Job Type: Contract
Job Description: Work Required: Architect scalable, reusable securitytelemetry pipelines using Cribl, NiFi, Vector, and related platforms, ensuring consistent ingestion across 100+ diverse data sources. Develop platformagnostic ingestion frameworks and modular patterns supporting multiple protocols and destinations (syslog, HTTP, Event Hubs, Snowflake, ADX, etc.). Define multiyear ingestion and transformation roadmaps, including modernization phases, platform standards, and scalable architectural guardrails. Set enterprise governance models for schema evolution, onboarding new data sources, transformation quality, and versioning. Drive platform consolidation and rationalization, identifying redundant ingestion patterns and unifying them into enterprisewide frameworks. Create reference architectures, reusable design patterns, and standardized pipeline blueprints adopted by all engineering teams. Provide technical mentorship to senior engineers, guiding architectural thinking and deepsystem design approaches. Influence crossorganizational strategy, aligning ingestion and transformation capabilities with threatdetection, compliance, SIEM modernization, and dataanalytics roadmaps. Evaluate emerging technologies, assessing fit, integration patterns, and longterm viability for enterprise-scale telemetry processing. Lead adoption of OCSFbased normalization, including field mapping, schema validation, and portable transformation templates. Implement advanced data transformation logic (filtering, enrichment, routing, format conversion) using Groovy, Python, or JavaScript while enforcing strict governance and security controls. Ensure complete data lineage and traceability across ingestion, transformation, and storage layers, including metadata tagging and auditready tracking. Integrate pipelinelevel observability: health monitoring, error handling, transformation failure alerts, and anomaly detection. Validate highfidelity data delivery to analytics and SIEM platforms, minimizing data loss, duplication, and drift. Lead crossfunctional design sessions, technology evaluations, and architecture reviews for largescale security telemetry ecosystems. Maintain centralized documentation for ingestion patterns, schema definitions, transformations, and governance standards.
Experience Required: 10+ Years of experience working in Cybersecurity. 5+ Years of experience on CRIBL. Cribl Certified Engineer (Architect desired). 5+ Years of experience on JavaScript, python, or other scripting language.
For applications and inquiries, contact: hirings@openkyber.com
We are looking for Security Data Architect (SIEM Data Pipeline) - Remote / Telecommute for our client in Dallas, TX
Job Title: Security Data Architect (SIEM Data Pipeline) - Remote / Telecommute
Job Location: Dallas, TX
Job Type: Contract
Job Description: Work Required: Architect scalable, reusable securitytelemetry pipelines using Cribl, NiFi, Vector, and related platforms, ensuring consistent ingestion across 100+ diverse data sources. Develop platformagnostic ingestion frameworks and modular patterns supporting multiple protocols and destinations (syslog, HTTP, Event Hubs, Snowflake, ADX, etc.). Define multiyear ingestion and transformation roadmaps, including modernization phases, platform standards, and scalable architectural guardrails. Set enterprise governance models for schema evolution, onboarding new data sources, transformation quality, and versioning. Drive platform consolidation and rationalization, identifying redundant ingestion patterns and unifying them into enterprisewide frameworks. Create reference architectures, reusable design patterns, and standardized pipeline blueprints adopted by all engineering teams. Provide technical mentorship to senior engineers, guiding architectural thinking and deepsystem design approaches. Influence crossorganizational strategy, aligning ingestion and transformation capabilities with threatdetection, compliance, SIEM modernization, and dataanalytics roadmaps. Evaluate emerging technologies, assessing fit, integration patterns, and longterm viability for enterprise-scale telemetry processing. Lead adoption of OCSFbased normalization, including field mapping, schema validation, and portable transformation templates. Implement advanced data transformation logic (filtering, enrichment, routing, format conversion) using Groovy, Python, or JavaScript while enforcing strict governance and security controls. Ensure complete data lineage and traceability across ingestion, transformation, and storage layers, including metadata tagging and auditready tracking. Integrate pipelinelevel observability: health monitoring, error handling, transformation failure alerts, and anomaly detection. Validate highfidelity data delivery to analytics and SIEM platforms, minimizing data loss, duplication, and drift. Lead crossfunctional design sessions, technology evaluations, and architecture reviews for largescale security telemetry ecosystems. Maintain centralized documentation for ingestion patterns, schema definitions, transformations, and governance standards.
Experience Required: 10+ Years of experience working in Cybersecurity. 5+ Years of experience on CRIBL. Cribl Certified Engineer (Architect desired). 5+ Years of experience on JavaScript, python, or other scripting language.
For applications and inquiries, contact: hirings@openkyber.com
