... Corelight, or Trellix, and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift • Knowledge of Zero Trust DoD IC frameworks and federal compliance • TS ...
... Corelight, or Trellix, and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift • Knowledge of Zero Trust DoD IC frameworks and federal compliance • TS ...
SIEM Platform Engineer
Arlington, VA · On-site
... Corelight, or Trellix • Experience deploying platforms across cloud, on-premises, and disconnected environments using Kubernetes or OpenShift • Experience working in classified or compartmented ...
SIEM Platform Engineer
Arlington, VA · On-site
... Corelight, or Trellix • Experience deploying platforms across cloud, on-premises, and disconnected environments using Kubernetes or OpenShift • Experience working in classified or compartmented ...
... Corelight, or Trellix and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift • Knowledge of Zero Trust DoD IC frameworks and federal compliance • TS ...
... Corelight, or Trellix and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift • Knowledge of Zero Trust DoD IC frameworks and federal compliance • TS ...
Integrate network telemetry and security monitoring tools, including platforms such as Corelight, Garland, and related SOC enablement technologies. Ensure compliance with federal policies and ...
Integrate network telemetry and security monitoring tools, including platforms such as Corelight, Garland, and related SOC enablement technologies. Ensure compliance with federal policies and ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
... such as Corelight, Garland, and related SOC enablement technologies. · Ensure compliance with federal policies and directives, including OMB M-21-31 requirements for event logging and network ...
Quick apply
... such as Corelight, Garland, and related SOC enablement technologies. · Ensure compliance with federal policies and directives, including OMB M-21-31 requirements for event logging and network ...
... Corelight, Garland, and related SOC enablement technologies. • Ensure compliance with federal policies and directives, including OMB M-21-31 requirements for event logging and network visibility ...
... Corelight, Garland, and related SOC enablement technologies. • Ensure compliance with federal policies and directives, including OMB M-21-31 requirements for event logging and network visibility ...
Network Detection and Response (Vectra, Extrahop, Corelight etc), Endpoint Detection and Response (Carbon Black, CrowdStrike Falcon, Microsoft Defender), Next-Generation Firewalls (Palo Alto, Juniper ...
Network Detection and Response (Vectra, Extrahop, Corelight etc), Endpoint Detection and Response (Carbon Black, CrowdStrike Falcon, Microsoft Defender), Next-Generation Firewalls (Palo Alto, Juniper ...
SIEM Platform Engineer
Arlington, VA · On-site
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
Arlington, VA · On-site
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
Splunk Content Developer
Ashburn, VA · On-site
$131K - $237K/yr
Corelight * Forescount * Wraithwatch * Cyrtica Cyber Operations Engineering & Troubleshooting * Conduct deep-dive analysis and troubleshooting of complex endpoint security issues. * Engineer ...
Splunk Content Developer
Ashburn, VA · On-site
$131K - $237K/yr
Corelight * Forescount * Wraithwatch * Cyrtica Cyber Operations Engineering & Troubleshooting * Conduct deep-dive analysis and troubleshooting of complex endpoint security issues. * Engineer ...
Splunk Content Developer
$131K - $237K/yr
Corelight * Forescount * Wraithwatch * Cyrtica Cyber Operations Engineering & Troubleshooting * Conduct deep-dive analysis and troubleshooting of complex endpoint security issues. * Engineer ...
Splunk Content Developer
$131K - $237K/yr
Corelight * Forescount * Wraithwatch * Cyrtica Cyber Operations Engineering & Troubleshooting * Conduct deep-dive analysis and troubleshooting of complex endpoint security issues. * Engineer ...
SIEM Platform Engineer
Arlington, VA · On-site
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
Arlington, VA · On-site
$77K - $176K/yr
Knowledge of EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Knowledge of deploying platforms across cloud, on-premises, and disconnected environments using ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
Experience with data lake and analytics platforms such as Databricks, Apache Iceberg, and Snowflake, and integrating EDR, NDR, and full-packet capture solutions, including CrowdStrike, Corelight, and ...
SIEM Platform Engineer
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
SIEM Platform Engineer
$77K - $176K/yr
Experience with EDR, NDR, or full-packet capture solutions such as CrowdStrike, Corelight, or Trellix * Experience deploying platforms across cloud, on-premises, and disconnected environments using ...
Corelight information
See Virginia salary details
$8.65 - $13.33
16% of jobs
$14.75 is the 25th percentile. Wages below this are outliers.
$13.33 - $18
29% of jobs
The median wage is $19.17 / hr.
$18 - $22.68
19% of jobs
$26.82 is the 75th percentile. Wages above this are outliers.
$22.68 - $27.35
12% of jobs
$27.35 - $32.03
8% of jobs
$32.03 - $36.70
5% of jobs
$36.70 - $41.38
4% of jobs
$41.38 - $46.05
2% of jobs
$46.05 - $50.73
2% of jobs
$50.73 - $55.41
1% of jobs
$55.41 - $60.08
1% of jobs
$8
$25
$60
How much do corelight jobs pay per hour?
As of Jun 9, 2026, the average hourly pay for corelight in Virginia is $25.62, according to ZipRecruiter salary data. Most workers in this role earn between $14.73 and $29.92 per hour, depending on experience, location, and employer.
What is a Corelight Engineer?
A Corelight Engineer is a professional who specializes in deploying, managing, and maintaining Corelight network security solutions. Corelight is a cybersecurity company known for its network detection and response (NDR) products, built on the open-source Zeek framework. Corelight Engineers typically work with enterprise security teams to monitor network traffic for threats, optimize detection capabilities, and integrate Corelight appliances with other security tools. Their responsibilities may also include troubleshooting issues, performing updates, and providing technical support.
Is Corelight a good company?
Corelight is a cybersecurity company known for its network detection and response solutions, often employing roles related to security analysis and engineering. The company's work environment and reputation vary based on individual experiences, but it is recognized for its focus on open-source tools and network security expertise. Job seekers should research specific roles and company reviews for a comprehensive understanding.
What are some typical challenges faced by security professionals working at Corelight, and how can these be managed effectively?
Security professionals at Corelight often deal with rapidly evolving threat landscapes and the need to analyze large volumes of network data in real time. Balancing proactive threat detection with minimizing false positives can be challenging, especially when customizing solutions for diverse client environments. Effective management involves staying updated on the latest threat intelligence, collaborating closely with engineering and product teams, and leveraging Corelight's robust open-source and commercial tools for continuous improvement. Open communication within the team and ongoing professional development are also key to overcoming these challenges.
What are the key skills and qualifications needed to thrive as a Corelight Security Engineer, and why are they important?
To thrive as a Corelight Security Engineer, you need a solid background in network security, intrusion detection, and experience with network traffic analysis, often supported by a degree in computer science or a related field. Familiarity with Corelight's network sensors, Zeek (formerly Bro), and common SIEM platforms, as well as relevant certifications like CISSP or GIAC, is typically required. Strong analytical thinking, problem-solving ability, and effective communication skills make someone stand out in this position. These skills are crucial for proactively identifying threats, optimizing security infrastructure, and clearly conveying findings to technical and non-technical stakeholders.
What is the difference between Corelight vs Network Security Analyst?
| Aspect | Corelight | Network Security Analyst |
|---|---|---|
| Required Credentials | Network certifications (e.g., CompTIA Network+, CISSP), knowledge of network protocols | Security certifications (e.g., CISSP, CEH), network knowledge |
| Work Environment | Security operations centers, network monitoring environments | Corporate IT departments, security teams, consulting firms |
| Employer & Industry Usage | Cybersecurity firms, large enterprises, government agencies | Organizations with IT security needs across industries |
| Comparison Intent | Understanding technical roles in network security | Evaluating security roles and responsibilities |
Corelight specialists focus on deploying and managing network detection tools, analyzing network traffic, and enhancing security infrastructure. Network Security Analysts perform broader security monitoring, incident response, and vulnerability assessments. While both roles require network security knowledge and certifications, Corelight roles are more technical and tool-specific, whereas Network Security Analysts have a wider scope in security operations.
What are popular job titles related to Corelight jobs in Virginia? For Corelight jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Corelight jobs in Virginia look for? The top searched job categories for Corelight jobs in Virginia are:
Full-time
Posted 15 days ago
Booz Allen Hamilton rating
8.8
Based on 47 frontline employees who took The Breakroom Quiz
9th of 57 rated business consultants
Job description
Job Summary:
Booz Allen Hamilton is a leading consulting firm specializing in technology solutions. They are seeking a Cyber Intelligence Automation Engineer to help build advanced technology solutions and lead data engineering activities on mission-driven projects, guiding a multi-disciplinary team to organize and make disparate data meaningful.
Responsibilities:
• Help clients find answers in their data to impact important missions from fraud detection to cancer research, to national intelligence.
• Build advanced technology solutions and lead data engineering activities on mission-driven projects.
• Guide data engineering activities by overseeing the development and deployment of pipelines and platforms that organize and make disparate data meaningful.
• Mentor a multi-disciplinary team of analysts, data engineers, developers, and data consumers in a fast-paced, agile environment.
• Oversee the assessment, design, building, and maintenance of scalable platforms for clients.
Qualifications:
Required:
• 5+ years of experience in defensive cyber operations, cybersecurity engineering, or security platform architecture
• 3+ years of experience designing security data pipelines such as collection, normalization, enrichment, and routing
• 2+ years of experience with SIEM platforms such as Splunk ES, Elastic Security, Sentinel, or Chronicle
• 2+ years of experience with SOAR platforms such as Swimlane, XSOAR, or Phantom
• Experience with cyber threat intelligence platforms, including STIX/TAXII and commercial or open-source data feeds
• Experience building detection engineering pipelines, threat hunting workflows, and automated response capabilities
• Experience with EDR, NDR, or full-packet capture tools such as CrowdStrike, Corelight, or Trellix, and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift
• Knowledge of Zero Trust DoD IC frameworks and federal compliance
• TS/SCI clearance
• HS diploma or GED
Preferred:
• Experience with stream processing or data brokering platforms such as Cribl, Kafka, Logstash, Fluentd, or equivalent
• Experience with threat detection or anomaly-based behavioral analysis
• Experience with DevSecOps CI/CD pipelines in IL5, IL6, or IL7 environments
• Experience with Python or scripting languages for security automation
Company:
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering. Founded in 1914, the company is headquartered in Mclean, USA, with a team of 10001+ employees. The company is currently Late Stage.
Booz Allen Hamilton is a leading consulting firm specializing in technology solutions. They are seeking a Cyber Intelligence Automation Engineer to help build advanced technology solutions and lead data engineering activities on mission-driven projects, guiding a multi-disciplinary team to organize and make disparate data meaningful.
Responsibilities:
• Help clients find answers in their data to impact important missions from fraud detection to cancer research, to national intelligence.
• Build advanced technology solutions and lead data engineering activities on mission-driven projects.
• Guide data engineering activities by overseeing the development and deployment of pipelines and platforms that organize and make disparate data meaningful.
• Mentor a multi-disciplinary team of analysts, data engineers, developers, and data consumers in a fast-paced, agile environment.
• Oversee the assessment, design, building, and maintenance of scalable platforms for clients.
Qualifications:
Required:
• 5+ years of experience in defensive cyber operations, cybersecurity engineering, or security platform architecture
• 3+ years of experience designing security data pipelines such as collection, normalization, enrichment, and routing
• 2+ years of experience with SIEM platforms such as Splunk ES, Elastic Security, Sentinel, or Chronicle
• 2+ years of experience with SOAR platforms such as Swimlane, XSOAR, or Phantom
• Experience with cyber threat intelligence platforms, including STIX/TAXII and commercial or open-source data feeds
• Experience building detection engineering pipelines, threat hunting workflows, and automated response capabilities
• Experience with EDR, NDR, or full-packet capture tools such as CrowdStrike, Corelight, or Trellix, and deploying across cloud, on-prem, and disconnected environments such as Kubernetes and OpenShift
• Knowledge of Zero Trust DoD IC frameworks and federal compliance
• TS/SCI clearance
• HS diploma or GED
Preferred:
• Experience with stream processing or data brokering platforms such as Cribl, Kafka, Logstash, Fluentd, or equivalent
• Experience with threat detection or anomaly-based behavioral analysis
• Experience with DevSecOps CI/CD pipelines in IL5, IL6, or IL7 environments
• Experience with Python or scripting languages for security automation
Company:
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering. Founded in 1914, the company is headquartered in Mclean, USA, with a team of 10001+ employees. The company is currently Late Stage.
What Booz Allen Hamilton employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Booz Allen Hamilton
Sourced by ZipRecruiter
Booz Allen Hamilton is a leading provider of management and technology consulting services to the US government in defense, intelligence, and civil markets. Headquartered in McLean, Virginia, the firm also serves major corporations, institutions, and not-for-profit organizations. Founded in 1914 by Edwin G. Booz, the company has a long-standing tradition of helping clients achieve success by delivering a wide range of consulting services that include strategic planning, human capital and learning, communication, systems development, and others. The company's mission is to empower people to change the world, and it has a reputation for maintaining the highest standards of integrity and-excellence.
Industry
It services
Company size
10,000+ Employees
Headquarters location
McLean, VA, US
Year founded
1914