Onboarding Engineer - Remote

We are seeking a technical and customer-focused Onboarding Engineer to join our growing team. This role is central to our customer success mission, responsible for the end-to-end technical integration of new clients into COGNNA's security monitoring Platform. The ideal candidate is a hands-on expert with major SIEM/Security platforms and possesses deep system administration skills across both Linux and Windows environments, enabling them to independently troubleshoot and resolve complex integration challenges.

Key Responsibilities

Client Onboarding & Implementation:

• Lead the technical onboarding process for new customers, from initial kick-off to full operational status.
• Integrate customer log sources (e.g., firewalls, servers, cloud platforms, applications) with our security data lake.
• Develop and configure custom parsers and data connectors to ensure accurate data ingestion and normalization.

️‍♂️ System Administration & Troubleshooting:

• Utilize deep expertise in Linux and Windows Server to troubleshoot agent installations, log forwarding configurations, and connectivity issues directly on customer systems.
• Act as the primary technical resource for diagnosing and resolving complex infrastructure and OS-level issues that impede data collection.

• Contribute to the continuous improvement of our onboarding processes, creating documentation and automation scripts to increase efficiency.

Security Advisory & Customer Success:

• Serve as a trusted technical advisor to clients during the onboarding phase, providing guidance on logging best practices and security architecture.
• Work closely with the Security Operations Center (SOC) and account managers to ensure a seamless handover of clients upon successful onboarding.

Requirements

Experience:

• Hands-on experience in a technical cybersecurity role (e.g., SOC Engineer, SIEM Engineer, Security Consultant).
• 3 + with direct responsibility for technical implementation or support.
• Proven experience managing and troubleshooting both Linux (e.g., Ubuntu, CentOS) and Windows Server environments in a production setting.

Technical Skills:

• SIEM: Expertise with major SIEM platforms. Experience with systems like Splunk, Microsoft Sentinel, Elastic Search, or Google SecOps is essential.
• Operating Systems: Deep proficiency in system administration, log management, and troubleshooting across Linux and Windows.
• Scripting: Proficiency in at least one scripting language (e.g., Python, Bash, PowerShell) for automation and parsing.
• Security Concepts: Strong knowledge of network security architecture, cloud security (AWS, Azure, GCP), and security devices (Firewalls, IDS/IPS, EDR).
• Google Cloud and management of Google SecOps experience.