Professional Services Engineer

Corelight • United States • $124k - $160k / year • 2d ago

Why This Job is Featured on The SaaS Jobs

### Why this Role is Featured on The SaaS Jobs

Professional Services Engineering sits at a critical junction in SaaS, where product capability meets real customer environments. In Corelight’s case, the work is anchored in a security-focused platform that turns network and cloud telemetry into operational detection and response outcomes. That makes the role relevant for SaaS professionals interested in how subscription software is adopted in high-stakes settings, where implementation quality and measurable impact strongly influence retention and expansion.

From a career-building perspective, this kind of services role develops the SaaS “systems view” that many product and customer-facing leaders eventually need. The remit touches deployment readiness, validation, integrations with common security tooling, and translating technical signals into workflows and reporting. Experience shaping detections, dashboards, and playbooks also maps well to adjacent SaaS paths in solutions architecture, customer success engineering, and product-facing technical roles.

The section above is editorial commentary from The SaaS Jobs, provided to help SaaS professionals understand the role in a broader industry context.

Job Description

Be part of the team that defends the networks the world depends on

Corelight defends the world’s most sensitive networks—from global commerce to national defense—quietly, relentlessly, and with resolve. As cyber threats grow faster and smarter, we serve as the trusted force behind network resilience, putting elite defense within reach.

By transforming digital footprints from physical, virtual, and cloud networks into actionable insights, we empower defenders to illuminate blind spots and stay ahead of an evolving threat landscape. Built on open-source innovations and fueled by industry leading agentic AI technology, Corelight helps teams to detect advanced threats and close cases with unprecedented clarity and precision.

We are currently seeking a Staff Resident PSE to join our Federal Professional Services team, reporting to the manager of Professional Services. In this role, the main focus is to prepare and validate equipment configurations for new installations, develop content for anomaly and hunt detections, assess the overall health of the Corelight infrastructure at the client’s location. You’re the ideal candidate if you are a strategic thinker with a strong networking and security background, work well independently, and are results-driven.

Key Responsibilities:

Help customers improve their cybersecurity posture, with a particular focus on process
optimization
Help investigate incidents
Educate on Zeek Log use, including as it relates to Corelight Suricata alerts
Design and implement technical solutions with ecosystem partners (packet brokers,
asset managers, SOAR systems, etc.)
Implement queries and dashboards in SIEMs - Splunk, Elastic, Humio, etc.
Influence customers and Corelight teams and be seen as a technical expert
Conduct network-related testing to ensure Corelight products operate correctly
Perform validation testing of Corelight products
Provide ongoing, informal, knowledge transfer
Collaborate with product management on product features/integrations
Work with back-end tools like Kafka and Logstash
Documenting the process for importing of data (MISP, Intel, etc)
Developing custom content for threat hunting use cases as defined by the customer
Developing playbooks for SOC/IR workflow automation based on Corelight data
Ad-hoc (as requested) written summary reports on equipment and security problems
Technical input to major service outage root cause analysis and corrective action reports
Leading project status meetings and wrap-up/post-mortem meetings
Some on-site work required

Minimum Qualifications:

US Citizen
5+ years of experience in cybersecurity (Prior startup experience preferred)
Extensive experience with a SOC environment
Zeek/Corelight experience is a plus
Security and/or Networking related certification(s)
Demonstrated expertise in Windows/MacOS/Linux/Unix operating systems, IDS/IPS,
Network administration, firewall configuration, and strong knowledge of TCP/IP
SIEM experience (Splunk required, others a bonus)
Scripting in (some of) Zeek, Bash, Python, Perl, Powershell, etc.
Strong briefing skills; experience interacting with SES/general officer-level management

Notice of Pay Transparency:
The compensation for this position may vary depending on factors such as your location, skills and experience. Depending on the nature and seniority of the role, a percentage of compensation may come in the form of a commission-based or discretionary bonus. Equity and additional benefits will also be awarded.

Compensation Range

$124,000—$160,000 USD

Why Join Us?

Fueled by investments from top-tier venture capital organizations such as Crowdstrike, Accel and Insight, Corelight is one of the fastest growing network detection and response platforms in the industry. Our passionate team thrives in a collaborative, inclusive, and geographically distributed culture. We embrace diverse perspectives, neurodiversity, curiosity and low ego results - fostering an environment where every innovator can solve the toughest challenges in cybersecurity and contribute their best work.

We are looking forward to meeting you. Check us out at www.corelight.com