Administrator

Elastic AdministratorSunnyvale, CA or New York City OverviewWe are seeking an experienced Elastic SME for a customer project to support the development, operation, and ongoing management of an on-premise Elasticsearch platform within a security-focused environment at one of the fastest growing AI hyperscalers in the world. Key ResponsibilitiesAdminister and operate Elastic clusters on Kubernetes using ECK and data streams (deployment, scaling, upgrades)Manage Day 2 operations: monitoring, incident response, troubleshooting, and performance tuning Implement backup/restore, high availability, and disaster recovery strategiesOptimize indexing, ES|QL query performance, and cluster healthSupport security configurations (RBAC, access control, audit logging)Maintain operational runbooks and documentationTake part in the on-call rotation (1 week 24×7 on call per month) Required SkillsStrong hands-on experience with the Elastic stack — Elasticsearch, ECS, ECK — both consulting and product experience required. Kibana, Fleet Server, Elastic Agent and Search Ingest PipelineProven experience in production support / Day 2 operationsExperience managing on-premise Kubernetes infrastructureSolid understanding of Linux systems, networking, and storageExperience with monitoring and alerting tools such as Loki, Grafana, Prometheus, VictoriaMetrics Automation using scripting (Python, Bash, etc.) Must havesKubernetesElasticsearchJavaMonitoring and Alerting with Grafana Nice to HaveExperience in security environments or SIEM use casesExperience using Kafka at high scale as part of log ingestion pipelinePythonREST API experience a plus