SIEM Integration Engineer

  • Full time
  • Prague
  • Posted 1 week ago
Ruby (nice to have)
Bash (regular)
Python (regular)
English (advanced)
ELK Stack (advanced)
SIEM (advanced)
How you will get the job done :
  • Onboarding log sources and if required develop parsing for standard as well as individual log format 
  • Help to design, implement, maintain and improve the application stack 
  • Take responsibility for SIEM security design review and recommendations, technical data gathering, security and policy review and configuration, and technical quality assurance 
  • Lead technical troubleshooting efforts for complex network environments to identify and eliminate network or security configuration issues for SIEM data collection 
  • Implementation and optimization of already implemented or new security rules for detection capabilities 
  • Understand network and endpoint security tools, how they integrate into the SIEM and provide a cohesive view of network incidents and security
Skills and experience you will need

  • Very experienced knowledge in data onboarding, parsing , processing for SIEM 
  • Experienced in development and operations of ELK (Elasticsearch, Logstash, and Kibana, Winlogbeat and Beats) stack 
  • Several years practical experience with at least one major SIEM system, e.g. ArcSight, QRadar, Splunk, Elastic 
  • Familiarity with scripting languages such as Python, Bash scripts, e.g.. Coding experience with Ruby is a big plus 
  • Proficient knowledge in enterprise processes such as change/incident 
  • Fluency in English (spoken language and documentation) 
  • Strong understanding of and practical hands-on knowledge of networking fundamentals in high performance environments 

To apply for this job please visit cz.talent.com.