SIEM Security Engineer / Architect - Remote

Overview

As a SIEM Security Engineer / Architect, you will play a key role in the design, implementation, and evolution of security monitoring solutions.

In Short

• Designing, deploying, documenting, and improving SIEM solutions.
• Maintaining stability and ensuring long-term operability of the SIEM environment.
• Developing and managing log collection, normalization, and correlation processes.
• Using automation tools (Ansible, Python scripting, etc.) to streamline deployment and operations.
• Collaborating with infrastructure, security, and architecture teams.
• Participating in internal and external audits.
• Interfacing with auditors and regulators, providing technical responses.
• Writing and maintaining technical documentation.
• Contributing to continuous improvement initiatives in operational security.

Requirements

• Minimum 10 years of IT experience, including 5 years in cybersecurity with SIEM expertise.
• In-depth experience in the architecture, deployment, and operation of Elastic Stack.
• Strong knowledge of log ingestion, normalization, and processing pipelines.
• Hands-on experience with automation tools such as Ansible and scripting.
• Ability to work with auditors and produce compliance-related documentation.
• Solid understanding of security monitoring compliance requirements.
• CISA certification is strongly desired.
• Strong analytical skills and attention to detail.
• Fluency in English is mandatory.

Benefits

• Remote work available for most projects.
• Flex Office work environment to promote communication and collaboration.
• Expert communities to share and disseminate skills.
• Close project management and HR support.
• Annual training and certification opportunities.
• Recognition of consultants' expertise development.
• Openness to international mobility.