Project Info:
- Industry: technology
- Location: 100% remote
- Start: ASAP/to determinate
- B2B up to 185zł/h
- Cooperation: long-term (first contract for 6 months)
The primary purpose of the Senior Security Engineer role is to maintain and optimize a large-scale Elastic Search based SIEM, ensuring robust security posture in data monitoring and incident response.
- Maintain large-scale Elastic Search based SIEM, including design, capacity planning, cluster setup, optimization, performance tuning, and ongoing monitoring.
- Provide engineering support to the Security operational team and act as a 3rd line escalation point if necessary.
- Participate in problem-solving efforts if needed.
- Review services, conduct patching and hardening.
- Conduct technical troubleshooting for complex network environments regarding SIEM data collection.
- Support SOC Analysts using SIEM to respond to security incidents and events.
- Very good knowledge of Linux Operating Systems (e.g., RHEL, CentOS).
- Very good knowledge of Elastic stack (Elasticsearch, Logstash, Kibana, and Beats).
- Good knowledge of configuration and deployment management tools (like Ansible).
- Good knowledge of data center infrastructure components (e.g., LAN/WAN, storage, servers, DNS, NTP, AD).
- Experience in managing Linux clustering (e.g., Pacemaker, Zookeeper).
- Experience with Apache (httpd) web servers.
- Experience with Apache Kafka.
- Understanding of PKI.
- Fluency in English (spoken and documentation) with strong communication skills.
- Coding expertise in languages such as Python, Bash, and Ruby.
- Elastic Certified Engineer certification.
- Familiarity with Atlassian and ITIL.