Senior Security Engineer (Elastic)

Project Info:

• Industry: technology
• Location: 100% remote
• Start: ASAP/to determinate
• B2B up to 185zł/h
• Cooperation: long-term (first contract for 6 months)

Summary

The primary purpose of the Senior Security Engineer role is to maintain and optimize a large-scale Elastic Search based SIEM, ensuring robust security posture in data monitoring and incident response.

Responsibilities:

• Maintain large-scale Elastic Search based SIEM, including design, capacity planning, cluster setup, optimization, performance tuning, and ongoing monitoring.
• Provide engineering support to the Security operational team and act as a 3rd line escalation point if necessary.
• Participate in problem-solving efforts if needed.
• Review services, conduct patching and hardening.
• Conduct technical troubleshooting for complex network environments regarding SIEM data collection.
• Support SOC Analysts using SIEM to respond to security incidents and events.

Must Haves:

• Very good knowledge of Linux Operating Systems (e.g., RHEL, CentOS).
• Very good knowledge of Elastic stack (Elasticsearch, Logstash, Kibana, and Beats).
• Good knowledge of configuration and deployment management tools (like Ansible).
• Good knowledge of data center infrastructure components (e.g., LAN/WAN, storage, servers, DNS, NTP, AD).
• Experience in managing Linux clustering (e.g., Pacemaker, Zookeeper).
• Experience with Apache (httpd) web servers.
• Experience with Apache Kafka.
• Understanding of PKI.
• Fluency in English (spoken and documentation) with strong communication skills.

Nice to Haves:

• Coding expertise in languages such as Python, Bash, and Ruby.
• Elastic Certified Engineer certification.
• Familiarity with Atlassian and ITIL.