SIEM Security Engineer

Responsibilities:

• Maintain and optimize a large-scale Elastic Search-based SIEM system
• Design, plan capacity, and manage Elastic Stack clusters
• Provide Tier-3 engineering support and collaborate closely with SOC
• Conduct patching, hardening, and technical troubleshooting
• Ensure high availability and performance of the SIEM infrastructure
• Support SOC Analysts in incident response and event management
• Participate in continuous improvements and monitoring of the system

Qualifications:

• Strong Linux OS knowledge (e.g., RHEL, CentOS)
• 4+ years of experience in SIEM or security engineering
• Solid experience with the Elastic Stack (Elasticsearch, Logstash, Kibana, Beats)
• Good understanding of configuration & deployment tools (e.g., Ansible)
• Familiarity with data center infrastructure (LAN/WAN, storage, DNS, NTP, AD)
• Experience in Linux clustering (Pacemaker, Zookeeper)
• Knowledge of Apache httpd, Apache Kafka
• Understanding of PKI
• English – minimum B2 level (spoken and written)
• Polish – C1

Nice to have:

• Scripting skills: Python, Bash, or Ruby
• Elastic Certified Engineer certification
• Familiarity with Atlassian stack, ITIL

Perks:

• Private medical care
• 50% Multisport card
• 100% remote work
• Equipment provided
• Unlimited project duration

Salary:

• B2B: 1100 - 1320 PLN net daily

Develocraft sp. z o.o. is an employment agency registered in a registry kept by Marshal of the Pomorskie Voivodeship under the number 18819