Security Engineer

We are looking for a Security Engineer who will be responsible for operating and developing SIEM systems (with a focus on Elastic), integrating various log sources, incident investigation, security audits, and strengthening the overall security posture of the infrastructure.

Responsibilities

• Operation and development of Elastic SIEM (ELK)
• Integration and analysis of logs from Linux and Windows systems.
• Integration and analysis of AWS logs.
• Integration of logs from IdP and SaaS services.
• Development of detections, alerts, and Kibana dashboards.
• Monitoring and investigation of security incidents.
• Analysis of authentication, SSO, and MFA events.
• Using security benchmarks when analyzing configurations, detections, and during security audits.
• Supporting other information security tasks and initiatives (audits, IAM, SaaS security, data preparation for reporting).

Requirements

• 2+ years of experience in Information Security / SIEM / SOC
• Strong hands-on experience with Elastic Stack / Elastic SIEM
• Experience working with authentication and access logs
• Understanding of IdP / IAM (SSO, MFA)
• Knowledge of Linux and Windows
• Experience with Jira and Confluence
• Practical understanding of information security standards and methodologies

Nice to Have:

• Okta / Google Workspace / Azure AD
• AWS security
• SOAR
• Python / Bash

We offer

• On-site or remote
• Opportunities for professional growth
• 5/2 working schedule.
• Friendly working environment

If you meet the requirements and are ready to contribute to our team, we encourage you to apply for this exciting opportunity.