SIEM Infrastructure Engineer

Set up as a new job alert
  1. Contract
  2. English
  3. Mid-Senior level
  4. Digital & Technology
  5. Zurich
  6. Digital & Technology
  7. SIEM, Splunk, infrastructure, SOC, Linux, Unix, Syslog
This vacancy has now expired
Our client is looking for an experienced SIEM Infrastructure Engineer to join their team for a rolling six month contract with a high chance of extension. If you are currently looking for a new opportunity please refer to the required skills and responsibilities below and click apply if this is the right role for you!


• Add/Modify/Archive log sources
• Ability to explain and document alert use-cases for all relevant components (alarms, watchlists, reporting, and correlating data from multiple dissimilar log sources)
• Schedule and run regular technical change requests (i.e. alert modifications, IOC updates, security patches, major and minor software releases)
• Tune/Enhance existing alert framework and client custom framework
• Work closely with Threat Analyst/Hunter to improve proactive defense posture
• Work closely with the Analyst Team to improve SOC alerting
• Provide overall guidance, instruction and leadership to SOC analysts
• Provide mentorship and guidance to SOC analysts regarding technologies and alerts
• Engage in knowledge sharing with other team members
• Provide major/minor component infrastructure support
• Conduct Health Checks and Regular Maintenance Tasks
• Triage SOC alert influxes, enterprise failures and reconfigurations
• Open and follow-up on service requests with 3rd party vendors
• Maintain current knowledge on industry issues/trends and competitive SIEM products
• Maintain and expand working knowledge of current managed technologies
• Improve technical understanding of all managed technologies
• Communicate effectively orally and in writing, and establish a cooperative working relationship with persons contacted in the course of performing assigned duties


• College Diploma or University Degree in Information Security or relevant security up-to-date certificates and/or equivalent work experience
• Holds certifications of security technologies or SIEM technologies
• Minimum 4 years' experience in IT security field
• Linux and Unix engineering
• Syslog
• Strong understanding of IT Security concepts, best practices, and market direction
• Possess expert knowledge and experience with any SIEM System
• Ability to create and implement a custom parser
• Strong troubleshooting, reasoning and problem-solving skills
• Strong knowledge of TCP/IP protocols and the ability to analyze network traffic
• Excellent communications skills
• Exceptional Time Management and organizational skills
• A positive and constructive minded team player

Desirable skills:

• Cyber Security Experience
• Big Data Technologies
• Operation knowledge of security threat and attack countermeasures
• Ability to conduct forensic analytical studies and investigations
• Experience with SOC operations

Please note that due to the high volume of applicaions, we can only contact those most suitable for the role.

How is Switzerland's life sciences market responding to COVID-19


Using lockdown to your advantage