We are looking for an experienced SIEM Engineer to manage the integration of new data sources into our SIEM system, ensuring seamless data normalization and correlation.What you'll do:Oversee the incorporation of new data sources into the SIEM system, ensuring accurate data structuring and correlation .Continuously improve the efficiency, scalability, and effectiveness of SIEM operations.Maintain comprehensive documentation of SIEM configurations, onboarding processes, and incident response strategies.Work collaboratively with cross-functional teams to identify security needs and integrate new security technologies within SIEM.Stay informed on evolving threats, vulnerabilities, and industry best practices to enhance SIEM operations.Ensure that SIEM settings and workflows align with relevant industry regulations and security frameworks.Design and implement an operational security monitoring strategy .Lead efforts to connect security platforms to the Elastic Stack infrastructure, ensuring best practices are followed.Support the evaluation and deployment of innovative security technologies to mitigate evolving threats.Partner with Security Architecture and Security Design teams to develop automated security solutions .Collaborate with Security Operations Center (SOC) and Cybersecurity teams to build strong relationships and enhance security operations.What you will need to bring:Hands-on experience with SIEM platforms (e.g., Splunk, Elastic Stack, Azure Sentinel, etc.
).Proficiency in Logstash Parsing, Grok, and Regular Expressions (Regex) .Strong experience with Azure Log Analytics and log data management .Deep understanding of security monitoring, threat analysis, and incident response frameworks .Familiarity with Cribl Edge/Stream for log processing is a plus.Experience integrating platforms into Elastic Stack .Knowledge of compliance standards and frameworks (e.g., NIST, ISO 27001, GDPR, etc.
).Ability to function effectively in a SOC environment, assisting with operations and investigations.Strong analytical and troubleshooting skills with a focus on enhancing security processes .Excellent communication and teamwork skills for effective cross-team collaborationWhat can Syone offer me:Integration in an organization with profound and sustained growth and involvement in pioneering projects with innovative technological solutions;Strong IT training plans;Professional evolution with intervention in ambitious technological projects, both national and internationally.By applying, you accept our GDPR policies.
Your personal data in your CV and documents will be used solely for processing your application at SYONE.
SYONE, S.A. (NIPC 504729624) is the data controller, located at Rua Alfredo da Silva, 8-A, Edifício Stern, Piso 3D, 2610-016 Amadora.
We will use your data to tailor your application to relevant vacancies and for potential employment contracts.
If selected, your data will be kept during your employment and for at least two years after.
If not selected, your data will be kept for two years for future vacancies and then deleted, except for your contact details.
You can exercise your rights (access, rectification, erasure, etc.)
by emailing ******.
Your data may be shared with our HR service providers and will be stored securely.
You can withdraw your consent at any time.
We will not use your data for other purposes without your express consent.
For more information, email ******.