Junior SIEM Security Engineer

Company Description

Accesa is a leading technology company headquartered in Cluj-Napoca, with offices in Oradea and 20 years of experience in turning business challenges into opportunities and growth.

A value-driven organisation, it has established itself as a partner of choice for major brands in Retail, Manufacturing, Finance, and Banking. It covers the complete digital evolution journey of its customers, from ideation and requirements setup to software development and managed services solutions.

With more than 1,200 IT professionals, Accesa also has a fast-growing footprint, establishing itself as an employer of choice for IT professionals who are passionate about problem-solving through technology. Coming together in strong tech teams with a customer-centric approach, they enable businesses to grow, delivering value for our clients, partners, industry, and community.

Job Description

The client operates in the banking sector across Germany and Europe, managing a vast infrastructure with high log ingestion rates (240,000 log lines per second). We support their security team by developing advanced detection rules and governance frameworks, ensuring compliance and risk mitigation. Our expertise in log interpretation, parsing, and normalization helps enhance their security monitoring, while our structured staging and deployment processes guarantee high-quality implementations in production.

Responsabilities:

• Develop and refine detection rules in QRadar SIEM to enhance security monitoring.
• Configure reference log sources to ensure accurate event detection.
• Perform unit testing to validate detection logic.
• Document test results for traceability and improvements.
• Optimize and maintain rules through continuous tuning and verification.

Qualifications

Must have:

• 1+ years of overall security related experience.
• Good understanding of UNIX/Windows operating systems and log source configuration.
• Experience with use-case development using frameworks like MITRE ATT&CK and Sigma Rules.
• Basic networking knowledge to support log analysis and rule development.
• Familiarity with event IDs and their relevance in security monitoring.

Nice to have:

• Cybersecurity certifications (e.g., CISSP, CEH, Comptia+) or networking certifications (CCNA).
• Knowledge of SIEM Security tools such as QRadar (ingestion, DSM assignment, CEP parsing, mapping & categorization, evaluation order, dependencies).
• Ability to develop detection rules and optimize security logic through staging and testing processes.
• Working knowledge in organizational tools JIRA, Confluence.

Additional Information

At Accesa you can

Enjoy our holistic benefits program that covers the four pillars that we believe come together to support our wellbeing, covering social, physical, emotional wellbeing, as well as work-life fusion.

• Physical Wellbeing: Our wellbeing program includes medical benefits, gym support, and personalised fitness options for an active lifestyle, complemented by team events and the Healthy Habits Club.
• Work-Life Fusion: In very dynamic industries such as IT, the line between our professional and personal lives can quickly become blurred. Having a one-size-fits-one approach gives us the flexibility to define the work-life dynamic that works for us.
• Emotional Wellbeing: We believe that to maintain our overall health, we need to invest in our mental wellbeing just as much as we do in our physical health, social connections or in achieving work-life balance.
• Social Wellbeing: As a growing community in a hybrid environment, we want to ensure we remain connected not just by the great work we do every day but through our passions and interests.