SIEM Engineer – Splunk Infrastructure & Log Management - Belgium

Empowered by our motto, "Making Data Matter", Keyrus stands at the forefront of global consultancy in Data & Analytics, AI & Machine Learning, and Digital Transformation. With a presence in 27 countries across 4 continents, we're on a mission to elevate the impact of data.

We are data experts, guiding our clients through their data journey regardless of their level of maturity in analytics. As an end-to-end partner, we address varied challenges that our clients face, from Advanced Analytics, Cloud, Data Governance, Visualisation to Enterprise Performance Management, from advisory to delivery.

With more than 3200 employees in all corners of the world, Keyrus is dedicated to helping businesses taking advantage of the Data and Digital paradigm to enhance their performance, facilitating, and accelerating their transformation, and generating new drivers of growth, competitiveness, and sustainability.

Job Summary 

Keyrus is looking for a SIEM Engineer to support the operation and maintenance of a Splunk-based infrastructure, with a focus on log collection, system availability, change management, and stakeholder support. The role is part of a cyber security team delivering structured outcomes under the direction of a team lead or service delivery manager.

Note: All applications/CV’s must be submitted in English.

Key Responsibilities

Log Collection

Manage log ingestion from new data sources across on-prem and cloud environments

Map data to Splunk’s Common Information Model and integrate with existing data models

Validate log quality and ingestion success with relevant stakeholders

Document processes and configurations using Confluence

Coordinate log collection activities with internal teams and customers

Service Availability & Monitoring

Monitor Splunk system health, performance, and log collection availability

Detect and report service degradations and take corrective actions

Maintain high availability (target: 99.8% uptime)

Follow best practices to ensure system stability and reliability

Ensure proper operation of dependencies with other systems and applications

Comply with service-level agreements and defined KPIs

Change Management

Implement changes such as software upgrades, deployments, and configuration updates

Follow formal change management procedures, including change requests and CAB participation

Provide impact assessments and maintain all relevant documentation

Coordinate changes across internal and external teams

Reporting & Advisory

Represent the team in meetings and provide technical advice when required

Document and distribute meeting minutes and action items within one business day

Communicate relevant updates to leadership and stakeholders

Customer Support

Provide support to users, primarily security analysts, requiring technical assistance

Resolve tickets within agreed timelines and confirm resolution with requestors

Requirements for the role 

• Strong understanding of IT security concepts and practices
• Minimum 2 years of experience managing large, distributed Splunk Enterprise environments
• Experience deploying, installing, configuring, and maintaining Splunk infrastructure
• Scripting skills in at least one of the following: Ansible, Python, or Bash
• Solid knowledge of networking protocols (e.g., TCP/IP, HTTPS, DNS)
• Proven expertise in Linux system administration and troubleshooting
• Ability to work independently and with attention to detail
• Strong communication and reporting skills across technical and non-technical audiences
• Fluent in English
• Must be a Portuguese citizen

What we offer at Keyrus Portugal:

• Competitive salary based on your skills & experience and according to the Data market practice
• Meal allowance of €8.32 per day
• Flexible benefits option
• Private Medical Insurance
• 22 days of annual leave (increasing every 3 years up to a maximum of 25 days)
• Training Program through KLX (Keyrus Learning Experience) Platform

Why Keyrus?

Joining Keyrus means joining a market leader in the Data Intelligence field and an (inter)national player in Management Consultancy and Digital Experience.

Keyrus Portugal operates on five guiding pillars that shape our approach to work and collaboration – Diversity; Trust; Flexibility; Ownership & Innovation - we're dedicated to cultivating a team as diverse as the challenges we take on. 

We embrace and celebrate the rich variety of backgrounds, perspectives, and talents that each individual brings. We firmly believe that diversity fuels innovation, ignites creativity, and propels us towards greatness. 

Regardless of race, ethnicity, gender, sexual orientation, disability, age, or any other dimension of diversity, everyone is not only welcome but valued here. 

Join us in shaping a future where everyone can thrive!