JSOC - Principal SIEM Engineer
Tasks
- Architect and maintain NXLog deployment for log collection
- Automate platform operations with scripting and infrastructure as code
- Build and maintain ingest pipelines parsers and log integrations
- Coordinate log source onboarding
- Define and report SIEM platform performance metrics
- Design deploy and maintain Elastic cluster architecture
- Design deploy and maintain security tools SOAR EDR WAF and email gateway
- Evaluate emerging SIEM and log management technologies
- Implement detection as code CI CD rule deployment pipelines
- Maintain Elastic Security dashboards and saved searches
- Maintain Kafka log streaming infrastructure
- Maintain platform documentation runbooks and operational procedures
- Manage Elastic upgrades patches and cluster health monitoring
- Manage index lifecycle policies and data retention
- Mentor team members on Elastic administration and data pipelines
- Monitor and maintain end to end data pipeline reliability
- Own Elastic SIEM platform performance and evolution
- Participate in on-call rotations
- Perform Elasticsearch performance tuning query optimization shard strategy and resources
- Plan capacity and scale Elastic and Kafka infrastructure
- Translate detection requirements into platform capabilities
Perks/Benefits
- Career growth opportunities
- Community causes opportunities
- Health & wellbeing resources
- Hybrid working environment
- Inclusive collaborative environment
- Paid vacation
- Personal days
- Sick days
Skills/Tech-stack
AWS | Apache Kafka | Bash | Beats | CI/CD | Container Orchestration | Data Retention | Detection-as-code | Docker | EDR | Elastic Agent | Elastic Security | Elastic Stack | Elasticsearch | Email Gateway | GCP | GitLab | Index Lifecycle Management | Index lifecycle | Infrastructure as Code | KRaft | Kafka Connect | Kafka Streams | Kibana | Kubernetes | Lifecycle Management | Linux | Logstash | N A | NxLog | OpenSearch | Python | Query Optimization | Resource allocation | SOAR | SOCKS N/A | Scripting | Sharding | Storage Optimization | WAF | Zookeeper | “as-code”
Education
N/A
Roles
Engineer | Principal | Principal SIEM Engineer | SIEM Engineer
Related jobs
-
Senior-level Full TimeSão Carlos, SP, Brazil1d ago
-
Mid-level Full TimeBrazil - Remote R1d ago
-
Solutions Engineer BRL 108K-144KAWS CloudFormation | Account Management | Anti-Malware | Azure | Cloud platformCustomer facing events participation | Regional travelMid-level Full TimeBrazil Off-Site2d ago
-
Solutions Engineer BRL 114K-132KAWS | AWS CloudFormation | Anti-Malware | Cloud Computing | Cloud platformRegional travelMid-level Full TimeBrazil Off-Site2d ago
-
Senior-level Full TimeBrazil R6d ago
-
Senior Cybersecurity Engineer (API Security & Platform) BRL 181K-181KAPI Gateway | Certificate management | Git | GitOps | Incident ResponseRemote workSenior-level Full TimeSão Paulo, SP, Brazil R6d ago
-
Information Security Engineer - GRC USD 155KAI Governance | AI ML Risk Framework | AI/ML | AI/ML risk | AWSHome office setup budget | National holidays | Paid time off | Remote work flexibility | Stock optionsMid-level Full TimeBrazil7d ago
-
.NET/C# - Backend development BRL 212K-270K.NET | AWS | Authorization | C# | Identity FederationWork from homeSenior-level Full TimeBrazil7d ago
-
Senior Firewall Engineer with Python BRL 212K-270KAnsible | CI/CD | Check Point | Cisco ASA | Cisco FirepowerFlexible working hours | Fully remote option | Internal training sessions | Training budgetSenior-level Full TimeBrasília, Brazil R7d ago
-
API Integration | AWS | Ansible | Azure | CI/CDChild care assistance | Day off on birthday | Dental insurance | Digital Course Platform | GympassMid-level Full TimeBR.Sao Paulo.Remote, Brazil R7d ago
-
JSOC - Principal Cybersecurity - Incident Response BRL 120K-138KAPI Integration | AWS | Automation | Azure | Cloud SecurityCareer growth and development | Community involvement | Health and wellbeing resources | Paid vacation | Personal daysSenior-level Full TimeBrazil8d ago
-
Mid-level Full TimeSão Paulo, SP, Brazil R8d ago
-
Lead Security Engineer (AI-Native) BRL 304K-316KAWS | Business Continuity | Cloud Security | Compliance | Cybersecurity100% remote flexible time off continuous learning learning membership AI tools access local holiday pay feedback rich culture training peer reviewsSenior-level Full TimeRemote - Brazil R9d ago
-
Vulnerability Management Senior Advisor BRL 108K-116KAqua Security | Bash | CIS Benchmarks | Cause analysis | DevOpsSenior-level Full TimeEldorado Do Sul, Brazil9d ago
-
Engenheiro (a) de Segurança Sênior BRL 84K-84KAWS | Application Security | Automation | Azure | BashAdvanced English proficiency | Travel availabilityMid-level Full TimeSão Carlos, SP, Brazil12d ago
-
Especialista DevSecOps BRL 184K-184KAWS Security | CI/CD | CSPM | Cloud Security | Cloud Security ArchitectureTravel opportunitiesSenior-level Full TimeSão Carlos, SP, Brazil12d ago
-
DevSecOps Júnior BRL 23K-23KAWS | CI/CD | DevSecOps | GCP | GitAdvanced English | Travel opportunityEntry-level Full TimeSão Carlos, SP, Brazil12d ago
-
Analista de DevOps Sênior BRL 84K-84KAWS | Agile | Ansible | Azure | BashMentorship | Travel opportunitiesSenior-level Full TimeSão Carlos, SP, Brazil12d ago
-
AWS | Amazon Elastic Kubernetes Service | Automation | DevOps | Elastic Kubernetes ServiceMid-level Full TimeBRLink - Tamboré, Brazil12d ago
-
Amazon Web Services | Automation | DevOps | Infrastructure as Code | KubernetesSenior-level Full TimeBRLink - Tamboré, Brazil12d ago
-
DevSecOps Engineer BRL 304K-380KAccess Control | Application Firewall | Application Security Testing | Authentication | CI/CDRemote work flexibility | WeWork access optionalMid-level Full TimeBrazil R12d ago
-
Mid-Level Software Engineer BRL 80K-80KAPI Gateway | Agile | Behavior-Driven Development | C# | CI/CDContinuous learning culture | Mentorship | Professional growth opportunitiesMid-level Full TimeBrazil - Remote Office R13d ago
-
Presales Solution Consultant BRL 142K-160KAPI | AWS | Agile | Automation | AzureHybrid work opportunities | Inclusive workplace | Professional development | Sustainability commitmentMid-level Full TimeSão Paulo, Brazil13d ago
-
Founding Software Engineer - Agentic Systems EUR 85K-115KAWS | Agent Orchestration | Asynchronous programming | Autogen | CrewAIDental insurance | Extra recharge days | Health and sports budget | Learning and development budget | Medical insuranceSenior-level Full TimeTallinn, Spain (Remote), São Paulo R14d ago
-
Lead Security Engineer (GRC) BRL 181K-181KAI Automation | ANBIMA | AWS | Audit management | BACENDaycare allowance | Dental plan | Equity | Extended parental leave | Financial assistanceSenior-level Full TimeBrazil, Belo Horizonte; Brazil, Campinas; Brazil, …14d ago