JSOC - Principal SIEM Engineer
Rosario, Santa Fe Province, AR
BRL 112K-129K (estimate) Senior-level Full Time
Tasks
- Architect and maintain NXLog for log collection and forwarding
- Automate platform operations with scripting and infrastructure as code
- Build and maintain ingest pipelines and parsers
- Collaborate with security operations on detection requirements
- Coordinate log source onboarding
- Define and report SIEM performance metrics
- Design deploy and maintain Elastic cluster architecture
- Design deploy and maintain Elastic security tools
- Evaluate SIEM and log management technologies
- Implement detection as code CI CD rule deployment
- Maintain Elastic Security dashboards and saved searches
- Maintain Kafka log streaming infrastructure
- Maintain platform documentation runbooks and operational procedures
- Manage Elastic upgrades and cluster health monitoring
- Manage index lifecycle and data retention
- Mentor engineers in Elastic Stack administration
- Monitor and maintain data pipeline reliability
- Own SIEM platform health performance and evolution
- Participate in on-call rotations
- Perform capacity planning and infrastructure scaling
- Tune Elasticsearch query optimization and shard strategy
Perks/Benefits
- Career growth and development
- Community involvement opportunities
- Health and wellbeing resources
- Hybrid work environment
- Paid vacation
- Personal days
- Sick days
Skills/Tech-stack
AWS | Apache Kafka | Bash | Beats | CI/CD | Cold storage | Consumer groups | Data Retention | Detection-as-code | Docker | EDR | Elastic Agent | Elastic Security | Elastic Stack | Elasticsearch | Elasticsearch Index Lifecycle Management | Email Gateway | GCP | GitLab | Hot Warm Cold Storage | Index Lifecycle Management | Infrastructure as Code | Kafka Connect | Kafka KRaft | Kafka Topic Architecture | Kibana | Kubernetes | Lifecycle Management | Linux | Logstash | NxLog | OpenSearch | Partitioning Strategy | Python | SOAR | Storage Optimization | Throughput Optimization | WAF | Zookeeper | “as-code”
Education
Roles
Engineer | Principal | Principal SIEM Engineer | SIEM Engineer
Related jobs
-
Ansible | Automation | BGP | Bash | CMDBOn call pager rotation | Remote-first culture | Work-life balanceMid-level Full TimeRemote - Argentina; Remote - Colombia … R7d ago
-
JSOC - Principal Cybersecurity - Incident Response BRL 112K-127KAPI Integration | AWS | Application Firewall | Automation and response | AzureCareer growth and development opportunities | Community involvement | Health and wellbeing resources | Hybrid work environment | Inclusive collaborative environmentSenior-level Full TimeRosario, Santa Fe Province, AR8d ago
-
Lead Security Engineer (AI-Native) USD 158K-237K800-171 | AI tools | AWS | Amazon IAM | Business ContinuityAI tools access | Flexible paid time off | Holiday pay | Learning membership access | Remote workSenior-level Full TimeRemote - Argentina R9d ago
-
Senior Backend Engineer, Security Automation USD 147K-204KDesign Patterns | Docker | Kubernetes | Linux | Message QueuesFlexible working hours | Fully remoteSenior-level Contract Full TimeBuenos Aires, Buenos Aires, Argentina - … R10d ago
-
Data Engineer – Azure Cloud & Security COP 54000K-74400KApplication Security | Application Security Group | Azure Data | Azure Data Factory | Azure DevOpsComprehensive benefits | Flexible work model | Hybrid work option | Inclusive culture | Leadership visibilityMid-level Full TimeColombia; Argentina R12d ago
-
[VMM] Senior DevOps Engineer USD 115K-154KActive Directory | Automation | Azure DevOps | Azure DevOps Server | DevOps ServerSenior-level Full TimeBuenos Aires, Buenos Aires, Argentina16d ago
-
Google Certified Professionals USD 147K-216KAI/ML | Automation | CI/CD | Cloud Architecture | ComplianceInternational projects | Remote workEntry-level Full TimeBuenos Aires, Argentina16d ago
-
Cybersecurity Automation Engineer USD 88K-150KAccess Control | Access Management | Automation | Automation & Integration | Cloud NativeMid-level Full TimeBuenos Aires (Butty), Argentina21d ago
-
Cloud Security Engineer USD 118K-201KAWS Security | CloudFormation | Conditional Access | Firewalls | IAMComprehensive benefits | Employee snacks | Flexible work schedule | Standing desks | Training on new technologiesMid-level Full TimeCABA, Buenos Aires, Argentina (Hybrid) R27d ago
-
Cloud Engineer USD 100K-160KALB | AWS | Automation | CloudFormation | CloudFrontComprehensive benefits | Flexible work schedule | Responsible time off | Snacks | Standing desksMid-level Full TimeCABA, Buenos Aires, Argentina (Hybrid) R27d ago
-
DLP & Incident Response Engineer USD 201K-237KAI | Cloud Security | Data Classification | Data Loss Prevention | Data lossSenior-level Full TimeArgentina, Buenos Aires R28d ago
-
Backend Engineer USD 136K-225KAWS | Akka-stream | Cloud Platforms | Deployment Automation | Distributed SystemsCompetitive compensation | Comprehensive benefits | Flexible work environment | Global collaboration | Recognition programsSenior-level Full TimeCordoba, Argentina28d ago
-
Cloud Security Engineer USD 90K-172KAudit Logs | Cloud IAM | Docker | Kubernetes | Network ProtocolsCareer growth | Financial security | Remote work | Teamwork environmentMid-level Full TimeArgentina29d ago
-
Senior Security Engineer (Compliance & Controls) MXN 780K-1200KAccess Management | Application Security | Automation Scripting | Bash | Cloud ArchitectureDental insurance | Health insurance | Performance bonus | Remote work | Stock optionsSenior-level Full TimeArgentina, Mexico, Colombia, Brazil29d ago
-
Senior Full Stack Security Engineer USD 119K-179KApplication Security | Automation Scripting | Bash | Burp Suite | Cloud SecurityHolidays | Unlimited PTOSenior-level Full TimeBuenos Aires, Buenos Aires, Argentina - … R1mo ago
-
Cybersecurity Engineer Sr EUR 30K-40KAWS | Attack Surface Detection | Attack surface | Automation | AzureBalance days | Flexible benefits | Flexible vacation | Health coverage | Marriage leaveMid-level Full TimeBuenos Aires1mo ago
-
Test Automation Engineer USD 75K-120KAPI Testing | Analytical Skills | Automation frameworks | BDD frameworks | BehaveBenefits package | Competitive compensation | Remote workMid-level Full TimeCórdoba, Córdoba, Argentina1mo ago
-
Senior Software Engineer USD 132K-207KAWS | Agile methodology | CI/CD | Cloud services | CommunicationCompetitive compensation | Comprehensive benefits | Flexible work environment | Global collaboration | Recognition programsSenior-level Full TimeCordoba, Argentina1mo ago
-
Security Engineer - Argentina USD 175K-230KAPI Development | ClickHouse | Detection rules | LLMs | MITRE ATT&CKCareer review | Development investment | MacBook provided | Unlimited LLM accessSenior-level Full TimeBuenos Aires, Argentina - Remote R1mo ago
-
Senior Technical Support Engineer - LATAM USD 140K-200KAutomation | Bot mitigation | CSS | Collaboration | CommunicationFlexible hours | Fully remote | Global team | High impact | Inclusive environmentSenior-level Full TimeBuenos Aires, Buenos Aires, Argentina - … R1mo ago
-
Sr. Backend Software Engineer USD 132K-214KAWS | Akka-stream | Cloud Security | Distributed Systems | DynamoDBCareer growth | Comprehensive benefits | Flexible work environment | Global collaboration | RecognitionSenior-level Full TimeCordoba, Argentina1mo ago
-
Detection Software Engineer USD 132K-237KAWS Athena | AWS SageMaker | Account Security | Anomaly Detection | Behavioral AnalysisBenefits package | Competitive compensation | Continuous learning opportunities | Flexible work environment | Global collaborationSenior-level Full TimeCordoba, Argentina1mo ago
-
Sr. Detection Software Engineer USD 132K-225KAWS Athena | AWS SageMaker | Anomaly Detection | Behavioral Analysis | Cybersecurity FundamentalsCompetitive benefits | Continuous learning opportunities | Flexible work environment | Global collaborationSenior-level Full TimeCordoba, Argentina1mo ago
-
Sr Cloud Security Engineer /DevSecOps / 100% Remote / USD payment / Advanced English (must) A USD 131K-180KAWS | Automation | Azure | Azure DevOps | BashSenior-level Full TimeARGENTINA, Argentina R1mo ago