ICT Security Engineer

Role Specific Technical Skills Production experience across the following technologies:
. Working knowledge of Elastic stack (Elasticsearch / Logstash / Kibana / Beats) including data ingestion, management, monitoring & analytics. (Mandatory)
. In-depth experience with Kafka
. Good working knowledge of Linux (RedHat/Ubuntu)
. Programming skills is MUST (Python or Bash) is appreciated.
. Experienced production support engineer
. Platform integration skills are a plus - Experience in installation, configuration, documentation and administration of multiple pre-production and production platforms in both virtual and physical environments.
. Experience & skills in automation tools (e.g. Ansible) & DevOps pipelines are appreciated.
Specific Qualifications RequiredCandidate must have a overall 7 or more years of experience with minimum 4-5 years on relevant scopeie. Expertise in handling ELK stack for large platform or architecture.
Direct Responsibilities
. Install and administrate the servers of the SIEM Infrastructure
. Develop automation on the different tasks and self-service tool
. Participate to the integration of new technologies logs
. Support logs parsing using custom parser/GROK development
. Project management
. Be a full time member of the Production CSIRT / SIEM Engg team and participate to the various activities of the team
Contributing Responsibilities
. Contribute to the Permanent Control framework for implementation of policies and procedures in daytoday business activities, such as Control Plan.
. Comply with regulatory requirements and internal guidelines.
. Contribute to the reporting of all incidents according to the Incident Management System