Job Family: Cybersecurity

Req ID: 400924

The Cyber Defense SIEM Integration Engineer is a member of the Siemens Cyber Defense Center, whose primary mission is to defend Siemens against cyber security threats worldwide.

You will help design and implement technical solutions with state-of-the-art tools capable of handling large volumes of data where scalability, consistency, security, and maintainability are key.

Come join us and let’s build reliable, performant, and secure systems together!

What are my responsibilities?

• Collaborate with different defense teams (like Security Analysts, Threat Hunting, Incident Response, Data Science, SecDevOps, Threat Intelligence etc) to create high quality Threat Detection for IT applications and application logs.

• Identify and onboard relevant log sources and detection components.

• Parser development, based on Logstash’s Grok expressions, for log source onboarding.

• Support strategic service planning to ensure the best-suiting detection technologies and solutions are in place.

• Support tool administration and automation.

• Participate in monitoring-driven Incident and Problem Management processes.

• Contribute to knowledge creation and sharing.

What do I need to qualify for this job?

• Overall experience in security monitoring/security operations center environments (SOCs) and with the related processes.

• Good understanding of the Cybersecurity landscape, key standards & practices.

• Good knowledge of Logstash and its pipeline and plug-in infrastructure.

• At ease with the Linux shell environment.

• Experience with log source onboarding methods, tools and formats (such as Logstash, JSON, Syslog).

• Experience with log parsing or string parsing using regular expressions, optimally using Grok and using the ECS format.

• Experience writing structured technical documentation.

• Familiarity with cloud platforms and concepts, including containerization and pipeline-driven deployments.

• University degree (or equivalent experience) in computer science, IT security, or related fields.

• Proficiency in written and spoken English, with good interpersonal skills and a strong team mindset.

• Willingness to build up and share your technical knowledge.

• Ability to communicate clearly and effectively with peers, partners, and customers.

We are thrilled to have:

A hybrid working model with a flexible working hours policy in order to promote work life balance. A budget for setting up a home office, health insurance, possibility to have a sabbatical leave or non-paid time off and a financial support program for your studies.

You also have a medical center on the premises, sports groups, 2 days volunteering, access to e-learning platforms (Learnlight, Linkedin Learning and more) and discounts with partners.

To all these benefits we add the possibility to work in a fresh, relaxed, and always motivated environment.

We’ve got quite a lot to offer. How about you?

Securing the Future Enterprise Today. Join us!

Together we can make our digital world more secure.

Please send your CV in English, otherwise your application will not be considered.

Siemens is committed to creating a diverse environment and is glad to be an equal opportunity employer. We strongly encourage applications from a diverse talent pool!

#LI-DL