SIEM Infrastructure Engineer / Ingenieur SIEM Infrastructure Engineer / Ingenieur …

in Zurich, Zurich, Switzerland
Contract, Full time
Last application, 20 May 20
in Zurich, Zurich, Switzerland
Contract, Full time
Last application, 20 May 20
SIEM Infrastructure Engineer / Ingenieur
Our client is looking for an experienced SIEM Infrastructure Engineer to join their team for a rolling six month contract with a high chance of extension. If you are currently looking for a new opportunity please refer to the required skills and responsibilities below and click apply if this is the right role for you!


• Add/Modify/Archive log sources
• Ability to explain and document alert use-cases for all relevant components (alarms, watchlists, reporting, and correlating data from multiple dissimilar log sources)
• Schedule and run regular technical change requests (i.e. alert modifications, IOC updates, security patches, major and minor software releases)
• Tune/Enhance existing alert framework and client custom framework
• Work closely with Threat Analyst/Hunter to improve proactive defense posture
• Work closely with the Analyst Team to improve SOC alerting
• Provide overall guidance, instruction and leadership to SOC analysts
• Provide mentorship and guidance to SOC analysts regarding technologies and alerts
• Engage in knowledge sharing with other team members
• Provide major/minor component infrastructure support
• Conduct Health Checks and Regular Maintenance Tasks
• Triage SOC alert influxes, enterprise failures and reconfigurations
• Open and follow-up on service requests with 3rd party vendors
• Maintain current knowledge on industry issues/trends and competitive SIEM products
• Maintain and expand working knowledge of current managed technologies
• Improve technical understanding of all managed technologies
• Communicate effectively orally and in writing, and establish a cooperative working relationship with persons contacted in the course of performing assigned duties


• College Diploma or University Degree in Information Security or relevant security up-to-date certificates and/or equivalent work experience
• Holds certifications of security technologies or SIEM technologies
• Minimum 4 years' experience in IT security field
• Linux and Unix engineering
• Syslog
• Strong understanding of IT Security concepts, best practices, and market direction
• Possess expert knowledge and experience with any SIEM System
• Ability to create and implement a custom parser
• Strong troubleshooting, reasoning and problem-solving skills
• Strong knowledge of TCP/IP protocols and the ability to analyze network traffic
• Excellent communications skills
• Exceptional Time Management and organizational skills
• A positive and constructive minded team player

Desirable skills:

• Cyber Security Experience
• Big Data Technologies
• Operation knowledge of security threat and attack countermeasures
• Ability to conduct forensic analytical studies and investigations
• Experience with SOC operations

Please note that due to the high volume of applicaions, we can only contact those most suitable for the role.
By applying for this position, I consent to the Swisslinx Group of companies:
- storing my personal information (including name, contact details, Identification and CV information etc.) on their internal or external servers for the purpose of informing me of potential employment opportunities
- using my personal information or
- supplying it to third parties upon express consent for the purpose of informing me of potential job opportunities
- transferring where applicable my personal information to a country outside the EEA/EFTA

I also hereby agree to the Swisslinx privacy policy ( and Terms of Use (