SIEM Implementation, Support Engineer (Mid-Level)

We are looking for a hands-on engineer who will grow into a key expert in deploying and supporting our SIEM platform for clients. This is a unique opportunity to learn deeply, work closely with customers, and shape a critical part of our product delivery.

Responsibilities

• Deep-dive into the SIEM ecosystem: learn its architecture, features, and practical use cases
• Install, configure, and maintain SIEM environments (test and production) on Linux and Windows systems
• Simulate security incidents and infrastructure behavior to test detection capabilities
• Integrate the platform with log sources, endpoints, cloud systems, and third-party tools
• Customize detection rules, alerts, and dashboards based on customer requirements
• Analyze and fine-tune system performance to reduce false positives and improve visibility
• Document setup processes, best practices, and customer deployment guides
• Support installations on customer environments (remotely)
• Provide post-deployment technical mentoring and onboarding for customers
• Collaborate with the product team to validate new features and suggest improvements
• Contribute to internal knowledge sharing (documentation, tutorials, internal wikis)
• Help with DevOps tasks like CI/CD pipelines, automation, and containerization

Requirements

Must-have (can be entry-level):

• Familiarity with Linux systems and the command line
• Understanding of log formats, syslog, and basic networking protocols (TCP/IP, DNS, HTTP)
• Interest in cybersecurity, infrastructure, or monitoring systems
• Willingness to learn and grow into a technical customer-facing role
• Good English communication skills (verbal and written)
• Nice-to-have (or to be learned on the job):
• Experience with Elasticsearch, Kibana, or similar tools
• Scripting skills (Bash or Python)
• Familiarity with containers (Docker) and cloud platforms (e.g., GCP, AWS)
• Previous experience with monitoring or security products (Zabbix, Splunk, Snort, etc.)