About the Role
The individual will lead the architecture, deployment, and optimization of SIEM solutions to support real-time monitoring, incident response, and compliance across distributed environments.
Responsibilities
- Design and implement scalable SIEM architectures aligned with enterprise security goals
- Integrate log sources from diverse systems into centralized monitoring platforms
- Develop correlation rules to detect suspicious activities and security incidents
- Collaborate with IT and security teams to ensure comprehensive event coverage
- Maintain system performance under high-volume data ingestion scenarios
- Troubleshoot and resolve issues within the SIEM environment
- Ensure logging standards comply with regulatory and audit requirements
- Support incident investigations by providing timely event data and analysis
- Optimize alerting mechanisms to reduce false positives and improve response times
- Lead the evaluation and integration of new security technologies with SIEM platforms
- Document system configurations, workflows, and operational procedures
- Provide technical guidance during security operations and post-incident reviews
- Monitor emerging threats and adapt detection logic accordingly
- Coordinate with external vendors and service providers on integration efforts
- Manage user access and role-based permissions within the SIEM system
- Support compliance initiatives through audit-ready reporting and data retention
- Conduct regular system health checks and performance tuning
- Lead knowledge transfer sessions for team members and stakeholders
- Stay current with industry trends in cybersecurity monitoring and analytics
- Assist in developing security use cases based on threat intelligence
- Promote automation in event correlation and response workflows
- Evaluate SIEM platform upgrades and new feature implementations
- Ensure secure configuration of data pipelines and connectors
- Work closely with network and system administrators to expand visibility
- Contribute to security architecture roadmaps and strategic planning
Compensation
Competitive salary and benefits package
Work Arrangement
Hybrid work model with remote options and presence in Kraków
Team
Part of a global cybersecurity team focused on enterprise-level security operations
Why Join Us
- Opportunity to shape the future of security monitoring in a global organization
- Access to cutting-edge technologies and professional growth resources
- Collaborative culture that values innovation and accountability
What You’ll Gain
- Hands-on experience with large-scale security analytics platforms
- Exposure to diverse IT environments and advanced threat scenarios
- Mentorship and career development within a structured organization
Available for qualified candidates
