Active job offers
Cybersecurity Engineer – SIEM (RO)
Requirements
- Microsoft Sentinel experience
- Azure Logic Apps
- SIEM principles
- English
- German (nice to have)
Job description
Our customer is a German company specializing in comprehensive IT solutions, supporting enterprises in their digital transformation.
With extensive experience, it offers high-quality services that include IT infrastructure management, business applications, and modern workplace (Digital Workplace) solutions. The company focuses on long-term relationships, tailoring services to meet clients’ specific needs, ensuring stability, security, and innovation. They operate throughout Germany, with its primary goal being to help clients achieve long-term success in a dynamic technological landscape.
The company serves a wide range of clients, including large enterprises and organizations with complex IT needs and provides modern IT infrastructures and scalable cloud solutions, such as SAP and AI, customized to clients’ requirements.
Our customer operates as a dynamic IT service provider, supporting the digital transformation of the German economy.
Main responsibilities:
- Oversee the daily administration and maintenance of Microsoft Sentinel.
- Configure Sentinel’s core settings, including data connectors, analytic rules, and automation rules, to meet the organization’s security policies and compliance requirements.
- Implement and manage Sentinel’s role-based access control to ensure secure and compliant access for different user groups.
- Set up and maintain data connectors to ingest logs from various sources, such as on-premises environments, cloud platforms and third-party security tools.
- Ensure proper data formatting, transformation, and mapping for seamless data ingestion and usability within Sentinel.
- Design and deploy automation playbooks in Sentinel to streamline incident response workflows, notifications, and remediation actions.
- Fine-tune analytic rules, thresholds, and automation to reduce false positives and ensure efficient alerting and incident management.
Qualifications:
- Several years of relevant professional experience;
- Experience with Microsoft Sentinel, including configuration, administration, and integration capabilities;
- Knowledge of data connector setups and integrations with both Microsoft and third-party sources;
- Proficiency with Azure Logic Apps for developing and managing automation playbooks;
- Familiarity with security information and event management (SIEM) principles, particularly in cloud-native environments;
- Troubleshooting and problem-solving skills to address integration issues and performance optimization;
- Ability to work cross-functionally with IT, DevOps, and security teams to support integrations and address technical needs;
- Fluent English;
- German (nice to have);
About Spyrosoft
Spyrosoft is an authentic, cutting-edge software engineering company, established in 2016. In 2021 and 2022, we were among the fastest growing technology companies in Europe, according to the Financial Times. We were founded by a group of tech experts with established backgrounds in software engineering, who created an ‘engineer-to-engineer’ workplace, powered by enthusiasm, fairness and authentic relationships. Having a unique offering, which bridge the gap between technology and business, we specialise in technology solutions for industry 4.0, automotive, geospatial, healthcare & life sciences, employee experience & education and financial services industries.
Benefits
More reasons to work with us
Yearly training budget
Use your personal training budget to gain new skills and knowledge and continue on the path of self-development.
Hybrid work
Work from the comfort of your home or any of our amazing offices.
Internal initiatives
Take part in our knowledge-sharing meetups organised by and for tech enthusiasts.
Recruitment process
It only takes a few steps
Different roles have different requirements, so the recruitment process depends on the specific position you are applying for.
Checking your CV
Evaluating your qualifications
Making an appointment
Getting the answer
CONTACT OUR RECRUITMENT TEAM
Apply for
Cybersecurity Engineer – SIEM (RO)