Cyber Security Engineer
SIX
We drive the transformation of the financial markets. That’s why we invest in bright minds, in their ideas, knowledge and development. We do that by combining our best sides.
If you would like to find out why stability makes us so agile, why experience makes us so curious and why empathy makes us so impactful, apply now for the position of
Cyber Security Engineer
Madrid | working from home up to 60% | Reference 4786
BME is the infrastructure of all the securities markets and financial systems in Spain and is owned by SIX.
Our Log Management team is responsible to design, deploy and operate large-scale log platforms on premise and in the cloud. Our stack processes billions of events per day in near real-time manner, protecting our infrastructure and driving our operational & security monitoring and response processes. We operate a diverse range of technologies from log collection to aggregation and analysis powered by both 3rdparty and internally developed technology.
We are looking for a Log Management Engineer, who wants to build up his career in an international and agile company and in the cybersecurity department in the financial industry.
As a member of the team, you will participate in the driving of log ingestion, aggregation and processing capabilities for our security and operational monitoring. You will support the SIEM and operational monitoring by providing real-time log shipping, streaming, parsing, enrichment and normalization of the data, and you will work hand-in-hand with our internal customers and technology partners to engineer our security stack, increase the level of automation, and evaluate improvements as well as new technologies. We will organize as well for you a tailored onboarding plan including a two weeks stay in Zurich and after that you will work under a flexible hybrid model (60% of remote working and 40% in the office).
What You Will Do
- support the deployment and operation of the security tools and platforms in the area of log management
- help the team to set up our large distributed Kafka and Logstash implementations
- implement automations through various tools like Stash and Ansible as well as contribute to an internally-developed log source management & automation solution
- work with detection, application and platform owners on the onboarding and automation of data sources and support them throughout the entire log source management life cycle
- contribute to the Cyber Defense organization and help to continuously improve our security platforms
- be on-call (approx one week per month) for responding to and troubleshooting any system-related issues
What You Bring
- IT technical related studies or degree
- willingness to work hands-on technical and operational and 1st experience in reliably operating log management tools. Knowledge of Logstash and / or Kafka is a plus
- hands-on engineering experience with both Linux & Windows from a Log Analytics platforms (eg. Splunk, Elastic), API integrations
- strong interest in automation, containerization & configuration management
- a customer focus mindset and willingness to help and find solutions with motivation to pick up new skills, having a positive, proactive and problem-solving attitude
- very good verbal and written English. Spanish is a plus too
If you have any questions, please call Yuliya Stoyko at +34 917 095 993.
For this vacancy, we only accept direct applications in English.
Diversity is important to us. Therefore, we are looking to receiving applications regardless of any personal background.
Something looks off?