Senior Security Data Engineer (SIEM & Telemetry) (A)
<div class="show-more-less-html__markup show-more-less-html__markup--clamp-after-5 relative overflow-hidden"> <p><strong>EMPLOYMENT RATE</strong></p><p>100%</p><p><strong>WORK LOCATION</strong></p><p>Zurich / Remote (only from Switzerland)</p><p><strong>START DATE</strong></p><p>01 July 2026</p><p><strong>END DATE</strong></p><p>31 December 2026</p><p><strong>REFERENCE</strong></p><p>3858</p><p><strong>TYPE</strong></p><p>Contracting</p><p><br/></p><p><strong>Tasks</strong></p><ul><li>Architect, operate, and continuously improve centralized logging and SIEM platforms with a focus on high availability, performance, and scalability</li><li>Design, build, and maintain telemetry and data pipelines for routing, enrichment, filtering, and multi-destination delivery of log data</li><li>Develop and operationalize SOAR workflows to automate security operations and accelerate incident response</li><li>Create and maintain monitoring, detection content, reports, and dashboards to provide actionable security insights</li><li>Integrate new data sources and ensure data quality in collaboration with security, infrastructure, and application teams</li><li>Contribute to the expansion of the security data ecosystem, including early observability use cases</li><li>Maintain technical documentation such as architecture descriptions, runbooks, and data flow diagrams</li><li>Coordinate resolution of security-related platform incidents with internal stakeholders and external vendors</li><li>Define and improve architecture, standards, and best practices for logging and telemetry</li><li>Provide 2nd and 3rd level support, including participation in on-call rotation</li></ul><p><br/></p><p><strong>Requirements</strong></p><ul><li>Degree in Computer Science, Information Security, or a related field, or equivalent practical experience</li><li>Minimum 5 years of hands-on experience with enterprise SIEM platforms</li><li>Experience developing detection content, correlation searches, dashboards, and data models</li><li>Strong experience with data pipelines and log routing infrastructure (e.g. Cribl or similar tools)</li><li>Practical scripting and automation skills (Python, Bash/Shell, or JavaScript)</li><li>Experience with GIT, SQL, REST APIs, and regular expressions</li><li>Understanding of SOAR platforms and security operations automation</li><li>Experience with configuration management tools such as Ansible is a plus</li><li>Experience in regulated environments, ideally financial services</li><li>Fluent in English</li><li>German is a plus</li></ul><p><br/></p><p><strong>Soft Skills</strong></p><ul><li>Proactive and solution-oriented mindset</li><li>Strong analytical and conceptual thinking abilities</li><li>Structured and goal-oriented working style</li></ul><p><br/></p> </div>