Elastic Search Engineer

The team in Singapore is looking for an ICT Security Engineering professional to increase its capability to improve the Bank detection & reaction to Cyber Threats by: Deploying, maintaining, and improving the new SIEM infrastructure. The new joiner will collaborate closely with the Production Infrastructure & Observability teams. Direct Responsibilities Install and administrate the servers of the SIEM Infrastructure Develop automation on the different tasks and self-service tool Participate in the integration of new technologies logs Support logs parsing using custom parser/GROK development. Project management Be a full-time member of the Production CSIRT / SIEM Engg team and participate to the various activities of the team Contributing Responsibilities Contribute to the Permanent Control framework for the implementation of policies and procedures in day‐to‐day business activities, such as Control Plan. Comply with regulatory requirements and internal guidelines. Contribute to the reporting of all incidents according to the Incident Management System Competencies (Technical / Behavioral) Production experience across the following technologies: Candidate must have overall 7 or more years of experience with a minimum 4-5 years on relevant scope ie. Expertise in handling ELK stack for large platform or architecture. Working knowledge of Elastic stack (Elasticsearch / Logstash / Kibana / Beats) including data ingestion, management, monitoring & analytics. (Mandatory) In-depth experience with Kafka Good working knowledge of Linux (RedHat/Ubuntu) Programming skills (Python or Bash) is appreciated. Experienced production support engineer Platform integration skills are a plus - Experience in installation, configuration, documentation, and administration of multiple pre-production and production platforms in both virtual and physical environments. Experience & skills in automation tools (e.g. Ansible) & DevOps pipelines are appreciated. #J-18808-Ljbffr