Enable job alerts via email!
Elasticsearch Consultant or Architect (Observability OR Security (SIEM) or Search (Data)
GIOS Technology
Bristol
On-site
GBP 60,000 - 80,000
Full time
Generate a tailored resume in minutes
Land an interview and earn more. Learn more
Job summary
A technology company in the United Kingdom is seeking an experienced Elasticsearch Consultant or Architect. In this pivotal role, the candidate will be responsible for designing, implementing, and optimizing sophisticated Elasticsearch environments tailored to crucial business functions, either in Observability, Security (SIEM), or Search (Data Management). The ideal applicant will have deep expertise in the Elastic Stack, especially in configuring Elastic Agents and Beats, and developing advanced Kibana dashboards. Join our team to make a significant impact!
Qualifications
- Proven ability to design and optimize Elasticsearch environments.
- Experience configuring Elastic Agents and Beats for data collection.
- Ability to deploy Elastic SIEM and conduct threat hunting.
Responsibilities
- Design, implement, and optimize Elasticsearch environments.
- Configure Elastic Agents, Beats, and Logstash for data collection.
- Create detection rules and reports for security posture compliance.
Skills
We are hiring Elasticsearch Consultant or Architect (Observability OR Security (SIEM) or Search (Data)) to join our team.
This pivotal role requires a deep subject matter expert in the Elastic Stack, responsible for designing, implementing, and optimizing complex Elasticsearch environments tailored to critical business functions in either Observability, Security (SIEM), or Search (Data Management).
Expert in configuring Elastic Agents, Beats (Filebeat, Metricbeat, etc.), and Logstash for comprehensive data collection. Designing APM services, setting up synthetic monitoring, and creating advanced Kibana dashboards for holistic operational visibility.
Proven ability to deploy and manage Elastic SIEM, including endpoint security integration. Expertise in using security data (logs, events) to create custom detection rules, conduct threat hunting, and report on security posture and compliance.
Deep experience with at least two of the following: Machine Learning (ML) for anomaly detection; Cross-Cluster Replication (CCR) for disaster recovery / HA; Searchable Snapshots / Cold / Frozen Tiers for cost optimization; or advanced use of Data Streams and ILM.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
