Cyber Defense Center (Cdc) Elastic Engineer

Cyber Defense Center (CDC) Elastic Engineer

We are seeking an Elastic Engineer to join our international Security Operations Center (SOC). The successful candidate will be responsible for managing, optimizing, and scaling the Elastic Stack-based SIEM platform, enhancing threat detection and incident response capabilities.

Responsibilities:

• Manage and administer the Elastic Stack (Elasticsearch, Logstash, Kibana, Beats) used as the SOC’s SIEM platform.
• Design and optimize Elasticsearch clusters for high availability and distributed environments.
• Create data ingestion pipelines from various sources using Logstash and Beats.
• Optimize search performance, index mappings, and queries for efficient data analysis.
• Collaborate with SOC analysts to integrate new data sources and detection use cases.
• Automate deployment, updates, and backups of Elastic infrastructure.
• Implement security controls such as X-Pack, TLS, and RBAC.
• Maintain technical documentation and operational procedures.

Requirements:

• Proven experience with Elastic Stack in production environments.
• Strong understanding of SIEM architecture and security monitoring best practices.
• Experience with log management, data parsing, and normalization.
• Knowledge of cybersecurity concepts, threat intelligence, and detection engineering.
• Proficiency with Linux systems and scripting languages like Bash and Python.
• Experience with automation and CI/CD tools (e.g., Ansible, GitLab CI, Terraform).
• Basic networking skills and familiarity with logging protocols such as Syslog, JSON, and HTTP APIs.
• Ability to work effectively in international and cross-functional teams.
• High level of autonomy and strong problem-solving skills.
• Excellent written and verbal communication skills.
• Fluency in Italian and professional proficiency in English.

Nice to Have:

• Elastic certifications (e.g., Elastic Certified Engineer) are a strong plus.

What We Offer:

• A role within a global cybersecurity team dedicated to protecting critical infrastructure.
• Collaboration with a highly skilled and motivated team.
• Opportunities to work on international projects within the Würth Group.
• Partnerships with Atlassian, Elastic, RedHat, Icinga, and Influx.
• Flexible hours and remote work options.
• Competitive salary with a company MBO incentive system.
• Performance bonuses and welfare benefits.
• Ongoing training and certifications funded by the company.
• Insurance coverage including accident and health insurance.
• A dynamic work environment with team events and activities.

Interested in this role? Please specify your area of interest: Software Development, System Engineering, Consulting, Marketing, Finance, Others.

Educational qualifications: High school diploma, Bachelor’s, Master’s, PhD, Others.

Attach Curriculum Vitae

We ensure data confidentiality in compliance with GDPR. By submitting your application, you agree to our privacy policy.