The Role
We are seeking a highly skilled Senior SIEM Engineer / Consultant with deep expertise in custom log onboarding, complex parsing and advanced SIEM integrations. The ideal candidate has strong hands-on experience with Micro Focus ArcSight, Logstash and modern log processing pipelines. This role focuses on designing, implementing and optimising customised data ingestion workflows to ensure high-fidelity security monitoring across diverse environments.
Skills
* Experience with Micro Focus ArcSight (SmartConnectors, FlexConnectors, ESM, Logger).
* Familarity with Logstash and custom log processing pipelines.
* Proficiency with regex, Grok, JSON/XML parsing and custom transformation logic.
* Strong understanding of SIEM ingestion flows, event taxonomies and enrichment processes.
* Experience integrating with enterprise platforms (firewalls, IDS/IPS, cloud services, servers, custom applications).
* Proficiency in scripting languages (Python, Bash, PowerShell).
* Solid knowledge of network protocols, logging standards and security event semantics.