Medior System Engineer – Elastic Security / SIEM - JP053874

Medior System Engineer – Elastic Security / SIEM
Brussels, Belgium (Hybrid)
Contract: Full-time

We're looking for a Medior System Engineer with strong Elastic Security / SIEM expertise to support a large-scale security environment.

Key Responsibilities

• Design, deploy, and maintain ELK stack (Elasticsearch, Kibana, Logstash, Elastic Security, Elastic Defend)
• Manage Elastic Agents & Fleet architecture (policies, integrations, large-scale deployment)
• Build and optimize log ingestion pipelines (Kafka, security tools like Firewall, WAF, IAM, IDS/IPS)
• Normalize data using Elastic Common Schema (ECS)
• Configure and enhance SIEM use cases, alerts, and dashboards
• Support endpoint security and behavioral analysis (Elastic Defend)
• Collaborate with teams and provide documentation & knowledge transfer

Requirements

• Proven experience with Elastic Stack (ELK), especially Elastic Security (v9.x)
• Strong understanding of SIEM, cybersecurity, and log management
• Experience with Fleet, Elastic Agents, and ingestion architecture
• Familiarity with Linux & Windows environments
• Knowledge of Kafka is a plus
• Working proficiency in English, fluent French

Nice to Have

• Exposure to Ansible or automation tools

If you're passionate about cybersecurity, SIEM, and scalable data pipelines, this is a great opportunity to work on impactful security projects.