Senior Security Engineer SIEM (Hybrid set up)

Swiss Re

Reinsurance

Madrid - Spanien

Senior Specialist / Project Manager

Hybrid

Experteer Overview

In this role, you will design, build, and operate scalable log ingestion pipelines for security telemetry at Swiss Re. You’ll optimize Elastic-based SIEM capabilities and collaborate across detection, incident response, and platform teams in a cloud-centric environment. You drive data quality, throughput, and readiness for advanced detection and threat hunting. You will mentor peers and shape SIEM architecture and standards, contributing to a global security capability. This is a hands-on, impact‑driven engineering position at scale.

Compensation / Benefits

flexible hybrid working
diverse, international environment
learning and career development
competitive compensation and benefits
performance-based bonus eligibility
Swiss Re standards benefits

Responsibilities

Design and operate scalable log ingestion pipelines for security and operational telemetry
Engineer ingestion patterns into Elastic to optimize performance, cost, reliability, and data quality
Develop and maintain integrations using Kafka, Azure Event Hubs, and related streaming tech
Implement log parsing, normalization, and enrichment for high‑fidelity data aligned with security use cases
Develop and maintain ingestion, transformation, and enrichment components using Python and Go
Design and operate log forwarders (Elastic Agent) and manage agent policies via Elastic Fleet
Collaborate with detection engineers to support advanced detection, threat hunting, and incident response
Troubleshoot ingestion, latency, and data quality issues across distributed systems
Define and promote logging/ingestion standards across the organisation
Contribute to continuous improvement of SIEM architecture, tooling, and processes
Provide senior technical guidance, reviews, and mentoring to engineers

Key requirements

Several years of experience in SIEM, security engineering, or large-scale log management
Strong understanding of security logging, telemetry, and detection/response use cases
Hands-on experience with Elastic (Elasticsearch, data streams, ingest pipelines, performance tuning)
Practical experience with Kafka and/or Azure Event Hubs in production
Solid software engineering skills with Python and Go (testing, VCS, CI/CD)
Experience designing and operating log ingestion components in containerised/Kubernetes environments and using Terraform for IaC
Experience engineering high throughput, distributed ingestion systems
Good understanding of cloud environments (Azure preferred) and modern infrastructure concepts
Ability to communicate complex topics to technical and non-technical stakeholders
Self-driven, structured, and able to work in a global, agile setup

Collaborative Communicative with diverse stakeholders Structured and self-driven Elastic (Elasticsearch, data streams, ingest pipelines)Kafka Azure Event Hubs

Description

In this role, you will design, build, and operate scalable log ingestion pipelines for security telemetry at Swiss Re. You’ll optimize Elast…

1M+ top positions worldwide with salary benchmarks
Be discreetly found and contacted by headhunters
Exclusively for senior-level professionals and executives

Already a member?