Administrator

Position: SIEM Administrator (L2 Profile)

Location: Dubai, UAE

Mode of work: Work from office (Daily)

Notice period :Max 30 Days

Required skillset:

• 4+ years of experience in Elastic Search administration and SIEM operations.
• Strong expertise in Elastic Stack components: Elasticsearch, Kibana, Logstash, Beats, Elastic Agent.
• Hands-on experience with SIEM use cases, alerting, and dashboard creation.
• Proficiency in troubleshooting cluster performance, ingestion pipelines, and data indexing.
• Good understanding of Linux system administration and networking fundamentals.
• Familiarity with scripting languages (Python, Bash, or PowerShell) for automation.
• Knowledge of security monitoring, threat detection, and incident response workflows.
• Experience integrating diverse log sources into Elastic SIEM.
• Strong problem-solving and analytical skills.
• Strong communication skills and the ability to work effectively with internal teams and external vendors
• Willing to work on client location - onsite

Roles and Responsibilities:

• Administer, configure, and manage Elastic Search SIEM (Elastic Stack: Elasticsearch, Logstash, Kibana, Beats) environments.
• Develop and optimize SIEM rules, alerts, and dashboards to detect security threats.
• Conduct troubleshooting and root cause analysis for SIEM-related issues (indexing, cluster
• health, ingestion failures, and performance).
• Implement upgrades, patches, and system tuning to ensure high availability and performance.
• Manage user roles, access controls, and security configurations.
• Collaborate with SOC, security analysts, and incident responders to improve detection
• capabilities.
• Integrate data sources (cloud, on-prem, endpoints, firewalls, applications) into Elastic SIEM.
• Prepare and maintain system documentation, runbooks, and troubleshooting guides.
• Support compliance and audit requirements by ensuring log retention and security policies are followed.

Educational Qualifications:

Bachelor’s degree in Computer Science / Engineering or equivalent advanced industry

certifications

Additionally, Product certification in the above solutions

Certification Eligibility: Certification is mandatory in the tools & technology category