Senior SIEM Operations Engineer Porto

Overview

1 week ago Be among the first 25 applicants

Get AI-powered advice on this job and more exclusive features.

It has been more than 70 years since Volkswagen Financial Services AG financed the first Volkswagen vehicles in Germany in 1949. A lot has changed since then, but our core goal hasn't; ensuring we meet the mobility needs of the people.

Volkswagen Financial Services today operates in 48 markets through its various subsidiaries, shareholdings, and joint ventures. Volkswagen Financial Services is the largest provider of automotive financial services worldwide.

At VWFS Porto, we are proud to foster a
- equal workplace, where diversity is celebrated, and every individual is provided with equal opportunities to thrive and succeed.

VWFS Porto is a VWFS AG IT hub, and the first outside Germany. Here we will establish a
- term Business & IT company. Our primary goal is to service all European markets in implementing and maintaining contract management systems and other IT projects in other areas. Our focus is on core systems, satellite systems (such as document management systems, collection systems) and also extends to integrations, data, and large project organizations. For this we seek a
- on Senior SIEM Operations Engineer.

Objectives

As a Senior SIEM Operations Engineer, your primary objective is to ensure stability, performance, and continuous improvement of the IBM QRadar environment and its supporting infrastructure. You will play a critical role in maintaining security visibility across the organization by managing log sources, optimizing system performance, and supporting incident response capabilities.

Responsibilities

• Operating and maintaining the IBM QRadar SIEM environment, including updates, configuration changes, and hardware service coordination (remote only)
• Supporting and maintaining auxiliary systems such as Git servers, rsyslog servers, and other Linux-based services
• Participating in
  - call duty rotations to ensure 24/7 operational support
• Managing approximately 23, 000 log sources
• Ensuring all log sources are active and sending correct data
• Adding new log sources and decommissioning inactive ones
• Verifying data parsing and normalization within QRadar
• Performing capacity planning and lifecycle management of all components
• Analysing, optimizing, and developing scripts in Python, Bash, or Perl to automate and enhance operations
• Maintaining and improving protocol standards for logging
• Defining what should be logged
• Testing and rolling out updated standards across the environment
• Coordinating daily operational activities within the SIEM team to ensure smooth execution of tasks and alignment with service expectations
• Acting as a technical escalation point and mentoring junior and
  - level engineers to support their development and ensure knowledge transfer

Profile

• Strong experience with IBM QRadar administration and log source management
• Proficient in Linux system administration and scripting (Python, Bash, Perl)
• Exposure to Git and centralized logging systems like rsyslog
• Comfortable working in a
  - availability,
  - focused environment
• Analytical mindset with strong
  - solving skills
• Excellent communication skills and a proactive,
  - oriented attitude

Certifications and qualifications

• ITIL Certification or equivalent qualification (Foundational knowledge in IT service management)
• IBM QRadar Certification (Associate Administrator, Deployment Professional, or Analyst) [Mandatory]
• Linux Professional Certification Level 2 or Red Hat Certified Engineer (RHCE) - [Recommended]
• Cisco Certified Network Associate (CCNA) or equivalent
  - level networking certification - [Recommended]

Nice to have / Considered a plus

• Experience with IT Service Continuity Management (ITSCM) testing
• Exposure with SIEM tuning and rule optimization
• Exposure to
  - based logging and hybrid environments
• Knowledge of security frameworks and compliance standards (e. g. , ISO 27001, NIST)
• Experience with automation tools and CI/CD pipelines

Qualifications

• Bachelor’s or Master’s degree in IT, Business, or relevant field
• Experience with Agile (Scrum, Kanban) and SDLC tools like Jira and Confluence
• Knowledge of performance tuning and integration techniques
• Knowledge of English, both written and verbal

What we Offer

• Competitive package including private health insurance, life insurance and meal allowance (pay by meal card)
• Bonuses and benefits depending on performance
• Schooling allowance and pension scheme
• Incredible and unique annual company events
• Opportunity to work on an international project and be part of multicultural and multidisciplinary team
• Solid performance evaluation and career management methodologies
• Continuous training – technical and behavioral development

Seniority level

• Not Applicable

Employment type

• Full-time

Job function

• Information Technology

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.