SIEM Architect

2 Hours ago • 8-10 Years

Job Summary

Job Description

The SIEM Architect will be responsible for driving key initiatives and contributing to the success of the client. This role requires technical expertise, strategic thinking, and strong communication skills. The architect will conduct assessments, support RFP for SIEM selection, support migration of data sources, ensure business-critical alerting, collaborate with teams, implement scalable log ingestion pipelines, and integrate with existing detection-as-code processes. The architect will also implement and test enrichment, assist in configuring federated search, validate detection logic, provide updates, documentation, and knowledge transfer, and deliver tuning recommendations.
Must have:
  • 8–10 years of experience in security architecture.
  • Experience in managing and integrating multiple SIEM platforms (Splunk, Sentinel, Elastic).
  • Hands-on experience in consolidating SIEM technologies across hybrid cloud and on-prem environments.
  • Deep understanding of SIEM architecture, log ingestion pipelines, data parsing and enrichment.
  • Experience aligning SIEM configuration and operations with regulatory compliance requirements.
  • Strong knowledge of security concepts such as threat detection and data privacy controls.

Job Details

Company Description

Arηs Group – part of Accenture - is a market leader in the management of complex IT projects and systems. Founded in Luxembourg in 2003, we have grown to encompass 12 entities worldwide, employing over 2,500 employees in Luxembourg, Belgium, Greece, Italy, Portugal and Bulgaria. With our focus on getting things done, we help our clients achieve their goals with best-of-breed solutions, superior execution and exceptional services. We offer bespoke software development, data science, infrastructure, digital trust and mobile development to government institutions at national and European level, telecom providers, and financial institutions, among others. Our bold company culture is built around working hard and playing hard, with a flat and agile structure that lends itself to efficiency and employee empowerment. We value our diverse workplace of close-knit teams and provide a place where everyone can be supported to learn and evolve.

Job Description

ARHS Group – part of Accenture – is looking for a highly motivated and skilled SIEM Architect for one of our clients, a key player in the financial domain.

The ideal candidate will be responsible for driving key initiatives and contributing to the success of our client. This role requires a combination of technical expertise, strategic thinking, and strong communication skills.

Context

Support and advisory services. The primary technologies involved are Splunk, Sentinel, and Elastic.

Taking into account potential changes based on evolving insights from the consultant's assessment, this project aims to facilitate the successful integration of multiple legacy SIEM platforms into a unified and scalable SIEM solution. This will be achieved through the provision of security engineering expertise across detection, data ingestion, and validation activities.

Role & responsibilities

  • Conduct assessment and translation of existing detection rules from legacy SIEMs to the target platform.
  • Support a RFP to select a SIEM
  • Support migration of prioritized data sources, including log validation, parsing, enrichment, and tagging.
  • Ensure business-critical alerting and correlation use cases are maintained or enhanced post-migration.
  • Collaborate with internal SOC and engineering teams to implement scalable log ingestion pipelines and retention policies.
  • Integrate with existing detection-as-code processes and related CI/CD pipelines for rule lifecycle management.
  • Implement and test enrichment and contextual tagging using internal and external data sources.
  • Assist in configuring federated search and ensuring data remains at rest in its respective environments.
  • Validate the performance, fidelity, and coverage of translated detection logic using controlled datasets or historical log replay.
  • Provide regular updates, documentation, and knowledge transfer sessions with internal teams.
  • Deliver tuning recommendations and support post-migration optimization efforts.

Deliverables 

  • Inventory of log sources, detection rules and integrations across legacy SIEM platforms.
  • Data source and detection rule migration plan.
  • Validated ingestion pipelines and normalized log formats.
  • Enrichment and correlation configurations.
  • Test definitions and test results including tuning reports for translated detections.
  • Final migration summary with coverage validation and open gap tracking.
  • Documentation for transitioned components. 

Qualifications

Your profile

  • University degree in Computer Science, Cybersecurity, Data Engineering or a related field, or equivalent professional experience. A background in cybersecurity is strongly preferred.
  • Strong analytical and problem-solving abilities, with meticulous attention to detail and a demonstrated capacity to work cross-functionally with infrastructure, security, and business teams.
  • Excellent communication skills, capable of distilling complex technical details into clear insights for both technical and executive audiences.

Technical skills

  • 8–10 years of experience in security architecture roles, with proven expertise in managing and integrating multiple SIEM platforms (e.g., Splunk, Microsoft Sentinel, Elastic).
  • Hands-on experience in consolidating SIEM technologies across hybrid cloud and on-prem environments, including normalization of data sources, correlation rule migration, and log pipeline optimization.
  • Deep understanding of SIEM architecture, log ingestion pipelines, data parsing and enrichment, and custom alert development.
  • Deep experience aligning SIEM configuration and operations with regulatory compliance requirements such as PCI DSS, ISO 27001, HIPAA, and SOC 2, ensuring coverage of mandated logging, monitoring, and alerting controls.
  • Strong knowledge of security concepts such as threat detection, data privacy controls, threat modeling, and risk assessment, with an emphasis on how they apply across diverse SIEM ecosystems.
  • Experience designing and maintaining scalable data pipelines to support security telemetry ingestion, transformation, storage, and analysis across distributed systems.

Similar Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Skill Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Jobs in Brussels, Brussels, Belgium

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

We are a fully independent group of companies specialised in managing complex IT projects and systems. Arηs analyses complexity and delivers simplicity in order to improve our society through reliable, efficient IT Systems. Our vision is to be the most caring and reliable IT company on the marketplace for both our clients and our people. Our values are: caring, agility, excellence, innovation, continual improvement. Our values support our vision by leveraging excellence, striving for results, ensuring commitment and promoting adaptability.

Brussels, Brussels, Belgium (On-Site)

Brussels, Brussels, Belgium (On-Site)

Brussels, Brussels, Belgium (On-Site)

Luxembourg, Luxembourg, Luxembourg (On-Site)

Luxembourg, Luxembourg, Luxembourg (On-Site)

Luxembourg, Luxembourg, Luxembourg (On-Site)

View All Jobs

Get notified when new jobs are added by ARHS

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug