SIEM Engineer
Lisbon, PRT
Oporto, PT; Madeira, PT; Faro, PT; Flexible;
Hybrid
Permanent
Full Time
37.5 - 40
130814
TUI Group is the world’s number one integrated tourism business. Information Security is a global team within TUI technology responsible for maintaining and continuously improving security across TUI. We are a multi-disciplinary team of experts across Governance, Risk and Compliance (GRC), Architecture, Engineering and Delivery providing services across the UK, Ireland, Sweden, Norway, Denmark, Finland, Spain, Germany, Belgium and The Netherlands.
We never stop looking ahead, seeking new ways to delight our customers and grow our business. We recognise the power of digital and the massive contribution this brings to creating a truly unique and differentiated customer experience.
We are seeking a skilled SIEM Engineer to join our global Cyber Security team. In this unique role, you will be responsible for implementing and maintaining our Security Information and Event Management (SIEM) systems while also managing the knowledge assets related to our security operations. Your efforts will ensure that TUI's security monitoring capabilities are robust and that critical knowledge is effectively captured, organized, and shared across the team.
- Now taking applications until 20-01-2025
ABOUT OUR OFFER
- Personal benefits: Attractive remuneration, bonus opportunity, exclusive travel perks & discounts, extensive health & wellbeing support, and more.
- Flexible working: Work is something you do, not somewhere you go. We encourage a healthy work-life balance and offer hybrid or remote working models.
- A career to shape: Opportunities to upskill, reskill and grow your career. Access the TUI Tech Learning Hub to level-up and reach your ambitions.
- Expand your horizons: Participate in our tech communities and collaborate on global projects and teams.
- Community: Get involved with incredible local charity and sustainability initiatives like the TUI Care Foundation and the Sustainable Tech Community.
ABOUT THE JOB
System Deployment & Maintenance:
- Install, configure, and maintain SIEM platforms (e.g., Splunk) to support security monitoring and incident response activities.
- Ensure the SIEM infrastructure is optimized for performance, scalability, and reliability.
Data Onboarding & Integration:
- Onboard new log sources by configuring data inputs, parsing rules, and field extractions.
- Ensure seamless integration of various data sources, including servers, applications, and network devices.
Content Development:
- Develop and maintain dashboards, alerts, and correlation searches to enhance threat detection capabilities.
- Customize SIEM content to address specific security use cases and compliance requirements.
Troubleshooting & Support:
- Monitor SIEM system health and performance, resolving issues promptly to minimize downtime.
- Provide technical support to the Security Operations Centre (SOC) and other stakeholders.
Documentation & Repository Management:
- Develop and maintain comprehensive documentation, including playbooks, standard operating procedures (SOPs), and configuration guides.
- Organize and manage the knowledge repository to ensure information is easily accessible and up-to-date.
Training & Development:
- Conduct training sessions and workshops to educate team members on SIEM functionalities and security best practices.
- Foster a culture of continuous learning and knowledge sharing within the security team.
Content Curation:
- Regularly update knowledge assets to reflect changes in the threat landscape, technology updates, and process improvements.
- Collaborate with team members to capture tacit knowledge and convert it into explicit documentation.
Threat Detection:
- Assist in monitoring security events to identify potential threats and vulnerabilities.
- Fine-tune detection rules to improve accuracy and reduce false positives.
Incident Response Assistance:
- Support the SOC during security incidents by providing timely access to relevant SIEM data and insights.
- Update knowledge assets post-incident to capture lessons learned and improve future response efforts.
Regulatory Compliance:
- Ensure SIEM operations and documentation comply with relevant regulations and industry standards such as GDPR, PCI DSS, and ISO 27001.
Audit Preparation:
- Provide necessary documentation and evidence to support internal and external audits.
- Implement audit recommendations to enhance security controls and processes.
ABOUT YOU
Education & Experience:
- Bachelor's degree in Computer Science or equivalent experience, Information Security, or a related field.
- Proven experience in SIEM engineering and/or security operations.
- Experience in knowledge management or technical documentation is a plus.
Technical Expertise:
- Proficiency with SIEM platforms, particularly Splunk Enterprise and Splunk Enterprise Security.
- Strong understanding of log management, data parsing, and event correlation.
- Familiarity with security frameworks and protocols (e.g., TCP/IP, SSL/TLS, LDAP).
- Basic scripting skills (e.g., Python, PowerShell) for automation and data manipulation.
Knowledge Management Skills:
- Experience in creating and managing technical documentation and knowledge repositories.
- Ability to translate complex technical concepts into clear, concise documentation.
- Proficiency with documentation tools and content management systems.
Stakeholder Management Skills:
- Excellent interpersonal skills to engage effectively with technical and non-technical stakeholders.
- Experience in maintaining backlogs and developing implementation roadmaps.
- Strong organizational skills to manage multiple projects and priorities.
Analytical & Problem-Solving Skills:
- Ability to analyse security logs and data to identify patterns and anomalies.
- Strong troubleshooting skills to resolve system issues and optimize performance.
Communication & Collaboration:
- Good verbal and written communication skills.
- Ability to conduct training sessions and facilitate knowledge sharing.
- Collaborative mindset to work effectively within cross-functional teams.
Certifications:
- Relevant certifications such as Splunk Certified Power User, Splunk Certified Admin, or ITIL Foundation are desirable.
- Security certifications like CompTIA Security+, SSCP, or equivalent are a plus.
From a workplace to a place to belong. At TUI we embrace diversity, equity, and inclusion, encouraging everyone to come as you are, because together, our potential is limitless.
We are committed to supporting candidates with disabilities and impairments so if you require any support, please do let us know.
-
Career Areas | Jobs & Careers at TUI Within our TUI career areas, we are creating unforgettable experiences every day. Check out our teams, what they do and who they are here. -
About TUI I Jobs & Careers at TUI Learn more about TUI. We are a leading global travel and leisure experience company that makes holiday dreams come true for people around the world.
-
The best team in travel | Jobs & Careers at TUI For us "Let's TUI it" we means tackling challenges together, and finding solutions with a can-do attitude. See here what makes us the best team in travel.
-
-
-
Contact us | | Jobs & Careers at TUI Here you will find the recruitment teams within TUI who are happy to help with your queries.
-
FAQ
-
-
Cookie Notice | Jobs & Careers at TUI Your privacy is important to us. Here you will find all the information about what cookies are, how we use them and your choices when it comes to cookies.
-
-
-
-
-
-
-
Corporate operations Across Europe, Asia, and the Americas, TUI corporate roles all have one thing in common – a drive to give our customers a best-in-class leisure experience. You’ll be contributing to the success of our vision and values – whilst developing your own career path, too.
-
Cruise We power an impressive fleet of 16 cruise ships spanning three dynamic brands. Teams of passionate individuals not only setting the stage on board, but also behind the scenes at our vibrant head offices where we craft unforgettable memories for our guests.
-
Hotels & resorts The world is yours to explore at TUI. Join us for your dream career across our global destinations, where every role promises unforgettable experiences and a chance to leave a lasting impact on our guests worldwide.
-
Retail and Contact Centres Whether you’re engaging with our clients through our digital channels or offering personalised service in one of our 1,600+ retail stores across Europe, your role is pivotal in crafting unforgettable holidays.
-
Early careers Whether with an apprenticeship, a dual study program or an internship, we offer you a great variety of early career opportunities to start your journey with TUI.
-
Engineering & maintenance Having safe and reliable aircraft available when and where we need them is fundamental to delivering the excellent customer experience we’re famous for, and that all starts with our Engineering & Maintenance teams.
-
Airline Working for TUI in our Airline offers you a job like no other. Our passion is delivering unforgettable experiences for our customers. Our people make this happen.
-
Digital, Tech, & Data | Agile Evolution Find out what agile working means at TUI and how our Scrum Masters work towards making TUI a fully agile company
-
Digital, Tech, & Data | Information Security Within our Information Security community of practice you will perform a crucial role in protecting our IT organisation.
-
Digital, Tech, & Data | Digital Product As the world's leading tourism group, we're driven by technological passion and expertise. Find out how our Digital Products allow us to do just that.
-
Digital, Tech, & Data | Machine Learning and Automation Join our team to study, implement ML algorithms, and develop innovative machine learning applications.
-
ux-ui Our team is dedicated to crafting the most immersive and seamless digital journey for our customers
-
Digital, Tech, & Data | Meet our Colleagues Meet TUI's Tech and Data Science Team: Discover how our people-driven culture, built on trust, transparency, and a test-and-learn mindset, sets us apart.
-
Digital, Tech, & Data | Data Solutions Architecture Discover the Power of Data Solution Architecture at TUI Tech and unleash the business IT needs
-
Tech, Digital & Data TUI is influencing and shaping the digital world of travel which requires the latest and most innovative technologies, tools, systems and working methods. Explore careers in digital, tech & data.
-
Digital, Tech, & Data | Data Analytics, Engineering and Science Explore TUI's Data Analytics, Engineering and Science to discover how we leverage data-driven insights to transform the travel industry.
-
Retail Opportunities With over 1,600 retail stores across Europe, you will help to create unforgettable holidays for all of our customers with your personality, professionalism and personalised service. As the first point of contact for many of our customers, we are looking for dedicated people with a passion for travel and customer service.
-
Digital, Tech, & Data | What we do Discover how our dedicated IT teams at TUI drive digital transformation and ensure seamless processes
-
Digital, Tech, & Data Explore TUI's Software Development, API, and DevOps expertise and discover how we leverage cutting-edge technologies
-
Crystal Ski We’ve been taking people to the mountains for over 40 years to create unforgettable experiences in ince, snow and sun. Join us and make some of the world’s greatest ski resorts your home.
-
Digital, Tech, & Data | Solutions Architecture Join TUI's Solution Architecture team, where you'll steer the course of our integration solutions
-
-
-
-
-
-
How We Hire | Destination Jobs At TUI we want to make your journey as a candidate as simple and transparent as we possibly can. We truly believe that your application to join TUI should be as exciting as going on holiday. Learn more about our application process.
-
-
-
-
-
-
Come as you are. This is how we do diversity and inclusion at TUI...
-
-
Destination Services These ‘Makers of Happy’ are our onboard experts, helping to create unforgettable experiences for our customers. From organising activities and tours, to advising on the best places to go independently, our team ensure our customers make the most of their precious time ashore in the culture-packed and diverse destinations we visit.
-
Entertainment Travel the world and do what you love – and join an award-winning team as part of the deal. We’ve picked up a few gongs at the Wave Awards, the cruise world’s answer to the Oscars. So fair to say we pride ourselves on the high-calibre entertainment programme we host onboard.
-
-
-
-
-
-
-
-
-
-
-
-
Diversity, Equity and Inclusion UK&I We're here to create unforgettable experiences. For customers. For each other too. To do this, we need to be ourselves, every day. Feel we belong and feel good in our unique-ness. That's why diversity, equity and inclusion are important to us. So our simple ask is to 'Come As You Are', and make sure that other people can do it, too. Because together, our potential is limitless.
You could be here!
Explore Location
Jobs for you
-
Palma de Mallorca, ESP, Oporto, PT; Milan, IT; Flexible View role
Software Engineer
-
Lisbon, PRT, Oporto, PT; Barcelona, ES; Madrid, ES; Flexible View role
Information Security Manager
-
Lisbon, PRT, Oporto, PT; Madeira, PT; Faro, PT; Flexible View role
Incident Response Manager
-
Lisbon, PRT, Oporto, PT; Madeira, PT; Faro, PT; Flexible View role
SIEM Architect