Design & Implementation of a distributed IDS/IPS/Vulnerability Scanning/SIEM/Incident Event & Response Management platform.

Consult and implement a hybrid (appliance- and PaaS/SaaS-based) security offering comprised of IDS/IPS, Vulnerability Scanning, SIEM/Incident Event & Response Management capabilities, and built around theThe Elastic Stack (ELK), Apache Kafka and GitLab for CI/CD purposes.

Appliances will be installed as CPE units (Customer Premises Equipment), and ship all relevant data to central backends for further processing analysis through both automated processes and a SOC team.

Role involves developing a production-grade prototype appliance with full remote management facilities, and the tenant-capable central storage backend for event processing along with template customer dashboards, as well as a highly automated onboarding workflow for new customers.

Industry

IT Security

Roles

Lead Architect, Senior DevOps Engineer

Technologies a.o.

GitLab, Elasticsearch, Logstash, Kibana, Apache Kafka