At Devoteam, we deliver innovative technology consulting for business.

As a pure player for Digital Transformation of large organisations across EMEA, our 8,200+ professionals are dedicated to ensuring our clients win their digital battles. With a unique transformation DNA, we connect business and technology.

Present in 18 countries in Europe and the Middle East, and drawing on more than 20 years of experience, we shape Technology for People, so it creates value for our clients, for our partners and for our employees.

• Experience of delivering end-to-end data ingestion and processing within Elasticstack including Logstash parser development, ingest pipelines and data/index configuration and management
• Correlation and amalgamation of data from multiple sources within Elasticsearch
• Advanced usage of Elasticsearch APIs
• Producing visualisations and dashboards in Kibana
• Security log and enrichment data ingestion including an understanding of log collection agents and data exchange formats and standards (JSON, XML, Syslog and YAML)
• Software development and scripting languages (Python preferred, Painless also useful)
• Ability to translate business requirements into software requirements
• Stakeholder management (e.g. log source owners, dashboard users and dashboard requirement owners)
• Experience of data analysis (data parsing, regular expressions)
• Experience setting up advanced watchers and Elastic Security alerts
• Experience of version control (Git) and CI/CD pipelines
• Working with Windows Security Event logs, Linux Audit, Cloud based events and various network log format
• Experience working with cloud infrastructure, networking and data management especially in Google Cloud Platform
• Working within a security threat and vulnerability management or security professional services context
• Working with security solution suppliers on issues and improvements