Syntax is a leading Managed Cloud Provider for Mission Critical Enterprise Applications and has been providing comprehensive technology solutions to businesses of all sizes since 1972. Syntax has undisputed strength to implement and manage ERP deployments (Oracle, SAP) in a secure and resilient private, public or hybrid cloud. With strong technical and functional consulting services, and world-class monitoring and automation, Syntax serves some of North America’s largest corporations across a diverse range of industries. Syntax has offices worldwide, and partners with Oracle, SAP, AWS, Microsoft, IBM and other global technology leaders.
Position Summary:
We are seeking a Junior to Mid-Level Security Engineer (m/f/d) to join our Security Engineering team. In this technical role, you will be an integral part of a globally distributed team responsible for managing and advancing our Splunk environment, including Splunk Enterprise, Splunk Enterprise Security (ES), and Splunk SOAR. The ideal candidate is proactive, organized, and detail-oriented, with a strong desire to learn and solve complex challenges independently and in a team.
Primary Responsibilities:
· Support the engineering, configuration, and administration of Splunk Enterprise, ES, and SOAR platforms.
· Perform ongoing data onboarding, field extractions, CIM mapping, and ensure data model integrity.
· Assist in designing and maintaining searches, alerts, dashboards, and correlation rules within Splunk ES.
· Participate in the integration of new log sources, development of automation workflows in SOAR, and enhancement of detection use cases.
· Contribute to documentation, configuration management, and platform lifecycle support (e.g., upgrades, patching).
· Collaborate with other teams globally to ensure visibility, compliance, and operational excellence in the Splunk environment. Evaluate and recommend improvements to security technologies and workflows.
Ideal Candidate Attributes:
· Attention to detail and a methodical approach to problem solving.
· Strong organizational skills and ability to manage multiple ongoing tasks.
· Eagerness to self-educate, research new technologies, and apply knowledge to real-world challenges.
· Comfortable working both independently and collaboratively in a globally distributed team.
Required Qualifications:
· 3–5 years of experience in a security, systems, or infrastructure engineering role.
· Familiarity with Splunk (core and/or ES/SOAR), including basic search language and knowledge object management and creation.
· Excellent proficiency in English, both written and verbal.
· Self-starter with a strong sense of ownership and accountability.
· Ability to work effectively with minimal supervision.
· Project-oriented mindset with a consistent, organized work approach.
· Adept and confident in working with Linux CLI and managing Linux based hosts in a global distributed architecture
Preferred Qualifications:
· Experience working with Splunk ES, data model acceleration, or SOAR playbooks.
· Exposure to log parsing, onboarding, and CIM compliance best practices.
· Basic scripting knowledge (e.g., Python, Bash) for automation or data manipulation.
· Relevant certifications such as Splunk Core Certified User, Power User, or Splunk ES Certified Admin.
· Elastic Stack experience a plus
Why Join Us?
· A collaborative and security-minded engineering team
· Opportunities for growth and technical advancement
· Flexible work arrangements
· Support for certification and continuing education
· Clear paths for growth and advancement as you develop your skills and expertise.
Benefits
- Flexible hours, Monday to Thursday 8h, and Fridays.... 6h. In addition, the whole month of August and the first half of September we have an intensive timetable. 28 days holiday (23 days holiday + 4 days at Christmas from 15 December to 15 January + 1 day for your birthday)!
- Windows laptop for work (Dell or Lenovo)!
- Apple or Android smartphone...you choose!
- Two lovely offices with a nice garden to relax and have a coffee
- Free coffee and soft drinks
- Kitchen facilities
- Medical insurance with Sanitas
- Training: Free AWS and SAP certifications, internal workshops and free access to Linkedin E-learning
- Free online English, German, Spanish or French classes through a platform
- Online Canteen 2.0
If you are passionate about technology, eager to learn, and ready to take on new challenges, we’d love to hear from you!