Leica Biosystems is hiring a SIEM Architect to join Danaher's Corporate Information Security team. This new position, hosted by Cytiva in Kraków and reporting to the Sr. Manager of Cyber Threat Engineering, will be pivotal in designing, implementing, and evolving the enterprise-wide Security Information and Event Management (SIEM) architecture.

What You'll Do

Act as the technical Subject Matter Expert (SME) for enterprise cybersecurity log data management solutions, pursuing opportunities for optimization and standardization.
Define and implement scalable, modular, secure, and maintainable solutions.
Design and build architecture artifacts describing system High-Level Design (HLD) and Low-Level Design (LLD) and maintain existing artifacts.
Partner with engineering and architecture peers across Danaher and all operating companies.

What We're Looking For

7+ years of deploying, managing, maintaining, or architecting enterprise SIEM solutions.
Demonstrated experience administering a range of SIEM platforms including Splunk, Microsoft Sentinel, Palo Alto XSIAM, Google SecOps (Chronicle), Humio, and Elastic.
Experience implementing and leveraging log data pipeline technologies like Cribl, Vector, or Tenzir.
Demonstrated experience with cloud service providers including Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform (GCP).
Experience translating business requirements into solution requirements.
Experience preparing and maintaining documentation, including architectural diagrams, logical flow diagrams, operating procedures, and use case documentation.

Nice to Have

Demonstrated programming or scripting language expertise including Python, Bash, or PowerShell (Python preferred).
Demonstrated experience communicating across levels within an organization from Engineering and Operations team members to Senior Leadership.

Technical Stack

SIEM Platforms: Splunk, Microsoft Sentinel, Palo Alto XSIAM, Google SecOps (Chronicle), Humio, Elastic
Log Pipelines: Cribl, Vector, Tenzir
Cloud Providers: Amazon Web Services (AWS), Microsoft Azure, Google Cloud Platform (GCP)
Scripting: Python, Bash, PowerShell

Team & Environment

This role is positioned within the Kraków technology delivery centre as part of a growing engineering and operations team within Danaher's Corporate Information Security organization, reporting to the Sr. Manager, Cyber Threat Engineering.