OneMain Financial Jobs

Make this the place where you grow.

As a global leader in business and technology innovation, we work with top organizations worldwide to deliver solutions that create meaningful impact.

With 190,000+ professionals across 70+ countries, we blend deep expertise with a culture that values learning, curiosity, and collaboration.

We lead transformation and deliver secure, innovative, industry-specific solutions that move businesses forward. Our people drive everything we achieve; specific solutions that move businesses forward. Our people drive everything we achieve, they think bold to deliver the outcome while ensuring every voice is heard.

Our team is looking for a motivated and experienced SIEM/SOC Leader (Security information and event management) in Athens to support our client on a European institution project.

As a SIEM/SOC Leader , you will own the end-to-end SIEM service, ensuring effective log onboarding, detection engineering, and operational support for Security Operations (SOC). You will be responsible for improving detection coverage, alert quality, and response enablement, while ensuring the SIEM platform operates reliably and delivers measurable security outcomes.

Your role:

• Own and manage the end-to-end SIEM service, including onboarding of log sources, detection use cases, and continuous improvements.

• Define and maintain the SIEM operating model, backlog, priorities, and delivery roadmap.

• Ensure SIEM platform health (log ingestion, parsing, normalization, storage, performance, retention, and capacity).

• Manage integrations (log collectors, APIs, cloud connectors) and oversee upgrades and maintenance.

• Develop and maintain detection rules, correlation logic, dashboards, and analytics.

• Govern the full detection lifecycle (design, build, test, deploy, tune, retire).

• Improve detection quality by reducing false positives and enhancing alert accuracy.

• Integrate and operationalize threat intelligence (IoCs, TTPs) and enrich detections with contextual data.

• Ensure alerts are actionable, with clear triage guidance, severity levels, and response playbooks.

• Collaborate with SOC and Incident Response teams on incident handling, escalations, and post-incident improvements.

• Drive automation and orchestration (e.g., SOAR integrations) to improve efficiency and response times.

Your profile:

• Bachelor in Engineer in Computer Science or equivalent.

• Minimum 8 years of experience in the field.

• Strong hands-on experience with SIEM platforms (engineering, operations, and use-case development).

• Solid understanding of log management, including ingestion, parsing, normalization, and correlation.

• Experience with common log sources (OS, network, IAM, endpoint, cloud, and application logs).

• Knowledge of detection engineering, SOC operations, and incident triage processes.

• Familiarity with threat intelligence and enrichment techniques.

• Experience with scripting and automation (e.g., Python) and API integrations.

• Working knowledge of query languages such as KQL, SPL, or SQL-like.

• Understanding of ITIL-based service management (incident, problem, change processes).

This role describes your starting point at NTT DATA. We believe in long‑term relationships and in supporting your growth. As your skills and ambitions evolve, we will work with you to identify future opportunities, projects, and career paths across our organization.

? Why NTT DATA?

? A collaborative and supportive culture

We foster an environment where curiosity, innovation, engagement, and teamwork are celebrated. Our people‑first philosophy is one of the core reasons we continue to be recognized globally.

? Career development & continuous learning

Access a structured training path, ongoing learning resources, annual performance reviews, and a dedicated mentorship program — all designed to help you grow professionally and take on new challenges.

? Work–life balance supported by our BeFlex policy

As a company, we embrace a BeFlex approach that empowers our people with a level of flexibility in how they manage their workday.

✨ Global Top Employer

We are proudly certified as a Global Top Employer acknowledging our commitment to being a place where people can grow and thrive.

? Health & well‑being first

Your mental well‑being matters. Employees have access to certified psychologists and online mental health workshops.

? Diversity, Equity & Inclusion

We are committed to creating a workplace where everyone can thrive, regardless of gender, nationality, sexual orientation, disability, age, or background. Inclusion is part of who we are and how we work.

#WeAreAllUnique #YouMakeUsUnique

Upon receiving an interview, you may request accommodation for any accessibility needs.

Benefits at NTT DATA Greece

Health insurance for the employee and one dependent family member (100% paid by NTT DATA)

Meal vouchers of 120€ per month (x12)

Corporate mobile phone: subscription & device

Teleworking equipment allowance

Udemy Account

Access to Open Up mental health service

28 days of paid annual leave consisting of your legal holidays and compensation days