Senior Cyber Security Engineer

Description

A Council in London is seeking a Contract Senior Cybersecurity Engineer for 6 months. With the strategic deployment of an outsourced Security Operations Centre (SOC) that leverages Splunk and CrowdStrike, the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment.

The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence.

Key Responsibilities

Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon

SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats.

Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment.

Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times.

Threat Hunting: Proactively search for undetected malicious activity using specialized queries.

Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team.Required Experience

Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role.

CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus. xjnqpsq

Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES).

Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK

Vulnerability Assessment: 2+ years using VA tools would be a bonus

Penetration Testing: Exposure to Penetration Testing and Web Application Testing

Ad ID: 5418203522