SIEM Engineer

Description

Role Title: SIEM Engineer

Duration: contract to run until 26/12/2025

Location: Wokingham, Hybrid 2 days onsite

Rate: £460 p/d Via Umbrella inside IR35

Clearance required: Active SC is essential

Role purpose / summary

SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like Sentinel, Elastic, ArcSight, Splunk, or QRadar.

DR deployment, configuration & management - experience with tools like Tanium, Trellix, FireEye, Defender, Elastic EDR

Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats.

Incident Response - Assist analysts to analyze and mitigate security incidents & have a good understanding of SOC function

OOTB & Custom log ingestion Creation - Deploy OOTB integrations as well as develop & deploy custom integrations for various log source types.

Security Reporting - Generate reports on security events, trends, and system performance.

Collaboration - Work with IT and security teams to improve overall cybersecurity posture.

Required Skills & Qualifications

Technical Expertise - Strong knowledge & experience in security engineering with SIEM & EDR platforms, network security, and understanding of cybersecurity frameworks.

Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications.

Programming & Scripting - Familiarity with Python, PowerShell, KQL (Kusto query language), KQL (Kibana Query Language) or other scripting languages.

Analytical Thinking & problem solving - Ability to analyze large datasets and identify threats, mitigations, misconfigurations, etc.

Communication Skills - Ability to document findings and communicate effectively with stakeholders

All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply

Ad ID: 5416979260