Rubicon Consulting is currently recruiting for an SIEM Application Engineer on a 6 month rolling contract based in West Midlands. Role Summary · SIEM Solution Development o Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. o Optimize SIEM rules, alerts, and dashboards for efficient threat detection. · Collaboration: o Collaborate effectively with others to drive forward key security objectives o Presentation and documentation writing (to both technical and business audiences) · Query Optimization and Performance Tuning: o Write efficient Elasticsearch queries to retrieve relevant security events. o Monitor and manage the performance of the SIEM infrastructure. · Security Engineering: o Contribute to security engineering projects, transitions, and transformations. o Work closely with security operations and associated security incident response systems o Stay informed about emerging threats and security best practices. Requirements: Essential: · Security and Compliance with Elastic Security o Set up access controls, authentication, and encryption using Elastic Security features. o Ensure compliance with data protection regulations. · Detection Rule Development: o Ability to create, test, and optimise detection rules to identify suspicious activities and potential threats based on the MITRE A...