SIEM ENGINEER
Check below to see if you have what is needed for this opportunity, and if so, make an application asap.
6 Months
Hybrid 60% on site in Wokingham
£440
MUST HAVE ACTIVE SC CLEARENCE
Key Responsibilities
SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like Sentinel, Elastic.
EDR deployment, configuration & management - experience with tools like Tanium, Trellix, FireEye, Defender, Elastic EDR
Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats.
Experience configuring Syslog servers and maintaining and configuring syslog feeds
Log ingestion Creation for Sentinel - Deploy OOTB integrations & develop & deploy custom integrations for various log source types.
Collaboration - Work with IT and security teams to improve overall cybersecurity posture.
Required Skills & Qualifications
Technical expertise. Strong knowledge & experience in security engineering with SIEM & EDR platforms, network security, and understanding of cybersecurity frameworks.
Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications, AZ-500, SC-100,etc.
Programming & Scripting - Familiarity with Python, PowerShell,?KQL (Kusto query language), KQL (Kibana Query Language)?or other scripting languages.
Analytical Thinking & problem solving - Ability to analyze large datasets and identify threats, mitigations, misconfigurations, etc.
Communication Skills - Ability to document findings and communicate effectively with stakeholders
TPBN1_UKTJ