Security Engineer (Splunk/Elastic) - MOD DV Cleared Location: Hemel Hempstead Type: 4-5 days on-site IR Status: Inside Rate: £600 - £800 Clearance: Must have active MOD DV Contingency: Must be a sole British National Length: Initial 6 months Role Overview As a Security Engineer, you will be leading the design, documentation and installation of security monitoring tools/platforms to provide data to the Security Operational Centre (SOC) for analysis. Your role will be pivotal in ensuring that they have the correct tooling operating to ensure that they can provide protection and monitoring of their clients. You will collaborate with cross-functional teams to assess risks, design controls, and define testing requirements. Key Responsibilities/Technical Skills: Splunk (Enterprise & ES): Advanced SPL for correlation searches, data models (CIM), notable events, risk-based alerting (RBA), and accelerated data sets. Proficient in TA/TAF configuration, props/transforms, parsing/line-breaking, and source type normalisation. Experience with KV store, summary indexing, search head clustering, indexer clustering, and deployment servers. Elastic (Elastic Stack / Elastic Security): Hands-on with index lifecycle management (ILM), ingest pipelines, ECS mapping, transforms, and enrichment. Experience designing and tuning detection rules (KQL, EQL), response actions, case workflows, and Elastic Security posture features. Skilled in Fleet/Agent deployment, data stream design, and performance tuning at scale. Strong client management and relationship building experience SIEM experience with Splunk/Elastic Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective solutions Proven hands-on experience operating Elastic Stack / Elastic Security and Splunk Enterprise / Enterprise Security in production environments. Broader experience across Automation, IaaC and technical operations and reliability is desireable If you're intersted in learning more, apply or reach out to Reasonable Adjustments: Respect and equality are core values to us. We are proud of the diverse and inclusive community we have built, and we welcome applications from people of all backgrounds and perspectives. Our success is driven by our people, united by the spirit of partnership to deliver the best resourcing solutions for our clients. If you need any help or adjustments during the recruitment process for any reason, please let us know when you apply or talk to the recruiters directly so we can support you.