Job title:
Senior SIEM engineer / Technical SME
Will the role be 100% remote, hybrid or 100% office?
Remote with rare visit to office
If the role is hybrid/ office based specify location:
Guildford
WON / SWON:
New T&M position
Duration of assignment:
6 months
Start date:
15 Apr 2026
Number of persons required:
1
Special working conditions: (travel, weekend, overtime, on call etc.)
NA
Role description: (Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.)
Technical SME in Cybersecurity space
Key responsibilities: (Up to 10, Avoid repetition)
KQL: Expert Level
*
o Able to develop and maintain high-fidelity detection rules using Kusto Query Language
o Able to utilize KQL for detection engineering, analytics, and threat-hunting.
Microsoft Sentinel:
*
o Act as the technical SME
o Hands-on experience including analytics rules, connectors, and workbooks.
o Ensure platform reliability and data quality.
o Coordinate the end-to-end onboarding of log sources into Sentinel.
Key skills/knowledge/experience: (Up to 10, Avoid repetition)
* Expert in KQL
* Technical SME for Sentinel set up
* Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity).
* Experience onboarding data using AMA, DCRs, syslog/CEF, and Event Hub integrations.
* Comfortable using AI assisted tooling (e.g., Copilot for Security) to enhance productivity.
Person specification :I.e., negotiating, client facing, communication, assertive, team leading/team member skills, supportive.
* Client facing Technical SME
JBRP1_UKTJ