Salary: £12,000 - 13,200 per year Requirements: Strong experience in SIEM technologies, preferably Elastic Stack (ELK). Knowledge of security compliance, including access controls, authentication, and encryption using Elastic Security features. Ability to create, test, and optimise detection rules based on the MITRE ATT&CK Framework. Experience in performance tuning with Elasticsearch and Logstash, including monitoring Logstash pipelines. Proficiency in using Kibana for data visualisation and monitoring. Bachelor's or Master's degree in Computer Science, Information Systems, Engineering, or a related field. 5 years of engineering experience in delivering cybersecurity solutions, with a focus on key cyber technologies. Advantageous: Familiarity with offensive testing frameworks and cloud services (public/private), OpenStack, and Kubernetes (K8S). Cybersecurity qualifications and knowledge of Git and DevOps practices. Experience with Terraform/Ansible systems and a solid understanding of security policy/regulatory frameworks. At least 3-5 years of experience in cybersecurity engineering and delivery. Responsibilities: Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. Optimise SIEM rules, alerts, and dashboards to ensure efficient threat detection. Present findings and write documentation tailored to both technical and business audiences. Write efficient Elasticsearch queries to retrieve relevant security events. Monitor and manage the performance of the SIEM infrastructure to maintain optimal functionality. Contribute to various security engineering projects and work closely with security operations and incident response systems. Stay updated on emerging threats and best practices in the cybersecurity landscape. Technologies: Ansible Cloud DevOps ELK ElasticSearch Git Kibana Kubernetes OpenStack Security Terraform Support More: We are looking for a proactive SIEM Engineer to join our cybersecurity team on a contract basis for an initial period of three months. This position is crucial for enhancing our threat detection capabilities and requires a blend of technical expertise and collaboration skills. By joining us, you will work in a dynamic and collaborative environment with the flexibility of a hybrid working model—three days in Birmingham and two days remote. You’ll enjoy a competitive daily rate and have the opportunity to enhance your skills while making a tangible impact on our security initiatives. If you are committed to excellence in cybersecurity, we encourage you to apply and be a part of our mission to strengthen our security posture and protect vital information assets. last updated 5 week of 2026