What you’ll be doing
Data Source Integration:
1. Identify and onboard new data sources (e.g., logs, events, alerts) into the SIEM platform.
2. Develop and configure Connectors to ingest data from various sources.
3. Monitor and manage the performance of the SIEM infrastructure to ensure efficient data processing.
Security Documentation and Optimization:
4. Maintain engineering and security documentation related to SIEM configurations and processes.
5. Assist customers in optimizing the SIEM system’s capabilities, including audit and logging features.
SIEM Solution Development:
6. Collaborate with security analysts and architects to design and implement SIEM solutions.
7. Optimize SIEM rules, alerts, and dashboards for efficient threat detection.
Security Engineering:
8. Contribute to security engineering projects, transitions, and transformations.
9. Work closely with security operations and associated security incident response systems.
10. Stay informed about emerging threats and security best practices.
•Keep abreast of relevant technologies in the area. This may entail the following: reading, attending briefings and talks.
•Contribute to the running of your team. This entails participating (1) in knowledge-sharing, (2) in team discussions, (3) in defining and improving working procedures and (4) in organisation of team events.
•Help colleagues in the team to grow by mentoring when required.
•Keep abreast of relevant news and updates at BT. This may entail the following: attending briefings and talks.
•Agree personal goals with the Team Lead for the year and work towards achieving these.
You'll have the following skills & experience
•Familiarity with web proxies and network security tools.
•Knowledge of regular expressions and data normalization techniques.
•Understanding of intrusion detection methods.
•Ability to work with secured networks for SIEM integration.
•Proficiency in Linux and Windows operating systems.
Nice To have
•ETL Processes with Logstash:
11. Design, develop, and maintain data pipelines using Logstash, part of the Elastic Stack.
12. Automate data ingestion, transformation, and loading tasks.
Beats for Data Collection:
13. Configure and manage Beats (Filebeat, Metricbeat, etc.) for collecting data from various sources (logs, metrics, etc.).
14. Ensure seamless data flow from endpoints to the Elastic Stack.
•Data Cleaning and Enrichment with Elasticsearch:
•Security and Compliance with Elastic Security:
•Performance Tuning with Elasticsearch and Logstash:
15. Fine-tune query performance using Elasticsearch indices and mappings.
16. Monitor Logstash pipelines and optimize resource utilization.
•Kibana Visualization and Monitoring
•Kafka integration
Benefits
At BT, we entertain, educate, and empower millions of people every single day. We’re a brand built on connecting people – whether that’s friends, family, businesses, or communities. Working here, you’ll receive an attractive salary and a range of competitive benefits, but – more than that – you’ll be joining an ambitious organisation with a culture of togetherness, collaboration, and inclusivity, that takes a genuine and proactive interest in your progress and development.
17. Competitive salary
18. 10% on target bonus
19. BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%
20. 25 days annual leave (not including bank holidays), increasing with service
21. Huge range of flexible benefits including cycle to work, healthcare, season ticket loan
22. World-class training and development opportunities
23. Option to join BT Shares Saving schemes.
24. Discounted broadband, mobile and TV packages
25. Access to 100’s of retail discounts including the BT shop