Managing Security Engineer - DV cleared
Posted Today by CBSbutler Holdings Limited trading as CBSbutler
£700 Per day
Inside
Onsite
Hemel Hempstead, Hertfordshire
Summary: The Managing Security Engineer (DV Cleared) role in Hemel Hempstead involves leading the design, implementation, and optimization of security monitoring platforms for a central SOC. This hands-on leadership position focuses on building scalable SIEM solutions and enhancing client security posture. The role requires a strong background in security engineering and client engagement, with a focus on automation and performance. The position is inside IR35 and requires on-site presence five days a week.
Key Responsibilities:
- Lead design and deployment of security monitoring tools (Elastic & Splunk)
- Build and optimise large-scale log ingestion pipelines and data models (ECS/CIM)
- Develop and tune detection rules using KQL, EQL, and SPL
- Drive detection engineering lifecycle aligned to MITRE ATT&CK
- Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms
- Ensure platform performance, scalability, and resilience (HA/DR, clustering)
- Collaborate with stakeholders to assess risk and deliver security improvements
Key Skills:
- Proven leadership in Security Engineering and client-facing environments
- Strong hands-on expertise with Elastic Stack and Splunk (Enterprise/ES)
- Advanced knowledge of SIEM operations, detection engineering, and RBA
- Experience with large-scale data ingestion, enrichment, and pipeline design
- Familiarity with automation tools, SOAR, Terraform/Ansible, and CI/CD
- Excellent communication, stakeholder management, and problem-solving skills
Salary (Rate): £700/day
City: Hemel Hempstead
Country: United Kingdom
Working Arrangements: on-site
IR35 Status: inside IR35
Seniority Level: Senior
Industry: IT
Managing Security Engineer (DV Cleared)
Hemel Hempstead - 5 days onsite
£500-£700 per day Inside IR35
We're seeking a DV-cleared Managing Security Engineer to lead the design, implementation, and optimisation of security monitoring platforms feeding into a central SOC. This is a hands-on leadership role focused on building scalable SIEM solutions and strengthening client security posture.
Key Responsibilities
- Lead design and deployment of security monitoring tools (Elastic & Splunk)
- Build and optimise large-scale log ingestion pipelines and data models (ECS/CIM)
- Develop and tune detection rules using KQL, EQL, and SPL
- Drive detection engineering lifecycle aligned to MITRE ATT&CK
- Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms
- Ensure platform performance, scalability, and resilience (HA/DR, clustering)
- Collaborate with stakeholders to assess risk and deliver security improvements
Essential Skills & Experience
- Proven leadership in Security Engineering and client-facing environments
- Strong hands-on expertise with Elastic Stack and Splunk (Enterprise/ES)
- Advanced knowledge of SIEM operations, detection engineering, and RBA
- Experience with large-scale data ingestion, enrichment, and pipeline design
- Familiarity with automation tools, SOAR, Terraform/Ansible, and CI/CD
- Excellent communication, stakeholder management, and problem-solving skills
This is a great opportunity to play a key role in delivering high-impact cybersecurity solutions while remaining technically hands-on.
If this role is of interest, apply now!