Summary: The role of Cyber Security Consultant focuses on leveraging expertise in Google SecOps and Microsoft Sentinel to enhance security operations. The consultant will design and configure deployments, develop detection content, and automate processes within the Security Operations Center (SOC). Collaboration with various teams and maintaining documentation are also key aspects of the position. This is a contract role with potential for extension, classified as inside IR35.

Key Responsibilities:

• Design and configure Google SecOps and Microsoft Sentinel deployments, including the integration and parsing of telemetry and enrichment sources
• Develop and tune detection content, applying outputs from threat modelling and intelligence assessments
• Assess security events generated by detection technologies and determine response approaches and opportunities for automation
• Develop and maintain SOAR playbooks to automate enrichment, response, and operational access in the SOC
• Support evaluation and integration of AI in SOC workflows
• Collaborate with diverse infrastructure, cloud, network, and security teams to help shape, scope, and implement changes in production environments
• Update and maintain design documentation and security process documents pertinent to the SOC
• Support assessing and resolving issues with design and operation of SOC technologies, researching and analysing technology provider documentation
• Experience with SIEM deployment, configuration, and engineering, with focus on Google and Microsoft technologies
• Expertise in developing and tuning detection rules and alerts
• Strong knowledge of SOAR platforms and automation tools, and exposure to supporting AI/ML capabilities
• Familiarity with threat intelligence platforms and threat hunting
• Proficiency in Scripting languages such as Python or PowerShell
• Experience with endpoint protection and network security solutions

Key Skills:

• Experience with Google SecOps and Microsoft Sentinel
• Design and configuration of security deployments
• Development and tuning of detection content
• Automation of SOC processes using SOAR playbooks
• Collaboration with infrastructure, cloud, network, and security teams
• Documentation and process maintenance
• SIEM deployment and engineering expertise
• Knowledge of SOAR platforms and automation tools
• Familiarity with threat intelligence and threat hunting
• Proficiency in Python or PowerShell scripting
• Experience with endpoint protection and network security solutions

Salary (Rate): £750

City: London

Country: UK

Working Arrangements: remote

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT