Security Information & Event Monitoring (SIEM) Engineer

Security Information & Event Monitoring (SIEM) Engineer

Posted Today by ST Global Tech LLC

Apply
Negotiable
Undetermined
Hybrid
Havant, England, United Kingdom
Apply
Automation Cloud Computing Cloud Technology Data Analysis Event Monitoring Information Technology Management Operational Technology (OT) Security Python (Programming Language) Scalability Scripting Security Information And Event Management (SIEM) Stakeholder Management Threat Detection Windows PowerShell

Summary: The Security Information & Event Monitoring (SIEM) Engineer is responsible for maintaining the SIEM platform, including onboarding log sources, creating custom parsers, and developing analytic rules. The role requires collaboration with the Threat Detection & Response team and involves guiding the SIEM Engineering team. The position is hybrid, requiring at least two days in the office, and is open only to active SC holders.

Key Responsibilities:

  • Develop the security monitoring platform, ensuring optimal performance, scalability, and integration with security tools.
  • Participate in infrastructure projects to develop, plan, and implement solutions for security monitoring.
  • Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations.
  • Guide, develop, and grow the SIEM Engineering team.
  • Collaborate with the wider Threat Detection & Response team to ensure the SIEM platform meets their day-to-day needs and support incidents as necessary.

Key Skills:

  • Proven hands-on SIEM Engineering background.
  • Extensive experience working with security logs across multiple domains – identity and access, network, system, data, application, cloud – and multiple product types.
  • Proficiency in data analysis and scripting languages (e.g., PowerShell, Python).
  • Strong Security Orchestration, Automation and Response (SOAR) knowledge.
  • Team leadership experience with great collaboration and stakeholder management skills.

Salary (Rate): undetermined

City: Havant

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: undetermined

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Sentinel SEIM Engineer

Location: Reading / Havant, UK

Hybrid (at least 2 days in office)

Contract

Active SC holders only

As a Security Information & Event Monitoring (SIEM) Engineer , you are responsible for maintaining the SIEM platform. This includes onboarding log sources, creating custom parsers, developing analytic rules, creating automation for triage and remediation, and integrating with other Information Technology and Operational Technology SSE platforms at pace.

You will:

  • Develop the security monitoring platform, ensuring optimal performance, scalability, and integration with security tools.
  • Participate in infrastructure projects to develop, plan, and implement solutions for security monitoring.
  • Design, implement, and maintain detection rulesets. Scope, plan, and track log integrations.
  • Guide, develop, and grow the SIEM Engineering team.
  • Collaborate with the wider Threat Detection & Response team to ensure the SIEM platform meets their day-to-day needs and support incidents as necessary.

You have

  • Proven hands-on SIEM Engineering background.
  • Extensive experience working with security logs across multiple domains – identity and access, network, system, data, application, cloud – and multiple product types.
  • Proficiency in data analysis and scripting languages (e.g., PowerShell, Python).
  • Strong Security Orchestration, Automation and Response (SOAR) knowledge.
  • Team leadership experience with great collaboration and stakeholder management skills
Apply
Similar Jobs
Loading data...