Senior Cyber Security Engineer
Posted Today by Morgan Law
£500 Per day
Undetermined
Undetermined
London
Summary: A Council in London is looking for a Contract Senior Cybersecurity Engineer for a 6-month period. The role focuses on the strategic deployment of an outsourced Security Operations Center (SOC) utilizing Splunk and CrowdStrike. The ideal candidate will possess technical expertise in these tools to enhance security operations and incident response. This position is critical for maximizing the effectiveness of the cybersecurity strategy.
Key Responsibilities:
- Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon.
- Work with the SOC partner to architect and optimize Splunk dashboards, alerts, and data models.
- Serve as a technical escalation point for high-priority security incidents.
- Develop SOAR workflows to reduce manual intervention and improve response times.
- Proactively search for undetected malicious activity using specialized queries.
- Build up the Crowdstrike, Splunk, and Security Analysis skills within the existing team.
Key Skills:
- 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role.
- Deep hands-on experience with CrowdStrike Falcon, with relevant certifications being a plus.
- Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security.
- Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework.
- 2+ years using Vulnerability Assessment tools would be a bonus.
- Exposure to Penetration Testing and Web Application Testing.
Salary (Rate): £500 per day
City: London
Country: United Kingdom
Working Arrangements: undetermined
IR35 Status: undetermined
Seniority Level: undetermined
Industry: IT
A Council in London is seeking a Contract Senior Cybersecurity Engineer for 6 months. With the strategic deployment of an outsourced Security Operations Center (SOC) that leverages Splunk and CrowdStrike, the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment.
The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence.
Key Responsibilities
- Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon
- SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats.
- Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment.
- Automation: Develop “SOAR” workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times.
- Threat Hunting: Proactively search for undetected malicious activity using specialized queries.
- Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team.
Required Experience
- Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role.
- CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus.
- Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES).
- Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK
- Vulnerability Assessment: 2+ years using VA tools would be a bonus
- Penetration Testing: Exposure to Penetration Testing and Web Application Testing.
