SIEM Application Engineer - ElasticSearch
Posted 4 days ago by Adecco
£550 Per day
Inside
Hybrid
Birmingham, UK
Summary: The SIEM Engineer - ElasticSearch role involves joining a cybersecurity team on a contract basis to enhance threat detection capabilities. The position requires a combination of technical expertise in SIEM technologies and collaboration skills to develop and optimize SIEM solutions. The ideal candidate will have a strong background in security engineering and a passion for improving cybersecurity measures. This role offers a hybrid working model, allowing for both in-office and remote work.
Key Responsibilities:
- Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch.
- Optimize SIEM rules, alerts, and dashboards for efficient threat detection.
- Work closely with team members to drive key security objectives and present findings.
- Write efficient Elasticsearch queries and manage SIEM infrastructure performance.
- Contribute to security engineering projects and stay updated on emerging threats.
Key Skills:
- Strong experience in SIEM technologies, preferably Elastic Stack (ELK).
- Knowledge of security compliance, access controls, authentication, and encryption.
- Ability to create, test, and optimize detection rules based on the MITRE ATT&CK Framework.
- Experience in performance tuning with Elasticsearch and Logstash.
- Proficiency in using Kibana for data visualization and monitoring.
- Familiarity with offensive testing frameworks, cloud services, OpenStack, and Kubernetes.
- Cybersecurity qualifications and knowledge of Git and DevOps practices.
- Experience with Terraform/Ansible systems and understanding of security policy frameworks.
- At least 3-5 years of experience in cybersecurity engineering.
Salary (Rate): £550 daily
City: Birmingham
Country: UK
Working Arrangements: hybrid
IR35 Status: inside IR35
Seniority Level: Mid-Level
Industry: IT
SIEM Engineer - ElasticSearch
Contract Type
Contract Length: 3 months initially
Daily Rate: Up to £550 (inside IR35 via umbrella)
Location: Hybrid working model - 3 days in Birmingham and 2 days remote
About the Role:
Our client is seeking a skilled SIEM Engineer to join their cybersecurity team on a contract basis. This role is crucial for enhancing threat detection capabilities and requires a blend of technical expertise and collaboration skills. If you have a passion for security engineering and are ready to make an impact, we want to hear from you!
What You'll Be Doing:
SIEM Solution Development:
Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. optimise SIEM rules, alerts, and dashboards to ensure efficient threat detection.
Collaboration:
Work closely with team members to drive key security objectives forward. You'll also be responsible for presenting findings and writing documentation tailored to both technical and business audiences.
Query optimisation and Performance Tuning:
Write efficient Elasticsearch queries to retrieve relevant security events. Monitor and manage the performance of the SIEM infrastructure to maintain optimal functionality.
Security Engineering:
Contribute to various security engineering projects and work closely with security operations and incident response systems. Stay updated on emerging threats and best practises in the cybersecurity landscape.
Skills You'll Need to Succeed:
Essential:
- Strong experience in SIEM technologies, preferably Elastic Stack (ELK).
- Knowledge of security compliance, including access controls, authentication, and encryption using Elastic Security features.
- Ability to create, test, and optimise detection rules based on the MITRE ATT&CK Framework.
- Experience in performance tuning with Elasticsearch and Logstash, including monitoring Logstash pipelines.
- Proficiency in using Kibana for data visualisation and monitoring.
Advantageous:
- Familiarity with offensive testing frameworks and cloud services (public/private), OpenStack, and Kubernetes (K8S).
- Cybersecurity qualifications and knowledge of Git and DevOps practises.
- Experience with Terraform/Ansible systems and a solid understanding of security policy/regulatory frameworks.
- At least 3-5 years of experience in cybersecurity engineering and delivery.
Leadership Accountabilities:
Owning outcomes and delivering for the customer.
Building for the future through innovative security solutions.
Qualifications:
Bachelor's or Master's degree in Computer Science, Information Systems, Engineering, or a related field.
5+ years of engineering experience in delivering cybersecurity solutions, with a focus on key cyber technologies.
Why Join Us?
Work in a dynamic and collaborative environment.
Enjoy the flexibility of hybrid working.
Competitive daily rate.
Opportunity to enhance your skills and make a tangible impact on security initiatives.
If you are a proactive SIEM Engineer with a commitment to excellence in cybersecurity, we encourage you to apply. Join our client in their mission to strengthen their security posture and protect vital information assets!
Application Process:
Please submit your CV and a brief cover letter outlining your relevant experience and why you're a great fit for this role. We look forward to hearing from you!
Adecco is a disability-confident employer. It is important to us that we run an inclusive and accessible recruitment process to support candidates of all backgrounds and all abilities to apply. Adecco is committed to building a supportive environment for you to explore the next steps in your career. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you.