SIEM Engineer

Summary: The SIEM Engineer role involves deploying and managing SIEM tools, monitoring security logs for threats, and collaborating with security teams to enhance cybersecurity measures. The position requires active SC clearance and is a contract role lasting until December 26, 2025. The role is hybrid, requiring two days on-site in Wokingham, and is classified as inside IR35 due to the use of an umbrella company.

Key Responsibilities:

• SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar.
• Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats.
• Incident Response - Work with security teams to analyze and mitigate security incidents.
• Custom Rule Creation - Develop and fine-tune detection rules and alerts to identify malicious activities.
• Security Reporting - Generate reports on security events, trends, and system performance.
• Collaboration - Work with IT and security teams to improve overall cybersecurity posture.

Key Skills:

• Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks.
• Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications.
• Programming & Scripting - Familiarity with Python, PowerShell, or other scripting languages.
• Analytical Thinking - Ability to analyze large datasets and identify security threats.
• Communication Skills - Ability to document findings and communicate effectively with stakeholders.

Salary (Rate): £450 per day

City: Wokingham

Country: United Kingdom

Working Arrangements: hybrid

IR35 Status: inside IR35

Seniority Level: undetermined

Industry: IT

Detailed Description From Employer:

Role Title: SIEM Engineer

Duration: contract to run until 26/12/2025

Location: Wokingham, Hybrid 2 days onsite

Rate: £460 p/d Via Umbrella inside IR35

Clearance required: Active SC is essential

Role purpose / summary

• SIEM Deployment & Management - Set up, configure, and maintain SIEM tools like ArcSight, Splunk, or QRadar.
• Threat Detection & Analysis - Monitor security logs, detect anomalies, and investigate potential threats.
• Incident Response - Work with security teams to analyze and mitigate security incidents.
• Custom Rule Creation - Develop and fine-tune detection rules and alerts to identify malicious activities.
• Security Reporting - Generate reports on security events, trends, and system performance.
• Collaboration - Work with IT and security teams to improve overall cybersecurity posture.

Required Skills & Qualifications

• Technical Expertise - Strong knowledge of SIEM platforms, network security, and cybersecurity frameworks.
• Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications.
• Programming & Scripting - Familiarity with Python, PowerShell, or other scripting languages.
• Analytical Thinking - Ability to analyze large datasets and identify security threats.
• Communication Skills - Ability to document findings and communicate effectively with stakeholders

All profiles will be reviewed against the required skills and experience. Due to the high number of applications we will only be able to respond to successful applicants in the first instance. We thank you for your interest and the time taken to apply!