SIEM Engineer
SIEM Engineer
Whitehall Resources are currently looking for a SIEM Engineer on a Hybrid basis based in Berkshire for an initial 4 month contract.
*INSIDE IR35.*
Key Accountabilities:
- Build and deploy innovative technical solutions to advance the security capability of the Cyber Security Operations function.
- Manage and oversee the configuration of various security tools to enable key stakeholders, such as CSOC and Threat Hunting and Detection Engineering (THaDE)
- Collaborate with application administrators across the business to onboard data sources into the SIEM data lake.
- Optimise forensic telemetry collection mechanisms to ensure accurate and efficient parsing and ingestion to the SIEM.
- Build resilient forensic telemetry collection technologies to support 24/7/365 monitoring of NESO and its control systems by CSO.
- Spearhead process improvement and curate, update and develop an internal cyber engineering knowledgebase (bonus points if You're already skilled in Mermaid or Markdown!)
About you
Key Skills:
- Experience with SIEM and Azure - Essential
- Building secure infrastructure and secure foundations.
- Has strong analytical and problem-solving skills and ability to handle complex and dynamic situations.
- Has a keen awareness of current and emerging cyber threats, trends, and best practices.
- Has proven experience working with SIEM platforms and related tooling.
- Has a strong understanding of SIEM concepts and best practices.
- Is familiar with SIEM telemetry onboarding processes and techniques.
- Is knowledgeable about various data source formats and protocols (eg, syslog, JSON, REST API).
- Has experience in troubleshooting and resolving data quality or ingestion issues.
- Has previously worked closely with security tooling such as EDR, Deception Tech, Malware Sandboxes, Vulnerability Management Tooling, etc.
- Is familiar with security incident response and investigation processes.
- Has excellent problem-solving and analytical skills.
- Has strong communication and collaboration abilities.
- May have relevant certifications (eg GIAC), but this is not required.
All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.
Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.
Reference: 2899856074
SIEM Engineer
Posted on Feb 18, 2025 by Whitehall Resources Ltd
SIEM Engineer
Whitehall Resources are currently looking for a SIEM Engineer on a Hybrid basis based in Berkshire for an initial 4 month contract.
*INSIDE IR35.*
Key Accountabilities:
- Build and deploy innovative technical solutions to advance the security capability of the Cyber Security Operations function.
- Manage and oversee the configuration of various security tools to enable key stakeholders, such as CSOC and Threat Hunting and Detection Engineering (THaDE)
- Collaborate with application administrators across the business to onboard data sources into the SIEM data lake.
- Optimise forensic telemetry collection mechanisms to ensure accurate and efficient parsing and ingestion to the SIEM.
- Build resilient forensic telemetry collection technologies to support 24/7/365 monitoring of NESO and its control systems by CSO.
- Spearhead process improvement and curate, update and develop an internal cyber engineering knowledgebase (bonus points if You're already skilled in Mermaid or Markdown!)
About you
Key Skills:
- Experience with SIEM and Azure - Essential
- Building secure infrastructure and secure foundations.
- Has strong analytical and problem-solving skills and ability to handle complex and dynamic situations.
- Has a keen awareness of current and emerging cyber threats, trends, and best practices.
- Has proven experience working with SIEM platforms and related tooling.
- Has a strong understanding of SIEM concepts and best practices.
- Is familiar with SIEM telemetry onboarding processes and techniques.
- Is knowledgeable about various data source formats and protocols (eg, syslog, JSON, REST API).
- Has experience in troubleshooting and resolving data quality or ingestion issues.
- Has previously worked closely with security tooling such as EDR, Deception Tech, Malware Sandboxes, Vulnerability Management Tooling, etc.
- Is familiar with security incident response and investigation processes.
- Has excellent problem-solving and analytical skills.
- Has strong communication and collaboration abilities.
- May have relevant certifications (eg GIAC), but this is not required.
All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.
Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.
Reference: 2899856074
Alert me to jobs like this:
Amplify your job search:
Expert career advice
Increase interview chances with our downloads and specialist services.
Visit Blog