Whitebridge is looking for a SIEM Engineer specialising in MS Sentinel, who has current SC Clearance to join our utilities client.

Role Overview:

• Lead onboarding and integration of log sources into Microsoft Sentinel to ensure complete and reliable security telemetry
• Develop custom parsers and data transformations to normalise and enrich ingested data
• Design and optimise KQL queries to support effective threat detection and investigation
• Create and maintain analytic rules and detection logic aligned to emerging threats and business use cases
• Develop Logic Apps and SOAR workflows to automate response and reduce manual effort
• Implement CI/CD pipelines (Azure DevOps/Git) to support controlled deployment of SIEM content (rules, parsers, playbooks)
• Automate deployment and configuration across environments to improve consistency and speed of delivery
• Perform ongoing tuning and optimisation of detections to improve fidelity and reduce false positives

The successful applicant should be able to commit to starting ASAP. The role will be hybrid between home and office visits and will be umbrella based working. Direct applicants only please.