At a Glance
- Tasks: Monitor and investigate cyber threats using advanced SIEM tools.
- Company: Join a global tech leader in cyber security.
- Benefits: Competitive salary, excellent training, and career progression opportunities.
- Other info: Dynamic environment with opportunities to grow into senior roles.
- Why this job: Make a real impact in defending against evolving cyber threats.
- Qualifications: Experience with SIEM platforms and strong analytical skills required.
The predicted salary is between 45000 - 60000 £ per year.
Location: Berkshire (Onsite)
Salary: £45,000 - £60,000 + excellent benefits & training
Security Clearance: Ideally SC Cleared or eligible for SC (UK Nationals only)
Company Overview
An exciting opportunity to join a global technology organisation with a well-established cyber security capability supporting mission-critical environments. Cyber security is central to the organisation's strategy, with ongoing investment in tooling, threat intelligence, and specialist talent. The security function operates at a mature level, combining Security Operations, threat detection, incident response, and continuous improvement practices to defend against evolving threats.
Role Overview
As a Security Monitoring & SIEM Analyst, you will play a key role within the Security Operations function, focused on real-time detection, investigation, and response to cyber threats using SIEM and security tooling. This role combines hands-on SIEM analysis, alert triage, investigation, and detection improvement, alongside exposure to incident response and proactive threat detection activities. You will work across multiple data sources to identify suspicious behaviour, analyse events, and support the organisation's cyber defence posture through effective monitoring and rapid response.
Key Responsibilities
- Monitor, analyse, and investigate security alerts across SIEM and security tooling
- Conduct detailed investigations across log, endpoint, identity, and network telemetry
- Develop and optimise detection logic and SIEM queries to improve alert fidelity
- Analyse security events and correlate activity across multiple data sources
- Support incident response activities, including containment, escalation, and remediation
- Perform IOC analysis, enrichment, and validation using threat intelligence sources
- Identify gaps in detection capabilities and contribute to continuous improvement
- Work closely with infrastructure, SOC, and incident response teams to enhance response capability
- Produce clear and structured investigation reports and escalation summaries
Skills & Experience Required
Core SIEM & Detection Skills- Strong knowledge of SIEM platforms (e.g. Microsoft Sentinel, Splunk, Elastic)
- Experience writing and tuning queries using:
- Kusto Query Language (KQL)
- ES|QL / Kibana Query Language
- Splunk SPL
- Understanding of event correlation, alerting, and detection use-case development
- Strong knowledge of:
- Linux and Windows operating systems
- Core networking concepts (TCP/IP, DNS, HTTP/S, firewalls, VPNs)
- Experience analysing logs across:
- Endpoint, identity, network, and cloud environments
- Strong knowledge of:
- EDR/XDR concepts and workflows
- IDS/IPS technologies and signature-based detection
- Experience working with tools such as:
- Microsoft Defender, CrowdStrike, SentinelOne, or similar
- Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry
- Familiarity with MITRE ATT&CK framework
- Evidence of staying up to date with:
- Emerging threats
- Adversary tradecraft
- Defensive techniques
- Experience handling security incidents through:
- Detection and triage
- Investigation and analysis
- Handover to Incident Response teams
- Strong understanding of:
- Incident management processes
- Host-based forensic concepts
- Ability to apply post-incident review (PIR) learnings to improve detection and response
- Experience within a SOC or cyber defence environment
- Exposure to threat hunting or detection engineering
- Experience in high-security or regulated environments
- Microsoft SC-200 (Security Operations Analyst)
- GIAC / SANS certifications (GCIH, GCIA, GCED, etc.)
- CREST (CPIA, CRIA, CCTIA, CCBTP)
- Other recognised cyber security certifications
Why Join?
- Work within a mature Security Operations environment
- Exposure to advanced SIEM tooling and large-scale environments
- Strong investment in training, certifications, and progression
- Opportunity to develop into:
- Senior SIEM Analyst
- Detection Engineer
- Threat Hunter
About Adecco
Adecco is acting as an Employment Agency. We are proud to be an equal opportunities employer. We are on the client's supplier list for this role.
Keywords: SIEM Analyst, Security Monitoring Analyst, SOC Analyst, Cyber Security Analyst, Microsoft Sentinel, Splunk, Elastic SIEM, KQL, SPL, ES|QL, Threat Detection, Incident Response, EDR, IDS/IPS, MITRE ATT&CK, Cyber Defence
Security Monitoring & SIEM Analyst in Reading employer: Adecco
Join a leading global technology organisation in Berkshire, where cyber security is at the forefront of our mission. We offer a dynamic work culture that prioritises employee growth through extensive training and certification opportunities, alongside a commitment to maintaining a mature Security Operations environment. With competitive salaries and a focus on continuous improvement, this role as a Security Monitoring & SIEM Analyst provides a meaningful opportunity to contribute to our cutting-edge cyber defence strategies.
StudySmarter Expert Advice🤫
We think this is how you could land Security Monitoring & SIEM Analyst in Reading
✨Tip Number 1
Network, network, network! Get out there and connect with people in the cyber security field. Attend meetups, webinars, or even local events. You never know who might have a lead on your dream job!
✨Tip Number 2
Show off your skills! Create a portfolio showcasing your SIEM analysis projects or any relevant work you've done. This can really set you apart from other candidates when you're chatting with potential employers.
✨Tip Number 3
Don’t just apply for jobs; reach out directly to hiring managers or team leads. A quick message expressing your interest can make a huge difference and show that you're proactive about landing the role.
✨Tip Number 4
Keep an eye on our website for openings! We often post roles that might not be advertised elsewhere. Plus, applying through us gives you a better chance of getting noticed by the right people.
We think you need these skills to ace Security Monitoring & SIEM Analyst in Reading
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Monitoring & SIEM Analyst role. Highlight your experience with SIEM platforms and any relevant certifications. We want to see how your skills match what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about cyber security and how your background makes you a great fit for our team. Keep it concise but impactful!
Showcase Your Technical Skills:Don’t forget to mention your technical skills, especially around SIEM tools and query languages like KQL or SPL. We love seeing candidates who can demonstrate their hands-on experience in these areas.
Apply Through Our Website:We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you’re serious about joining our team!
How to prepare for a job interview at Adecco
✨Know Your SIEM Tools
Make sure you brush up on your knowledge of SIEM platforms like Microsoft Sentinel, Splunk, and Elastic. Be ready to discuss your experience with writing and tuning queries using KQL or SPL, as this will likely come up during the interview.
✨Understand the Threat Landscape
Familiarise yourself with the latest cyber threats and adversary tactics, techniques, and procedures (TTPs). Being able to discuss recent incidents or trends in cyber security will show that you're proactive and engaged in the field.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions where you'll need to demonstrate your incident handling skills. Think about past experiences where you detected, triaged, or responded to security incidents, and be ready to explain your thought process and actions.
✨Showcase Your Continuous Improvement Mindset
Highlight any experiences where you've contributed to improving detection capabilities or optimising alert fidelity. Companies love candidates who are not just reactive but also proactive in enhancing security measures.
