At a Glance
- Tasks: Engineer and optimise Microsoft Sentinel SIEM for 24x7 Security Operations.
- Company: Join Broadridge, a company that empowers you to achieve more.
- Benefits: Enjoy a hybrid work environment with a focus on collaboration and inclusivity.
- Other info: Collaborative culture that values diverse perspectives and promotes personal growth.
- Why this job: Make a real impact in security while developing your career in a dynamic team.
- Qualifications: 5+ years in SIEM Engineering and strong experience with Microsoft Sentinel.
The predicted salary is between 60000 - 80000 £ per year.
At Broadridge, we've built a culture where the highest goal is to empower others to accomplish more. If you’re passionate about developing your career, while helping others along the way, come join the Broadridge team.
We are seeking a Microsoft Sentinel SIEM Engineer with strong experience designing, operating, and scaling enterprise Microsoft Sentinel SIEM or other SIEM platforms to support 24x7 Security Operations. This role is responsible for platform health, log ingestion pipelines, normalization, enrichment, detection content support, and integrations with security and IT systems. The SOC Engineer will partner closely with SOC Analysts, Threat Intelligence, BISG Information Security teams, and other stakeholders to ensure high-quality security telemetry, reliable detections, and an optimized analyst experience. This role also supports Mergers & Acquisitions (M&A) by onboarding new log sources and environments into the enterprise SIEM.
Key Responsibilities
- Engineer, operate, and optimize Microsoft Sentinel across one or more Log Analytics workspaces
- Ensure Sentinel reliability, scalability, performance, and cost efficiency
- Manage workspace architecture, retention, daily cap, and data tiering strategies
- Monitor Sentinel platform health, ingestion latency, connector failures, and query performance
- Design, build, and maintain scalable, highly available log ingestion pipelines, including parsing, normalization, enrichment, and filtering using technologies like Syslog, Sentinel data connectors, Azure Monitor Agents, etc.
- Onboard and maintain data sources across cloud, on-prem, SaaS, and security tools (EDR, IAM, network, application logs)
- Tune data quality, performance, and cost efficiency across the SIEM environment
- Develop and maintain integrations between the SIEM and security platforms (EDR, SOAR, Threat Intel, ITSM)
- Support M&A security onboarding by integrating acquired environments into the SIEM
- Implement monitoring, alerting, and health checks for SIEM infrastructure and data pipelines
- Troubleshoot ingestion, parsing, correlation, and performance issues impacting SOC visibility
- Automate repetitive SIEM operational tasks using scripting or platform-native capabilities
- Document SIEM architecture, data sources, standards, and operational runbooks
- Collaborate with cloud, infrastructure, and network teams to ensure complete and reliable telemetry coverage
Required Skills & Qualifications
- 5+ years of experience in SIEM Engineering, Security Operations Engineering, or SOC Platform roles
- Strong hands-on experience with at least one enterprise SIEM platform (e.g., Splunk, Azure Sentinel, Elastic, QRadar) - preference to candidates with MS Sentinel experience.
- Deep understanding of log formats, schemas, parsing, normalization, and enrichment techniques
- Experience onboarding diverse log sources: cloud platforms, operating systems, applications, IAM, and security tools
- Strong troubleshooting skills for ingestion latency, parsing errors, dropped events, and performance bottlenecks
- Understanding of detection concepts, correlation logic, and SOC workflows
- Experience integrating SIEM with SOAR, EDR, ITSM, and threat intelligence platforms
- Familiarity with cloud environments (AWS and/or Azure) and cloud-native logging services
- Scripting experience (Python, SPL, KQL, or equivalent) to support automation and analysis
- Solid foundation in networking, authentication, and security fundamentals
Preferred Qualifications
- Background in SIEM deployments or management
- Experience optimizing SIEM performance, scalability, and cost management
- Experience supporting SIEM use cases during M&A integrations
- Hands-on experience with SOAR and automated response workflows
- Familiarity with Infrastructure as Code or configuration management for SIEM infrastructure
- Experience working in regulated or financial services environments
Soft Skills
- Strong problem-solving and troubleshooting skills
- Ability to work across Security, IT, and Engineering teams
- Strong documentation and communication skills
- Automation-first and reliability-focused mindset
This role is considered hybrid, which means you’ll be assigned to a Broadridge office.
Security Engineer in London employer: Broadridge
At Broadridge, we pride ourselves on fostering a dynamic and inclusive work culture that empowers our employees to thrive. As a Security Engineer, you will benefit from our commitment to professional growth, collaborative teamwork, and innovative problem-solving in a hybrid work environment. Join us in a role where your contributions directly enhance security operations while enjoying the support of a community that values authenticity and diverse perspectives.
StudySmarter Expert Advice🤫
We think this is how you could land Security Engineer in London
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those already at Broadridge. A friendly chat can open doors and give you insider info that could make all the difference.
✨Tip Number 2
Prepare for the interview by brushing up on your technical skills. Make sure you can talk confidently about Microsoft Sentinel and your experience with SIEM platforms. We want to see your passion shine through!
✨Tip Number 3
Showcase your problem-solving skills during interviews. Share specific examples of how you've tackled challenges in past roles, especially around log ingestion or performance issues. We love a good story!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re serious about joining the Broadridge team.
We think you need these skills to ace Security Engineer in London
Some tips for your application 🫡
Tailor Your Application:Make sure to customise your CV and cover letter to highlight your experience with Microsoft Sentinel or other SIEM platforms. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant achievements!
Show Off Your Technical Skills:Since this role is all about engineering and optimising SIEM platforms, be sure to include specific examples of your hands-on experience. Mention any scripting languages you’ve used, like Python or KQL, and how you've tackled challenges in previous roles.
Be Honest and Transparent:We value honesty in our hiring process, so make sure your application reflects your true experience and skills. If there’s something you’re not familiar with, it’s better to be upfront about it rather than trying to embellish your qualifications.
Apply Through Our Website:We encourage you to submit your application through our website for the best chance of being noticed. It’s a straightforward process, and we can’t wait to see what you bring to the table!
How to prepare for a job interview at Broadridge
✨Know Your SIEM Inside Out
Make sure you have a solid understanding of Microsoft Sentinel and its features. Be prepared to discuss your hands-on experience with log ingestion, parsing, and normalization techniques. Brush up on how you've optimised performance and cost efficiency in previous roles.
✨Showcase Your Troubleshooting Skills
Be ready to share specific examples of how you've tackled ingestion latency or parsing errors in the past. Highlight your problem-solving approach and any tools or scripts you've used to automate repetitive tasks. This will demonstrate your practical skills and analytical mindset.
✨Collaborate Like a Pro
Since this role involves working closely with various teams, prepare to discuss your experience collaborating with SOC Analysts, Threat Intelligence, and IT teams. Share examples of how you've ensured high-quality security telemetry and reliable detections through teamwork.
✨Stay Updated on Security Trends
Familiarise yourself with the latest trends in security operations and SIEM technologies. Being knowledgeable about current threats and best practices will show your passion for the field and your commitment to continuous learning, which is key for a role like this.
