At a Glance
- Tasks: Lead the integration of log sources and develop custom parsers for security telemetry.
- Company: Join a forward-thinking tech firm with a focus on cybersecurity.
- Benefits: Competitive day rate, hybrid work model, and opportunities for professional growth.
- Other info: Dynamic role with a focus on innovation and automation.
- Why this job: Make a real impact in cybersecurity by enhancing threat detection and response.
- Qualifications: Must be SC Cleared with experience in SIEM and KQL queries.
The predicted salary is between 50000 - 70000 £ per year.
Harvey Nash's Client have a requirement for a SIEM Engineer, you must be SC Cleared to commence this post. You will support the team in:
- Lead onboarding and integration of log sources into Microsoft Sentinel to ensure complete and reliable security telemetry
- Develop custom parsers and data transformations to normalise and enrich ingested data
- Design and optimise KQL queries to support effective threat detection and investigation
- Create and maintain analytic rules and detection logic aligned to emerging threats and business use cases
- Develop Logic Apps and SOAR workflows to automate response and reduce manual effort
- Implement CI/CD pipelines (Azure DevOps/Git) to support controlled deployment of SIEM content (rules, parsers, playbooks)
- Automate deployment and configuration across environments to improve consistency and speed of delivery
- Perform ongoing tuning and optimisation of detections to improve fidelity and reduce false positives
SIEM Engineer employer: Harvey Nash
As a leading employer in the cybersecurity sector, our company offers a dynamic work environment that fosters innovation and collaboration. With a strong focus on employee development, we provide ample opportunities for growth through training and mentorship, all while enjoying the flexibility of a hybrid working model in the vibrant locations of Havant and Reading. Join us to be part of a team that values your contributions and is committed to making a meaningful impact in the field of security.
We think you need these skills to ace SIEM Engineer
SC Clearance
Microsoft Sentinel
Log Source Integration
Custom Parsers Development
Data Transformation
KQL Query Design
Threat Detection