Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the design and deployment of cutting-edge SIEM platforms while mentoring your team.
- Company: Join a leading security consultancy in the heart of London, shaping the future of cybersecurity.
- Benefits: Enjoy flexible working options, competitive salary, and opportunities for professional growth.
- Why this job: Make a real impact by enhancing security measures and collaborating with top industry experts.
- Qualifications: Expertise in SIEM platforms and strong scripting skills are essential; cloud security experience is a plus.
- Other info: This role offers a chance to work on innovative projects in a dynamic environment.
The predicted salary is between 72000 - 108000 £ per year.
Role
- Lead the design, deployment and tuning of enterprise-grade SIEM platforms (e.g. Splunk, Azure Sentinel etc.)
- Collaborate with stakeholders to define logging requirements, use cases, detection rules and dashboards
- Oversee integration of data sources from cloud, on-prem, endpoint, network and application layers
- Create and maintain detection rules, correlation logic and alerts tailored to specific threat scenarios
- Provide technical leadership and mentorship to team members
- Work closely with SOC teams to align SIEM capabilities with business objectives
- Conduct SIEM health checks, performance tuning and capacity planning
Skills
- Expertise in SIEM design, deployment and optimisation
- Hands-on expertise with one or more major SIEM platforms (e.g. Splunk, Sentinel etc.)
- Deep understanding of log ingestion, parsing, normalisation and enrichment
- Strong grasp of MITRE ATT&CK framework, threat detection and alert logic
- Solid scripting/automation skills (e.g., Python, PowerShell, Bash)
- Experience with cloud logging and monitoring (AWS CloudTrail, Azure Monitor, GCP etc.)
- Experience with threat modelling, cloud security or Identity and Access Management is desirable
Principal Security Consultant - SIEM (City of London) employer: RiverSafe
Contact Detail:
RiverSafe Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Principal Security Consultant - SIEM (City of London)
✨Tip Number 1
Make sure to showcase your hands-on experience with major SIEM platforms like Splunk or Azure Sentinel. Highlight specific projects where you've designed, deployed, or optimised these systems, as this will demonstrate your practical knowledge and expertise.
✨Tip Number 2
Familiarise yourself with the MITRE ATT&CK framework and be prepared to discuss how you've applied it in real-world scenarios. This will show that you not only understand the theory but can also implement effective threat detection strategies.
✨Tip Number 3
Network with professionals in the cybersecurity field, especially those who work with SIEM technologies. Attend relevant meetups or webinars to gain insights and potentially get referrals, which can significantly boost your chances of landing the job.
✨Tip Number 4
Prepare to discuss your scripting and automation skills during the interview. Be ready to provide examples of how you've used Python, PowerShell, or Bash to enhance SIEM functionalities or streamline processes, as this is a key requirement for the role.
We think you need these skills to ace Principal Security Consultant - SIEM (City of London)
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your expertise in SIEM design and deployment. Include specific examples of platforms you've worked with, such as Splunk or Azure Sentinel, and detail your experience with log ingestion and threat detection.
Craft a Compelling Cover Letter: In your cover letter, emphasise your technical leadership skills and your ability to collaborate with stakeholders. Mention any relevant projects where you defined logging requirements or created detection rules, showcasing your problem-solving abilities.
Showcase Relevant Skills: Clearly list your scripting and automation skills, such as Python or PowerShell, in both your CV and cover letter. Highlight any experience with cloud logging and monitoring tools, as well as your understanding of the MITRE ATT&CK framework.
Proofread and Edit: Before submitting your application, thoroughly proofread your documents for any spelling or grammatical errors. Ensure that your language is clear and professional, reflecting your attention to detail, which is crucial for a Principal Security Consultant role.
How to prepare for a job interview at RiverSafe
✨Showcase Your SIEM Expertise
Be prepared to discuss your hands-on experience with major SIEM platforms like Splunk or Azure Sentinel. Highlight specific projects where you designed, deployed, or optimised these systems, and be ready to explain the challenges you faced and how you overcame them.
✨Understand the MITRE ATT&CK Framework
Familiarise yourself with the MITRE ATT&CK framework as it’s crucial for threat detection and alert logic. Be ready to discuss how you've applied this knowledge in previous roles to create effective detection rules and correlation logic.
✨Demonstrate Technical Leadership
Since the role involves providing technical leadership and mentorship, prepare examples of how you've guided team members in the past. Discuss your approach to collaboration and how you align technical capabilities with business objectives.
✨Prepare for Scenario-Based Questions
Expect scenario-based questions that assess your problem-solving skills in real-world situations. Think about how you would handle specific threat scenarios, perform health checks, or conduct performance tuning on a SIEM platform.
