At a Glance
- Tasks: Lead the design and optimisation of large-scale security monitoring platforms.
- Company: Respected tech and security services provider in Watford.
- Benefits: Car allowance, private healthcare, life assurance, and flexible benefits.
- Other info: Dynamic role with structured professional development opportunities.
- Why this job: Join a growing team and enhance critical security systems.
- Qualifications: Experience with Splunk, detection engineering, and SIEM operations.
The predicted salary is between 80000 - 85000 € per year.
SIEM Engineer – Watford, UK
Up to £85,000 salary depending on experience
Full time onsite role in Watford
DV clearance required
ABOUT THE CLIENT
Our client is a highly respected technology and security services provider supporting organisations operating in complex and security critical environments. Their teams design and deliver advanced digital and cyber capabilities that strengthen the resilience of mission critical systems.
Due to continued growth within their security engineering capability, they are looking for an experienced Managing Security Engineer to join their team and play a key role in developing and enhancing their security monitoring platforms.
THE BENEFITS
- Car allowance
- Private healthcare
- Life assurance
- Flexible benefits fund
- Structured professional development and training opportunities
THE MANAGING SECURITY ENGINEER ROLE
As a Managing Security Engineer, you will lead the design, deployment and optimisation of large-scale security monitoring platforms. You will work closely with cross functional engineering and security teams to ensure the right controls, tooling and processes are in place to protect critical systems and data.
You will take ownership of detection engineering, SIEM platform performance and the full lifecycle of security detection content, ensuring security monitoring remains effective, scalable and reliable.
Key responsibilities include:
- Acting SME on Splunk Enterprise Security platforms
- Designing and maintaining log ingestion pipelines and data enrichment processes
- Developing and tuning detection rules aligned to MITRE ATT&CK techniques
- Managing the full lifecycle of detection content from design through to optimisation
- Automating security workflows using scripting, CI/CD and infrastructure as code tools
- Ensuring SIEM platform performance, resilience and scalability
MANAGING SECURITY ENGINEER ESSENTIAL SKILLS
- Hands on experience with Splunk Enterprise Security
- Strong background in detection engineering and SIEM operations
- Experience designing and managing large scale data ingestion pipelines
- Advanced knowledge of SPL, KQL or EQL for detection engineering
- Experience with automation, scripting or Infrastructure as Code in SIEM environments
- Understanding of MITRE ATT&CK and threat detection techniques
- Experience with high availability, disaster recovery and SIEM performance optimisation
TO BE CONSIDERED
Please either apply through this advert or email me directly at robin.muirhead@searchability.com. For further information please call 07719 065949.
By applying for this role, you give express consent for us to process and submit (subject to required skills) your application to our client in conjunction with this vacancy only.
KEY SKILLS
- Elastic Security
- Splunk Enterprise Security
- SIEM
- Detection Engineering
- Elastic Stack
- SPL
- KQL
- EQL
- MITRE ATT&CK
- Security Monitoring
- Log Ingestion
- Terraform
- Ansible
- SOC Engineering
- NSD
Server Engineer (Windows/Linux) in Watford employer: Searchability NS&D
Our client is an exceptional employer, offering a dynamic work culture in Watford that prioritises employee growth and development. With competitive benefits such as a car allowance, private healthcare, and structured professional training, they foster an environment where innovation thrives and team members are empowered to enhance their skills while contributing to critical security solutions.
StudySmarter Expert Advice🤫
We think this is how you could land Server Engineer (Windows/Linux) in Watford
✨Tip Number 1
Network like a pro! Attend industry meetups, conferences, or even local tech events. Chatting with folks in the field can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects, especially those related to SIEM and detection engineering. This gives potential employers a taste of what you can do.
✨Tip Number 3
Prepare for interviews by practising common technical questions and scenarios related to Splunk and security monitoring. We recommend doing mock interviews with friends or using online platforms to get comfortable.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always on the lookout for talented individuals like you!
We think you need these skills to ace Server Engineer (Windows/Linux) in Watford
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Managing Security Engineer role. Highlight your experience with Splunk Enterprise Security and detection engineering, as these are key for us. Use specific examples that showcase your skills in SIEM operations and automation.
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Tell us why you're passionate about security engineering and how your background aligns with our needs. Mention any relevant projects or achievements that demonstrate your expertise in managing large-scale security monitoring platforms.
Showcase Your Technical Skills:Don’t hold back on showcasing your technical skills! Be sure to mention your hands-on experience with SPL, KQL, or EQL, and any automation tools you've used. We want to see how you can contribute to optimising our SIEM platform performance.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss out on any important updates. Plus, it’s super easy!
How to prepare for a job interview at Searchability NS&D
✨Know Your SIEM Inside Out
Make sure you’re well-versed in Splunk Enterprise Security and other relevant tools. Brush up on your knowledge of detection engineering, log ingestion pipelines, and the MITRE ATT&CK framework. Being able to discuss these topics confidently will show that you’re not just familiar with the tools, but you understand how to leverage them effectively.
✨Showcase Your Automation Skills
Since automation is key in this role, be prepared to discuss your experience with scripting and Infrastructure as Code. Bring examples of how you've automated security workflows in the past. This will demonstrate your ability to enhance efficiency and scalability within security monitoring platforms.
✨Prepare for Technical Questions
Expect technical questions that dive deep into your experience with SIEM operations and performance optimisation. Practice articulating your thought process when designing detection rules or managing data ingestion pipelines. Clear, structured answers will help you stand out as a knowledgeable candidate.
✨Ask Insightful Questions
At the end of the interview, don’t forget to ask questions that show your interest in the company and the role. Inquire about their current challenges with security monitoring or how they envision the future of their SIEM capabilities. This not only shows your enthusiasm but also helps you gauge if the company is the right fit for you.
