Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Enhance security posture using Google Chronicle and implement UEBA/SOAR solutions.
- Company: Leading financial services firm focused on security innovation.
- Benefits: Competitive contract rate, hybrid work model, and potential for extension.
- Why this job: Join a cutting-edge project that shapes the future of security in finance.
- Qualifications: Experience with Google SecOps, SIEM tools, and strong SOC background required.
- Other info: Opportunity to work in a dynamic environment with significant career growth.
The predicted salary is between 48000 - 72000 £ per year.
I am currently assisting a client who operates in a regulated industry, financial services, who are currently embarking on a programme of work focused on maturity/designing and implementing security posture utilising SIEM tools such as Google Chronicle & implementing UEBA/SOAR (Security Orchestration, Automation, and Response / User and Entity Behaviour Analytics) built on GCP/Google Cloud so Google SecOps/Security Operations experience is highly desirable.
Key Responsibilities
- Enable and validate UEBA alerting within Chronicle SIEM, based on log sources
- Deliver a minimum viable UEBA capability with tested detection logic
- Provide engineering support to accelerate onboarding of log sources required for UEBA enrichment and detection fidelity
- Demonstrate the ability to work with Google Chronicle and SecOps APIs, specifically for the purpose of updating and managing reference data
- Conduct current state assessment of detection engineering capabilities and log source coverage
- Design and implement detection use cases aligned to MITRE ATT&CK framework
- Enable SOAR integration by identifying high-fidelity detections and mapping
Key Technical / IT Security Skills
- Chronicle SIEM
- Google SecOps
- UEBA Tooling
- Windows Event Logs
- BindPlane
- MITRE ATT&CK
- Strong SOC background
- SOAR playbooks
- GCP
Finer Details
Outside IR35, Contract until End of December, possibly longer, Hybrid, 4 times a month in the London office
Please apply for consideration
#J-18808-Ljbffr
Google Secops Engineer (SOAR/UEBA) - Outside IR35 employer: SF Recruitment
Contact Detail:
SF Recruitment Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Google Secops Engineer (SOAR/UEBA) - Outside IR35
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, especially those who work with Google SecOps or in financial services. Attend meetups or webinars to make connections and get your name out there.
✨Tip Number 2
Show off your skills! Create a portfolio or a GitHub repository showcasing your work with SIEM tools like Google Chronicle. This can really set you apart when you're chatting with potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on the MITRE ATT&CK framework and SOAR playbooks. Be ready to discuss how you've used these in past roles or how you'd approach them in this new position.
✨Tip Number 4
Don't forget to apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Google Secops Engineer (SOAR/UEBA) - Outside IR35
Some tips for your application 🫡
Tailor Your CV: Make sure your CV highlights your experience with Google SecOps and SIEM tools like Google Chronicle. We want to see how your skills align with the key responsibilities mentioned in the job description.
Showcase Relevant Projects: If you've worked on projects involving UEBA or SOAR, don’t hold back! Share specific examples that demonstrate your ability to deliver detection logic and integrate with APIs. This will help us see your hands-on experience.
Be Clear and Concise: When writing your application, keep it straightforward. Use bullet points for your achievements and make sure to address how you can contribute to enhancing security posture. We appreciate clarity!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity in the financial services sector.
How to prepare for a job interview at SF Recruitment
✨Know Your Tools Inside Out
Make sure you’re well-versed in Google Chronicle and the relevant SIEM tools. Brush up on how to enable and validate UEBA alerting, as well as your experience with SOAR and MITRE ATT&CK framework. Being able to discuss specific use cases or challenges you've faced will show your expertise.
✨Demonstrate Your Problem-Solving Skills
Prepare to share examples of how you've tackled detection engineering challenges in the past. Think about times when you had to onboard log sources or design detection use cases. This will highlight your ability to think critically and adapt in a fast-paced environment.
✨Showcase Your Collaboration Experience
Since this role involves working closely with teams, be ready to discuss how you’ve collaborated with others in previous roles. Talk about how you’ve provided engineering support or worked with APIs to enhance security posture. This will demonstrate your teamwork skills and ability to contribute to a collective goal.
✨Ask Insightful Questions
Prepare thoughtful questions about the company’s current security posture and future plans for implementing UEBA and SOAR. This shows your genuine interest in the role and helps you assess if the company aligns with your career goals. Plus, it gives you a chance to engage with the interviewers on a deeper level.