Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Build and optimise threat detection systems using Elastic SIEM for Defence projects.
- Company: Defence consultancy with a focus on innovative technology solutions.
- Benefits: Competitive daily rate, opportunity to work on impactful projects, and professional growth.
- Why this job: Join a mission-driven team and enhance security capabilities in a dynamic environment.
- Qualifications: Expertise in Elasticsearch, Kibana, and SIEM operations required.
- Other info: Onsite role requiring DV Level security clearance.
Contract position at a Defence consultancy, outside IR35 for a specialist Security Engineer. This is working amongst a team of other technology professionals on an MOD / Defence project, from Farnborough. PLEASE NOTE - The nature of this project will require the work to be carried out onsite and successful candidates will be required to be security cleared (DV Level) prior to appointment.
Experienced Elastic SIEM Subject Matter Expert required to support NESTOR operations by building, tuning, and operating threat detection, log ingestion, and operational dashboards within Elastic. The role focuses on improving detection quality, investigating alerts, and collaborating closely with operational teams to deliver effective SIEM capabilities in constrained, mission-driven environments.
Experience required:
- Strong hands-on experience with Elasticsearch, Kibana, and Elastic SIEM in operational environments
- Proven experience developing, tuning, and optimising SIEM detection rules to identify threats and reduce false positives
- Experience managing log ingestion pipelines and ensuring reliable data flow into Elasticsearch
- Proficiency in log parsing, normalisation, and enrichment to support high-quality detections
- Hands-on experience designing and maintaining Kibana dashboards for operational visibility
- Ability to triage SIEM alerts, investigate incidents, and determine root causes
- Familiarity with security operations workflows and incident response processes
- Experience writing detection logic using EQL, KQL, or similar query languages
If you are an Elastic SIEM Specialist with lots of Defence/MOD experience and looking for a new contract, please apply.
Locations
Elastic SIEM Specialist (Outside IR35) in Farnborough, Hampshire employer: Talent Locker
Contact Detail:
Talent Locker Recruiting Team
StudySmarter Expert Advice π€«
We think this is how you could land Elastic SIEM Specialist (Outside IR35) in Farnborough, Hampshire
β¨Tip Number 1
Network like a pro! Reach out to your connections in the Defence sector and let them know you're on the lookout for opportunities. Sometimes, a friendly nudge can lead to a hidden gem of a job.
β¨Tip Number 2
Get your hands dirty with Elastic SIEM projects! If you can, work on personal or open-source projects that showcase your skills. This not only boosts your portfolio but also gives you real-world examples to discuss during interviews.
β¨Tip Number 3
Prepare for those technical interviews! Brush up on your Elasticsearch, Kibana, and EQL/KQL skills. We recommend running through common scenarios and challenges you might face in the role to show off your expertise.
β¨Tip Number 4
Donβt forget to apply through our website! Itβs the best way to ensure your application gets seen by the right people. Plus, we love seeing candidates who are proactive about their job search!
We think you need these skills to ace Elastic SIEM Specialist (Outside IR35) in Farnborough, Hampshire
Some tips for your application π«‘
Tailor Your CV: Make sure your CV highlights your experience with Elasticsearch, Kibana, and Elastic SIEM. We want to see how your skills match the job description, so donβt be shy about showcasing your relevant projects and achievements!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why youβre the perfect fit for this role. Mention your hands-on experience with threat detection and log ingestion, and how you can contribute to the NESTOR operations.
Showcase Your Technical Skills: When filling out your application, make sure to highlight your proficiency in EQL, KQL, or similar query languages. Weβre looking for someone who can hit the ground running, so let us know about your technical prowess!
Apply Through Our Website: We encourage you to apply directly through our website. Itβs the easiest way for us to receive your application and ensures youβre considered for this exciting opportunity. Donβt miss out!
How to prepare for a job interview at Talent Locker
β¨Know Your Elastic SIEM Inside Out
Make sure you brush up on your knowledge of Elasticsearch, Kibana, and Elastic SIEM. Be ready to discuss your hands-on experience and specific projects where you've built or tuned detection rules. The more detailed examples you can provide, the better!
β¨Showcase Your Problem-Solving Skills
Prepare to talk about how you've triaged SIEM alerts and investigated incidents in the past. Think of a couple of scenarios where you identified root causes and improved detection quality. This will demonstrate your ability to handle real-world challenges.
β¨Familiarise Yourself with Defence Context
Since this role is within a Defence consultancy, itβs crucial to understand the unique challenges and requirements of working in this sector. Brush up on MOD protocols and be ready to discuss how your experience aligns with mission-driven environments.
β¨Prepare Questions for Them
Interviews are a two-way street! Prepare insightful questions about the team dynamics, the specific projects you'll be working on, and how they measure success in their SIEM operations. This shows your genuine interest and helps you assess if it's the right fit for you.
