Security Tooling Engineer

Security Tooling Engineer (SIEM / SOAR)

Location: Cheltenham / London/ Hybrid

Please Note: Due to the nature of client work you will be undertaking, you will need to be willing to go through a Security Clearance process as part of this role, which requires 5+ years UK address history at the point of application.

As a Security Tooling Engineer, you will:

• Be responsible for developing and optimising Security Tooling, to drive the maturation of Accenture’s Security Operation Centre (SOC) offerings.

• Build, maintain and optimise Security Information Event Management (SIEM) and Security, Orchestration, Automation and Response (SOAR) toolsets.

• Develop and implement innovative solutions to improve the efficiency and capabilities of Accenture’s service offerings.

• Approach problems with a security-first mindset, and have a strong technical background in security operations or network / infrastructure engineering.

The following skills and experience are essential for this role:

• Hands-on experience either: Developing playbooks within Security Orchestration, Automation and Response (SOAR) platforms, such as Palo Alto XSOAR, Splunk Phantom or Chronicle SOAR.

• Deploying and optimising either Microsoft Sentinel and/or Splunk Enterprise Security. Knowledge of other SIEM platforms is advantageous.

• Understanding of DevOps principles and orchestration toolsets.

• Working knowledge of at least one software development or scripting language, such as Python or PowerShell.

• Familiarity with the principles of public Cloud environments such as AWS or Azure, and knowledge of cloud-native security controls.

• Strong general Cyber Security Knowledge. Knowledge of common threats, attacker tools and techniques and MITRE ATT&CK is advantageous.

• 3+ years’ experience working within a Security Operations environment or similar.

• Collaborative and engaging approach to problem solving, and a willingness to work as part of the team.

• A problem-solver, always seeking the best solution for the right outcome.

• Self-motivated, results-focussed, pragmatic with the ability to manage conflicting deadlines and prioritise.

Set yourself apart:

• Vendor certifications for Security Tooling (such as SOAR, SIEM, EDR) would be advantageous.

• Experience of undertaking product evaluation would be advantageous, including assessment of emerging technologies such as Artificial Intelligence and Machine Learning.

• Familiarity with broader security toolsets (such as email gateways, identify platforms, firewall technologies) would be advantageous.

• Previous exposure to Operational Technology (OT) monitoring solutions would be advantageous.

What’s in it for you

At Accenture in addition to a competitive basic salary, you will also have an extensive benefits package which includes 25 days’ vacation per year, private medical insurance and 3 extra days leave per year for charitable work of your choice!

Flexibility and mobility are required to deliver this role as there may be requirements to spend time onsite with our clients and partners to enable delivery of the first-class services we are known for.

Closing Date for Applications:

03/07/25.

Accenture reserves the right to close the role prior to this date should a suitable applicant be found.