Enable job alerts via email!

SIEM Application Engineer

Rubicon Consulting

West Midlands

On-site

GBP 60,000 - 80,000

Full time

Today

Be an early applicant

Generate a tailored resume in minutes

Land an interview and earn more. Learn more

Job summary

A talent management consultancy is seeking an experienced SIEM Application Engineer for a 6-month contract based in West Midlands. The ideal candidate has over 5 years of engineering experience in cybersecurity solutions and specializes in SIEM technologies, particularly Elastic. Responsibilities include designing and implementing SIEM solutions, optimizing detection rules, and collaborating with security analysts. Strong skills in Elasticsearch and Kibana are essential for success in this role. Competitive compensation is offered.

Qualifications

5+ years of engineering experience in delivering cybersecurity solutions.
Experience in SIEM technologies, especially Elastic.
Ability to create and optimize detection rules based on the MITRE ATT&CK Framework.

Responsibilities

Design and implement SIEM solutions using Elasticsearch.
Collaborate with security analysts to drive security objectives.
Write efficient Elasticsearch queries for security events.

Skills

SIEM Solution Development

Elastic Security

Detection Rule Development

Performance Tuning

Kibana Visualization

Education

Bachelor's/Master's degree in Computer Science, Information Systems, Engineering

Tools

Elasticsearch

Logstash

Kibana

Rubicon Consulting is currently recruiting for an SIEM Application Engineer on a 6 month rolling contract based in West Midlands.

Role Summary

SIEM Solution Development
- Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch.
- Optimize SIEM rules, alerts, and dashboards for efficient threat detection.
Collaboration
- Collaborate effectively with others to drive forward key security objectives
- Presentation and documentation writing (to both technical and business audiences)
Query Optimization and Performance Tuning
- Write efficient Elasticsearch queries to retrieve relevant security events.
- Monitor and manage the performance of the SIEM infrastructure.
Security Engineering
- Contribute to security engineering projects, transitions, and transformations.
- Work closely with security operations and associated security incident response systems
- Stay informed about emerging threats and security best practices.

Requirements

Essential: Security and Compliance with Elastic Security
- Set up access controls, authentication, and encryption using Elastic Security features.
- Ensure compliance with data protection regulations.
Detection Rule Development
- Ability to create, test, and optimise detection rules to identify suspicious activities and potential threats based on the MITRE ATT&CK Framework
Performance Tuning with Elasticsearch and Logstash
- Fine-tune query performance using Elasticsearch indices and mappings.
- Monitor Logstash pipelines and optimize resource utilization.
Kibana Visualization and Monitoring
- Leverage Kibana for data visualization, dashboards, and real-time monitoring.
- Create custom visualizations to track data quality metrics and system performance.
Education: Bachelor's/Master's degree in Computer Science, Information Systems, Engineering, or other related fields
Experience: 5+ years of engineering experience in delivering cybersecurity solutions
Experience: Experience in key cyber technologies such as SIEM technologies (Elastic preferred), vulnerability management, access management and other commonly used Enterprise security controls. Ideally from both a development and operational perspective.

Our Company

Rubicon Consulting is a Talent management consultancy which helps you to optimise business performance and competitive advantage by choosing the right people first time

Get your free, confidential resume review.

or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.

Top cities

Top companies

Popular jobs