SIEM Engineer

Social network you want to login/join with:

The Cyber Delivery Team is part of the Managed Services within the Cloud Infrastructure Services (CIS) UK business line. You will interact with a global team of security experts, including Architects, Engineers, Analysts, and Compliance Managers. CIS encourages engagement across various business areas and communities.

We are seeking a skilled SIEM Engineer with expertise in Elastic SIEM to join our cybersecurity team. The role involves designing, implementing, and maintaining Elastic SIEM infrastructure to ensure security monitoring and incident response.

Embedded with an existing Customer SOC, you will support Elastic SIEM implementation alongside Capgemini SOC analysts and the customer SOC team.

This position requires onsite presence 5 days a week in Warwick.

If selected, you will undergo pre-employment checks including identity verification, nationality or immigration status, employment history, and a criminal record check (Disclosure and Barring Service).

Your role

1. Design and Implementation: Install and maintain Elastic SIEM architecture for performance and scalability.
2. Monitoring and Analysis: Develop dashboards and visualizations for real-time security monitoring.
3. Data Integration: Incorporate various data sources into Elasticsearch, ensuring data quality through ETL processes.
4. Incident Response: Investigate and respond to security incidents using Elastic SIEM features.
5. Performance Optimization: Monitor and enhance Elastic Stack cluster performance for high availability.
6. Security Best Practices: Implement access controls, encryption, and ensure compliance with standards.
7. Documentation: Maintain SOPs and technical reports.

We promote inclusivity and support wellbeing through various initiatives and a diverse environment.

Your skills and experience

• Proficiency in Elastic Stack components (Elasticsearch, Logstash, Kibana, Beats).
• Strong cybersecurity knowledge.
• Scripting and automation skills (Python, Shell).
• Problem-solving, analytical, communication, and teamwork skills.
• Experience with other SIEM platforms like Sentinel is a plus.
• Knowledge of compliance standards such as GDPR, HIPAA.

Your security clearance

This role requires Security Check (SC) clearance. Applicants must have resided in the UK for the last 5 years and meet other criteria. The recruitment process will include questions about your eligibility, nationality, and residence. Some roles may be restricted to UK Nationals.

What does ‘Get The Future You Want’ mean for you?

You will join a Great Place to Work for Wellbeing in 2024, with initiatives supporting mental health and wellbeing. You’ll bring your unique skills, work within a community of experts, and contribute to building a sustainable, inclusive future, making a tangible impact across the UK.

Why consider Capgemini?

Join a thriving company that fosters innovation and inclusivity. You’ll develop skills, work on transformative projects, and help clients leverage technology for growth. While challenging, it offers the opportunity to make a positive difference in the world.

About Capgemini

Capgemini is a global leader in digital and sustainable transformation, with over 340,000 employees in more than 50 countries. With a heritage of over 55 years, it delivers end-to-end solutions in strategy, design, engineering, AI, cloud, and data, serving clients worldwide and generating €22.1 billion in revenue in 2024.