SIEM Engineer

Role Description

At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer and more inclusive solutions to people worldwide. Here in the Global Information Security team, we work to protect the platforms that support investment solutions for over 20 million people.

We are looking for an experienced SIEM Engineer, reporting to the Cyber Security Engineering Manager (SIEM). You will have a strong background in designing and developing monitoring solutions and will be familiar with onboarding data from varied sources. You will have strong experience of different SIEM architectures and be adaptable in your approach. Your role in FNZ will be to manage and enhance the SIEM solutions for the FNZ Group, supporting the lifecycle of data onboarding, use cases and automating responses.

Specific Role Responsibilities

• Support the creation and delivery of the roadmap and architecture for the SIEM solutions in FNZ.
• Deploy, manage and enhance the SIEM technology in FNZ
  • Managing the SIEM infrastructure
  • Log onboarding
  • Rules and Use case development
  • Schema management
  • Threat Intelligence integration
• Maintain up-to-date knowledge of emerging security threats and trends and build this into the SIEM strategy.
• Support the Incident Response team in FNZ to identify, manage and respond to incidents.
• Collaborate effectively with cross-functional teams across different time zones.

Experience Required

Primary Requirements

• Significant (4+ years) experience of design/administering/managing SIEM (Splunk/Sentinel) in a large, distributed environment.
• Strong experience with Microsoft Sentinel administration.
• Experience with Splunk Enterprise Security administration.
• Significant experience in the creation of rules and use cases to support business incident response.
• Strong experience in data onboarding and schema management.
• Strong understanding of multiple technologies:
  • Windows
  • Linux
  • Network devices (WAF, Firewalls, Switches)
  • Cloud
  • Application Logging
• Advanced automation and scripting capabilities, with hands-on knowledge of development best practices.
• Knowledge of Security Frameworks (NIST, MITRE etc).
• Relevant security certifications (e.g., SSCP, Vendor Certifications).
• Experience of working with tools like Jira, Planner and Confluence.