Cyber Security Analyst jobs in United Kingdom
Deputy Data Protection Officer
Department for Environment, Food & Rural Affairs (DEFRA)
Cortex EMEA Solutions Architect
Palo Alto Networks
Submarine Structural Design & FEA Engineer
BAE Systems
Senior Network Engineer – Defence‑Focused, Secure & Scalable
CGI Group Inc.
Discover more opportunities than anywhere else. Find more jobs nowElectrical Design Engineer – Control Panels & CAD Expert
Premier Engineering
Hybrid Infrastructure Engineer - Cyber Security Focus
Reed Technology
Legal Tech Solutions Architect & Client Advocate
Legora AB
Connect with headhunters to apply for similar jobsApplications Engineer – Global Projects & Growth
Nicholson Hird
Deputy Data Protection Officer - Lead Compliance & Advisory
Department for Environment, Food & Rural Affairs (DEFRA)
Deputy Data Protection Officer - Lead Compliance & Advisory
Department for Environment, Food & Rural Affairs (DEFRA)
Senior Wireless Software Engineer - Real-Time & Embedded
AccelerComm Ltd
Strategic Imaging Solutions Architect & Testing Lead
Kingston and Richmond NHS Foundation Trust
Global WAN Network Engineer - Cisco/Nexus
mthree Recruiting Portal
Imaging Digital Solution Architect and Test Lead | Kingston and Richmond NHS Foundation Trust
Kingston and Richmond NHS Foundation Trust
Principal Oracle Solution Architect
Version 1 Solutions Limited
SIEM Application Engineer
Job summary
A leading tech consultancy is seeking an SIEM Application Engineer to enhance security operations. This role involves analyzing and optimizing detections within the Elastic Security platform. The ideal candidate will have hands-on experience with Elastic Security and strong skills in detection logic and reporting. The position is hybrid, based in the UK, and offers a competitive day rate between £450 and £550.
Qualifications
- Hands-on experience with Elastic Security and Kibana.
- Strong understanding of detection logic and alert tuning.
- Familiarity with MITRE ATT&CK.
Responsibilities
- Analyze alerts from Elastic Security and validate detection accuracy.
- Tune and optimize existing detection rules.
- Map detections to the MITRE ATT&CK framework.
Skills
Role: SIEM Application Engineer
Location: Birmingham or Manchester or Ipswich (Hybrid)
Duration: 3 Months with possible extension
Day rate: £450 - £550 via Umbrella
We are looking for an SIEM Application Engineer to support our security operations by reviewing and optimising detections within our production Elastic Security platform. This role focuses solely on detection analysis, rule refinement, and reporting, rather than SIEM platform engineering or DevOps.
- Analyse alerts generated by Elastic Security and validate detection accuracy.
- Tune and optimise existing Elastic SIEM detection rules to improve fidelity and reduce false positives.
- Map detections to the MITRE ATT&CK framework and identify coverage gaps.
- Produce clear detection reports, tuning documentation, and analysis summaries.
- Collaborate with SOC analysts, incident responders, and security engineering teams.
- Hands‑on experience with Elastic Security / Elastic SIEM, Kibana, and Elasticsearch queries (EQL/KQL).
- Strong understanding of detection logic, alert tuning, and threat behaviours.
- Familiarity with MITRE ATT&CK.
- Strong written communication skills for reporting and documentation.
- Experience in SOC, detection engineering, or threat hunting.
- Exposure to common log types (endpoint, network, cloud).
- Security certifications (Elastic, Security+, CySA+, etc.).
* The salary benchmark is based on the target salaries of market leaders in their relevant sectors. It is intended to serve as a guide to help Premium Members assess open positions and to help in salary negotiations. The salary benchmark is not provided directly by the company, which could be significantly higher or lower.