Lead SIEM Engineer

Hemel Hempstead
2 months ago
Applications closed

Related Jobs

View all jobs

SOC Engineer

IT Security Engineer

Interim Senior Cyber Security Engineer

SOC Analyst

Director of Group Cyber Security Services

SOC Team Lead

Lead SIEM Engineer
Hybrid – Hemel Hempstead (1–2 days per week on-site)
Security Clearance: Eligible & willing to obtain DV
 
This role is for SIEM specialists
A great opportunity for a  Lead SOC SIEM Engineer to take ownership of detection engineering within a large, rapidly scaling SOC that protects some of the UK’s most sensitive defence and national security environments.
 
The SIEM Engineer will sit at the intersection of threat intelligence, telemetry, and detection logic, shaping how threats are identified, prioritised, and acted upon across multiple high-security clients. If you’re passionate about SIEM content quality, signal over noise, and building detections that actually work, this role gives you real authority to do that
 
The focus of the Lead SIEM Engineer role will be:

Owning the SIEM content lifecycle  from concept and design through build, tuning, and continuous optimisation
Engineering high-fidelity detections, dashboards, and reporting that SOC analysts trust
Ensuring data ingestion, parsing, and enrichment deliver coverage, context, and visibility
Turning threat intelligence, vulnerabilities, and attacker TTPs into actionable detection logic
Reducing false positives while improving alert confidence and response speed
Acting as the technical bridge between SOC analysts, architects, engineers, and delivery teams
Helping define detection standards, engineering patterns, and best practice across the SOC 
This role could be for you if your SIEM experience covers:

Strong hands-on SIEM engineering experience with Splunk, Microsoft Sentinel, QRadar, or similar
Deep understanding of detection engineering, use-case development, and monitoring strategy
Confidence working with security frameworks and standards (NIST, ISO 27001/27002, CIS, PCI DSS)
Scripting capability in Python, PowerShell, regex (automation mindset preferred)
Comfortable supporting multiple customers and environments without losing engineering quality
Willing and eligible to obtain DV clearance 
This is a true SIEM content leadership role, not an escalation or firefighting position, defending country critical technology and clients. A chance for a Senior SIEM professional to join a SOC that’s scaling.
 
If you care about signal quality, detection depth, and SIEM done properly, this is where your work will matter.

If you are interested please apply ASAP. The People Network is an employment agency and will respond to all applicants within three - five working days. If you do not hear within these timescales please feel free to get in touch

Subscribe to Future Tech Insights for the latest jobs & insights, direct to your inbox.

By subscribing, you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Products

Where to Advertise Cyber Security Jobs in the UK (2026 Guide)

Advertising cyber security jobs in the UK requires a different approach to most technical hiring. The candidate pool is small, heavily vetted and in high demand across government, financial services, critical national infrastructure and the private sector simultaneously. Many of the strongest candidates hold active security clearances, are not actively job-searching through general platforms, and move primarily through specialist networks and trusted referrals. General job boards reach a broad audience but lack the specificity that security professionals expect. Specialist platforms, government-affiliated channels and cleared candidate networks each serve a different part of the market. This guide, published by CybersecurityJobs.tech, covers where to advertise cyber security roles in the UK in 2026, how the main platforms compare, what employers should expect to pay, and what the data says about hiring across different role types.

Jobs

Penetration Tester Jobs in the UK: What Employers Actually Want in 2026

The demand for skilled professionals in cyber security has never been higher, and penetration testers sit at the very heart of this rapidly evolving industry. As organisations across the UK continue to digitise their operations, protect sensitive data, and defend against increasingly sophisticated threats, the need for ethical hackers has grown dramatically. If you are considering a career in this field—or looking to advance within it—it is essential to understand what employers are really looking for in 2026. This guide breaks down the current expectations, required skills, certifications, and practical experience that can help you stand out in a competitive job market.

Jobs

SOC Analyst Jobs UK 2026: Salaries, Skills & How to Get Hired

Cyber security is one of the UK's fastest-growing career paths — and SOC analyst is where most people begin. It's in high demand, genuinely accessible, and you don't need a degree or years of experience to get started. But knowing what UK employers actually want in 2026 — what they pay, which certs matter, and how to stand out — is a different matter. This guide covers all of it.

🍪 We use cookies to enhance your browsing experience on our website. By continuing to use this site, you consent to the use of cookies as described in our Cookie Policy. You can review our Cookie Policy for more information.