SIEM Application Engineer - ElasticSearch

SIEM Engineer - ElasticSearch

Contract Type
Contract Length: 3 months initially
Daily Rate: Up to £550 (inside IR35 via umbrella)
Location: Hybrid working model - 3 days in Birmingham and 2 days remote

About the Role:
Our client is seeking a skilled SIEM Engineer to join their cybersecurity team on a contract basis. This role is crucial for enhancing threat detection capabilities and requires a blend of technical expertise and collaboration skills. If you have a passion for security engineering and are ready to make an impact, we want to hear from you!

What You'll Be Doing:

SIEM Solution Development:
Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. optimise SIEM rules, alerts, and dashboards to ensure efficient threat detection.

Collaboration:
Work closely with team members to drive key security objectives forward. You'll also be responsible for presenting findings and writing documentation tailored to both technical and business audiences.

Query optimisation and Performance Tuning:
Write efficient Elasticsearch queries to retrieve relevant security events. Monitor and manage the performance of the SIEM infrastructure to maintain optimal functionality.

Security Engineering:
Contribute to various security engineering projects and work closely with security operations and incident response systems. Stay updated on emerging threats and best practises in the cybersecurity landscape.

Skills You'll Need to Succeed:

Essential:

• Strong experience in SIEM technologies, preferably Elastic Stack (ELK).
  
• Knowledge of security compliance, including access controls, authentication, and encryption using Elastic Security features.
  
• Ability to create, test, and optimise detection rules based on the MITRE ATT&CK Framework.
  
• Experience in performance tuning with Elasticsearch and Logstash, including monitoring Logstash pipelines.
  
• Proficiency in using Kibana for data visualisation and monitoring.
  
  Advantageous:
  
• Familiarity with offensive testing frameworks and cloud services (public/private), OpenStack, and Kubernetes (K8S).
  
• Cybersecurity qualifications and knowledge of Git and DevOps practises.
  
• Experience with Terraform/Ansible systems and a solid understanding of security policy/regulatory frameworks.
  
• At least 3-5 years of experience in cybersecurity engineering and delivery.
  
  Leadership Accountabilities:
  
  Owning outcomes and delivering for the customer.
  Building for the future through innovative security solutions.
  
  Qualifications:
  
  Bachelor's or Master's degree in Computer Science, Information Systems, Engineering, or a related field.
  5+ years of engineering experience in delivering cybersecurity solutions, with a focus on key cyber technologies.
  
  Why Join Us?
  
  Work in a dynamic and collaborative environment.
  Enjoy the flexibility of hybrid working.
  Competitive daily rate.
  Opportunity to enhance your skills and make a tangible impact on security initiatives.
  
  If you are a proactive SIEM Engineer with a commitment to excellence in cybersecurity, we encourage you to apply. Join our client in their mission to strengthen their security posture and protect vital information assets!
  
  Application Process:
  Please submit your CV and a brief cover letter outlining your relevant experience and why you're a great fit for this role. We look forward to hearing from you!
  
  Adecco is a disability-confident employer. It is important to us that we run an inclusive and accessible recruitment process to support candidates of all backgrounds and all abilities to apply. Adecco is committed to building a supportive environment for you to explore the next steps in your career. If you require reasonable adjustments at any stage, please let us know and we will be happy to support you