Sentinel SEIM Engineer

Technopride Ltd
13 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English

Job location

Tech stack

Intrusion Detection and Prevention
Python
Performance Tuning
Powershell
Security Log
Security Information and Event Management
Systems Integration
Scripting (Bash/Python/Go/Ruby)
System Availability

Job description

  • Develop, maintain, and optimize the SIEM platform to ensure high availability, scalability, and integration with other security tools and platforms.
  • Onboard and manage log sources, create custom parsers, and design detection and correlation rulesets.
  • Collaborate with infrastructure and security teams to design and implement security monitoring solutions across enterprise environments.
  • Develop and automate triage and remediation workflows using SOAR technologies.
  • Lead and mentor members of the SIEM Engineering team, fostering knowledge sharing and technical excellence.
  • Partner with the Threat Detection & Response teams to ensure the SIEM platform supports operational and investigative needs.
  • Conduct continuous improvement of SIEM processes, configurations, and performance tuning.

Requirements

Do you have experience in Scripting?, We are seeking an experienced SIEM Engineer to design, maintain, and enhance the organization's Security Information and Event Monitoring (SIEM) platform. The role involves onboarding log sources, developing custom parsers, creating advanced analytic and detection rules, and implementing automation for triage and remediation. You will also collaborate closely with cross-functional security teams to ensure seamless integration across IT and OT security platforms.

This position requires a proactive professional who can drive platform scalability, improve detection capabilities, and lead SIEM engineering initiatives in a fast-paced, mission-critical environment., * Proven hands-on experience in SIEM engineering, configuration, and operations.

  • Strong expertise in working with diverse security log sources across identity, network, application, system, data, and cloud domains.
  • Proficiency in scripting and automation languages, such as Python and PowerShell.
  • In-depth knowledge of Security Orchestration, Automation, and Response (SOAR) solutions.
  • Experience designing and maintaining detection rulesets and managing large-scale log integrations.
  • Strong analytical, troubleshooting, and problem-solving skills.
  • Demonstrated team leadership or mentorship experience, with excellent collaboration and stakeholder engagement capabilities.

Job Type: Full-time

Work Location: Hybrid remote in Havant PO9 1RT

Apply for this position