SIEM Engineer

Fynity
Swindon, United Kingdom
3 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Compensation
£ 65K

Job location

Swindon, United Kingdom

Tech stack

Continuous Integration
Kusto Query Language
Security Information and Event Management
Mitre Att&ck
Splunk
Data Pipelines

Job description

  • Develop, deploy, and enhance security monitoring solutions using Splunk and Elastic technologies
  • Lead and optimize Elastic Security and Splunk platforms
  • Design and manage SIEM data pipelines (ingestion, enrichment, ECS/CIM)
  • Build and tune MITRE ATT&CK-aligned detections with low noise
  • Own the SIEM content lifecycle end to end
  • Automate SIEM workflows using CI/CD, SOAR, and IaC
  • Ensure platform resilience, performance, and scalability

Technologies:

  • CI/CD
  • Security
  • Splunk
  • ELK
  • Network

More:

We are a leading company in providing security systems for the defense and national intelligence sectors. We offer a full-time, on-site role in Hemel Hempstead with opportunities for out-of-hours work. Join our dynamic team where you will collaborate closely with engineering and security teams to enhance our security offerings.

Requirements

  • Strong hands-on experience with Elastic and Splunk ES
  • Deep knowledge of detection engineering and data pipelines
  • Advanced SPL, KQL or EQL skills
  • Experience running SIEM platforms at scale (HA, DR, performance)
  • A proactive, problem-solving mindset
  • ACTIVE DV CLEARANCE

Apply for this position