Cyber Security Engineer

This position is key to maximising the effectiveness of a newly implemented outsourced SOC (NCC Group), leveraging Splunk and CrowdStrike. You will provide senior-level technical expertise to enhance security operations, improve threat detection, and upskill the internal team. Key Responsibilities

• Lead CrowdStrike Falcon deployment, configuration, and optimisation
• Design and enhance Splunk SIEM dashboards, alerts, and data models
• Act as an escalation point for major cyber incidents
• Develop SOAR automation workflows to improve response times
• Conduct proactive threat hunting using advanced queries
• Work closely with SOC partner to optimise security operations
• Provide training and knowledge transfer to internal teams

• 5+ years' experience in Cyber Security Engineering or SOC Tier 3 environments
• Strong hands-on expertise in CrowdStrike Falcon (Prevent, Insight, Discover)
• Advanced Splunk experience - including SPL and Splunk Enterprise Security (ES)
• Splunk Certified Cybersecurity Defence Engineer (MANDATORY)
• Strong understanding of:
• Network security & protocols
• Cloud security (AWS/Azure)
• MITRE ATT&CK framework

Desirable Experience

• Vulnerability Assessment tools (2+ years preferred)
• Exposure to Penetration Testing / Web Application Testing
• Experience developing security policies and standards

Certifications (Highly Desirable)

• CrowdStrike Certifications (CCFA / CCFR / CCSE - ideally 2+)
• Cyber Security Certifications:
• CompTIA Security+, CySA+, GSEC
• CISSP, GCIH, GCIA, CCSP

• Work on a high-impact cyber transformation programme
• Engage with cutting-edge tools (CrowdStrike & Splunk)
• Opportunity to shape and optimise a live SOC environment
• Competitive £500/day rate with hybrid flexibility