Cyber Security Engineer

Senior Cyber Security Engineer, CrowdStrike, Splunk, SOC, SIEM, EDR, SOAR, Threat Hunting, Incident Response, MITRE ATT&CK, AWS, Azure, Penetration Testing, Vulnerability Assessment, London, Hybrid

The successful Senior Cyber Security Engineer will be a hands-on technical expert with deep experience across CrowdStrike and Splunk, comfortable working closely with an outsourced SOC partner to maximise the value of existing security investments. You will bring senior-level expertise to manage, integrate and optimise SOC capabilities whilst also upskilling the existing internal team.

You will need proven experience working with the following:

• Hands-on experience with CrowdStrike Falcon including Prevent, Insight and Discover, with policy configuration and endpoint strategy experience
• Proficiency in Splunk including writing complex SPL queries and working with Splunk Enterprise Security to build dashboards, alerts and data models
• Acting as a technical escalation point for high priority security incidents using EDR and SIEM tools
• Developing SOAR workflows to automate security responses and reduce manual intervention
• Proactive threat hunting using specialised queries to identify undetected malicious activity
• Strong understanding of network protocols, cloud security across AWS or Azure, and the MITRE ATT&CK framework
• Training and upskilling team members across CrowdStrike, Splunk and security analysis

Vulnerability assessment and penetration testing experience would be a bonus.

Splunk Certified Cybersecurity Defense Engineer certification is required for this role.

CrowdStrike certifications including CCFA, CCFR or CCSE are highly desirable.

We're looking for a Senior Cyber Security Engineer for our public sector client based in London on an initial 6-month contract, paying up to £371.04 per day (Inside IR35).

This role offers hybrid working with an expectation to attend the office as required.