2 of 2 SIEM Jobs in Edinburgh

defence capability. Please note the on-call rota is every 1 in 6 weeks. Responsibilities Cyber Defence authority for real-time monitoring of Element's security platforms such as SIEM and Extended Detection and Response (XDR) Prompt analysis and triage of alerts and security events. Support the Incident Response (IR) team to report potential or actual incidents Conduct proactive Threat More ❯

the Cyber Security Engineering Manager, you will be responsible for designing, implementing and maintaining our next-generation detection and log management platforms. This role sits at the intersection of SIEM engineering, cloud security, and advanced log pipeline management, ensuring that our enterprise maintains world-class detection fidelity, threat visibility and compliance across diverse environments.You will help us deliver improvements across … Detection. Additionally, you will work closely with our Cyber Security Operation Centre, wider security functions, specialist 3rd party security suppliers and our global IT and business teams. Key Responsibilities: SIEM engineering & Operations: Development of advanced detection rules, correlation searches, and playbooks to improve threat detection and response Perform log source onboarding, parsing, and data normalisation on various data types Experience … with design, development, configuration and maintenance of SIEM alerts to support our SOC Operations Log Management & Data Engineering: Engineer and maintain log pipelines using Cribl to optimise ingestion, filtering, routing and replay Ability to work confidently on intelligent log transformation, data enrichment and routing strategies Architect scalable solutions for log archival, data rehydration and compliance-driven retention Cloud Security: Leverage More ❯