Security Engineer
Job title: SIEM Engineer
Location: Reading, Havant
Duration:6 month
Description:
The specific scope of the role:
- Lead onboarding and integration of log sources into Microsoft Sentinel to ensure complete and reliable security telemetry
- Develop custom parsers and data transformations to normalise and enrich ingested data
- Design and optimise KQL queries to support effective threat detection and investigation
- Create and maintain analytic rules and detection logic aligned to emerging threats and business use cases
- Develop Logic Apps and SOAR workflows to automate response and reduce manual effort
- Implement CI/CD pipelines (Azure DevOps/Git) to support controlled deployment of SIEM content (rules, parsers, playbooks)
- Automate deployment and configuration across environments to improve consistency and speed of delivery
- Perform ongoing tuning and optimisation of detections to improve fidelity and reduce false positives