SIEM Engineer

Job Title: Sentinel SIEM Engineer

Location: Reading/Havant, UK - Hybrid: 2 Days to Office Every Week

Duration: 6 Months

Employment Type: Inside IR35

Roles & Responsibilities:

Seeking a Security-Cleared Sentinel SIEM Engineer to manage and enhance the SIEM platform, ensuring effective security monitoring, log integration, and automation. The role involves hands-on engineering, rule development, and collaboration with threat detection teams.

Key Responsibilities:

• Maintain and optimize the Microsoft Sentinel SIEM platform for performance, scalability, and integration with IT/OT security systems.
• Onboard log sources, develop custom parsers, and create detection and analytic rules.
• Automate triage and remediation workflows using SOAR capabilities.
• Support security incidents and collaborate closely with Threat Detection & Response teams.
• Lead and mentor the SIEM Engineering team, ensuring best practices and technical excellence.

Mandatory Skills & Experience:

• Active Security Clearance (mandatory).
• Proven experience as a SIEM Engineer (preferably with Microsoft Sentinel).
• Expertise with security logs across identity, network, system, data, application, and cloud domains.
• Strong skills in PowerShell and Python for data analysis and automation.
• Solid understanding of SOAR solutions and their integration with SIEM.
• Excellent communication, collaboration, and stakeholder management skills.
• Experience in team leadership and mentoring within security operations.