Security Engineer

Senior SIEM Engineer / Technical SME

Whitehall resources are looking for a Senior SIEM Engineer / Technical SME. This role is mainly remote working with occasional travel to the office in West-Surrey for an initial 6-month contract.

***Inside IR35***

Skills and Experience:

  • KQL: Able to develop and maintain high‐fidelity detection rules using Kusto Query Language
  • Able to utilize KQL for detection engineering, analytics, and threat‐hunting.
  • Microsoft Sentinel: Act as the technical SME
  • Hands‐on experience including analytics rules, connectors, and workbooks.
  • Ensure platform reliability and data quality.
  • Coordinate the end‐to‐end onboarding of log sources into Sentinel.
  • Overview: Expert in KQL
  • Technical SME for Sentinel set up
  • Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity).
  • Experience onboarding data using AMA, DCRs, syslog/CEF, and Event Hub integrations.
  • Comfortable using AI assisted tooling (e.g., Copilot for Security) to enhance productivity.
Apply Now
Apply Now

Job Details

Company
Whitehall Resources
Location
Surrey, England, United Kingdom
Hybrid / Remote Options
Posted