3 of 3 Contract Cribl.io Jobs in the UK

Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting mechanisms and robust monitoring strategies within Splunk to identify … diverse networks to minimise organisational risk exposure. Essential Skills Needed Proficiency in Incident Response, Triage, and Threat Management. Practical, hands-on experience with Splunk, Cribl, Recorded Future, and OpenCTI. Expertise in Cloud Security Architecture. Proven ability to handle P1 and P2 incidents with a technical, proactive approach. Desirable Skills Relevant ...

Management: Directing the full incident response lifecycle, including the triage, investigation, and total resolution of security events. Threat Intelligence: Utilising Recorded Future, OpenCTI, and Cribl to correlate alerts and transform raw intelligence into actionable defensive insights. Detection & Monitoring: Designing advanced alerting mechanisms and robust monitoring strategies within Splunk to identify … diverse networks to minimise organisational risk exposure. Essential Skills Needed Proficiency in Incident Response, Triage, and Threat Management. Practical, hands-on experience with Splunk, Cribl, Recorded Future, and OpenCTI. Expertise in Cloud Security Architecture. Proven ability to handle P1 and P2 incidents with a technical, proactive approach. Desirable Skills Relevant ...

across Elastic Security/Elastic SIEM in production environments Designing, building, and optimising detections, alerts, and tuning (ESQL, rule logic, noise reduction) Working with Cribl ingestion pipelines for data routing, enrichment, and optimisation Supporting and enhancing on-prem Elastic architectures Collaborating within a wider Elastic Security practice and delivery team … operational stability, performance, and detection maturity Required experience Strong, hands-on Elastic Security/SIEM experience in real production environments Proven experience with Cribl for ingestion and pipeline management Solid detection engineering capability (ESQL, alerting, tuning) Experience working with on-prem Elastic stacks Background in long-running security or SIEM ...