Cyber Security Engineer SoC/SIEM
malvern, midlands, united kingdom
Methods Business and Digital Technology
formal documentation in line with Defence Writing principles, with an understanding of Joint Service Publications (JSPs), particularly in areas related to cybersecurity governance, incident response, and monitoring operations. Incident & Case Management: Support the incident response lifecycle through alert review, case triage, evidence handling, escalation, and forensic data support. Ensure cases are documented comprehensively and aligned with operational … coverage. Experience with SOAR or SIEM enrichment tools (e.g., TheHive, MISP, Cortex). Knowledge of additional log forwarding/processing tools (e.g. Elastic Agent, Fluentd). Exposure to vulnerability management and threat intelligence platforms such as OpenCTI. Qualifications: Expert knowledge of Azure & Sentinel Proven experience as a Cyber Analyst with a focus on Security Operations. Strong expertise in using More ❯
Posted: