6 of 6 Permanent Search Processing Language Jobs

Tier 3 role. Technical Requirements: CrowdStrike Expertise: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES). Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure ...

sets. Proficient in TA/TAF configuration, props/transforms, parsing/line-breaking, and source type normalisation. Experience with KV store, summary indexing, search head clustering, indexer clustering, and deployment servers. Elastic (Elastic Stack/Elastic Security): Hands-on with index lifecycle management (ILM), ingest pipelines, ECS mapping ...

team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators … TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment ...

team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators … TTPs, adversary behaviours, and emerging threat intelligence Write, refine, and optimise SIEM queries using KQL, SPL, Elastic/ESQL, and Kibana Query Language Perform IOC analysis, enrichment, and validation, integrating internal and external threat intelligence sources Lead investigations from initial detection through scoping, root cause analysis, and impact assessment ...

Security Content Engineer £65000 GBP Hybrid WORKING Location: Central London, Greater London - United Kingdom Type: Permanent Security Content Engineer (SOC) Location: London (Full time - 5 days onsite) Salary: Up to £65,000 + bonus Clearance ...

Sheer Jobs Limited is recruiting on behalf of a local authority client for a Senior Cyber Security Engineer to play a critical role in strengthening and optimising their cyber security function. This position is key ...