2 of 2 Temporary SIEM Jobs in London

existing team to elevate their technical skill sets. Key Responsibilities Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of our CrowdStrike Falcon platform. SIEM Mastery: Collaborate with our SOC partner to architect and optimise Splunk dashboards, alerts, and data models. Incident Response: Act as the technical escalation point … high-priority incidents, utilizing EDR and SIEM tools for rapid containment. Automation & Hunting: Develop SOAR workflows to improve response times and proactively hunt for undetected malicious activity. Upskilling: Directly train the existing team in CrowdStrike, Splunk, and advanced security analysis. Your Profile We are seeking a candidate who brings ...

CrowdStrike Falcon platform Manage policies across Falcon Prevent, Insight, and Discover Act as the technical authority for endpoint detection and response (EDR) SIEM & Security Monitoring (Splunk) Architect and enhance Splunk dashboards, alerts, and data models Write and maintain complex Splunk SPL queries Optimise Splunk Enterprise Security (ES) for advanced threat … detection Incident Response & Threat Management Act as a Tier 3 escalation point for high-severity cyber security incidents Use EDR and SIEM tooling to investigate, contain, and remediate threats Map detection and response activities to the MITRE ATT&CK framework SOAR & Automation Design and implement SOAR workflows to automate response ...