2 of 2 Threat Detection Jobs in Birmingham

technology organisation, is seeking an experienced contract (inside IR35) SIEM Application Engineer to design, deploy, and optimize Elastic SIEM solutions built on ECK, enhancing threat detection and security monitoring. The role is based in Birmingham (3 days per week on-site) and is initially until … March, with likely extensions. Key Responsibilities: Develop and maintain SIEM solutions using Elasticsearch and Elastic Stack (ELK). Create and optimize detection rules aligned with MITRE ATT&CK Framework. Fine-tune Elasticsearch queries, Logstash pipelines, and Kibana dashboards for performance and visualization. Ensure security compliance, access controls, and encryption ...

Solution Development: Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. Optimize SIEM rules, alerts, and dashboards for efficient threat detection. Collaboration: Collaborate effectively with others to drive forward key security objectives Query Optimization and Performance Tuning: Write efficient Elasticsearch queries to retrieve relevant … working in a Cyber Security Engineer/SIEM Engineer role. Experience setting up access controls, authentication and encryption using Elastic Security features. Knowledge of detection rule development. Including the ability to create, test and optimise detection rules to identify suspicious activities and potential threats. Performance Tuning with Elasticsearch ...