1 to 25 of 28 SIEM Engineer Jobs

and unparalleled agility-leveraging a foundation of speed, flexibility, and ingenuity to strengthen and protect our nation's vital interests. Requisition: Job Title: Senior SIEM Engineer Location: Hybrid role - MUST be local to the DMV area Clearance Level: Active - Public Trust SUMMARY: The Senior SIEM Engineer … and objectives related to the ongoing execution and maturity of its cybersecurity and security operations center programs. Agile Defense is currently seeking talented Senior SIEM Engineer to support an Agency-level enterprise cyber program. To support this vital mission, Agile Defense employees are on the forefront of providing … proposed modifications, additions, and technology implementation/refresh operations. • Maintain knowledge of industry trends in terms of threat landscape and translate that to the SIEM engineering function to help protect the client's cyber assets • Thoroughly understand software installations, systems monitoring and troubleshooting, account management, and overall efforts to More ❯

SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading … Centre (SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on … emerging threats and incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc. More ❯

SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading … Centre (SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on … emerging threats and incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc. More ❯

Capgemini Government Solutions (CGS) LLC seeks a highly motivated SIEM engineer with experience handling both ArcSight and Splunk. The ArcSight/Splunk Engineer will be responsible for configuring the collection, parsing, correlation, and visualization of events for a critical operational system. Ability to demonstrate solid skills in … motivated and entrepreneurial team, engage with a wide range of collaborators, and build CGS' capabilities to serve our clients. Job Responsibilities As a Principal SIEM Engineer (ArcSight & Splunk), you will be: Responsible for design, implementation and support ArcSight or Splunk core components, including ESM, Loggers, Smart Connectors, Indexers … components Responsible for configuring and deploying data collection for a variety of operating systems and networking platforms Responsible for creating Dashboards and Analytics within SIEM tools Working with monitoring systems supporting auditing, incident response, and system health Responsible for understanding networking components and devices, ports, protocols, and basic networking More ❯

your skills, curiosity, creativity, and authentic self to your work. Due to continued growth, DXC Technology offers a great opportunity for an experienced Lead SIEM Engineer to join our Microsoft and Cloud Security Practice, based in either our Erskine or Farnborough locations. Successful candidates will be required to … be based in the UK and hold or be eligible for SC/DV clearance. Job Essentials: SIEM Engineer skills, preferably with ArcSight. Office-based role, 5 days a week, from either Erskine or Farnborough. Security clearance level of DV must be obtained; it is an essential requirement … for this role. Job Functions: Drive technical and architectural improvements of the ArcSight SIEM managed service and related tools. Manage operations involving support, incident response, and change control. Handle version management to ensure appropriate ArcSight version levels within vendor support. Develop and update use case content. Onboard new technologies More ❯

SIEM Content Engineer - National Security & Defence Location: Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV Overview I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer within a … Operations Centre (SOC) team. The role will focus on country-critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyze SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on … emerging threats and incorporate into detection logic Support security standards and best practices Requirements 3+ years experience with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM More ❯

SIEM Security Engineer Inside IR35 Hybrid, travel to various sites around England 3 months, scope to extend Active SC would be advantageous We are seeking a Sentinel SIEM & Cloud Security Engineer to join our clients team and play a critical role in designing, managing, and optimizing … Microsoft Sentinel and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance the clients security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. … Key Responsibilities SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security posture, detect misconfigurations, and enforce compliance. Log Management & Analysis: Oversee the ingestion, parsing More ❯

SIEM Security Engineer Inside IR35 Hybrid, travel to various sites around England 3 months, scope to extend Active SC would be advantageous We are seeking a Sentinel SIEM & Cloud Security Engineer to join our clients team and play a critical role in designing, managing, and optimizing … Microsoft Sentinel and Defender for Cloud . This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance the clients security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud … security. Key Responsibilities SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel , ensuring optimal performance, scalability, and integration with security tools. Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security posture, detect misconfigurations, and enforce compliance. Log Management & Analysis: Oversee the ingestion More ❯

Graham Technologies is seeking an experienced Cyber Capability Developer/Architect (SIEM Engineer) who will be responsible for developing and maintaining SIEM configurations, enabling advanced detection and response capabilities, and contributing to a proactive security posture across the enterprise. Location: Huntsville, AL Key Responsibilities: SIEM Integration … Data Ingestion: Design, develop, and maintain configurations to collect and parse logs and event data for SIEM analysis (e.g., Splunk). Alerting & Detection Development: Create and fine-tune custom searches, correlation rules, and alerts to identify and respond to security incidents. Use Case Development: Work with SOC analysts to … queries and dashboards for real-time threat monitoring and incident investigation. Playbook Development: Create and maintain operational playbooks and integrate threat intelligence feeds into SIEM workflows. Threat Awareness: Stay current on emerging threats, vulnerabilities, and industry best practices to enhance detection capabilities. Configuration Management: Document configurations, update SIEM More ❯

at security, as we actively encourage our staff to engage with other areas of the business and local communities. We are seeking a skilled SIEM Engineer with expertise in Elastic SIEM to join our cybersecurity team. The ideal candidate will be responsible for designing, implementing, and maintaining … our customers Elastic SIEM infrastructure to ensure robust security monitoring and incident response capabilities. Embedded with an existing Customer SOC, you will provide Engineering support and expertise for the customers Elastic SIEM implementation, working alongside Capgemini SOC analysts and the customer SOC team. This role is required to … years, and unspent criminal record check (known as Disclosure and Barring Service) Your role Design and Implementation : Install and maintain the architecture for Elastic SIEM, ensuring optimal performance and scalability. Monitoring and Analysis : Create custom dashboards and visualisations using the Elastic Stack for real-time monitoring and analysis of More ❯

Title: SIEM Engineer - Splunk Operations & Log Management Location: Mons, Belgium Duties Service availability and monitoring Act as one of the engineers and Subject Matter Expert (SME) for SIEM and Log Collection services within the Cyber Security Data team Monitoring the availability and performance of the SIEM … shall be measured based on the information provided in the related ticket and time email has been sent. Change management Implement changes to the SIEM environment including but not limited to: software upgrades, new applications deployment, deploying new servers, modifying existing configuration of the SIEM environment, collecting new … by the requestor in the ticket Requirements The contractor that is going to perform the identified tasks as an Operation and Maintenance Expert in SIEM (Splunk) infrastructure management and log collection must have demonstrated skills, knowledge and experience as listed below: A good understanding of IT Security At least More ❯

Role: SIEM Security Engineer - Cyber Defence Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing … and optimizing Microsoft Sentinel and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. … Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing More ❯

Role: SIEM Security Engineer - Cyber Defence Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing … and optimizing Microsoft Sentinel and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. … Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing More ❯

Role: SIEM Security Engineer - Cyber Defence Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing … and optimizing Microsoft Sentinel and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. … Key Responsibilities * SIEM Architecture & Management: Design, deploy, configure, and maintain Microsoft Sentinel, ensuring optimal performance, scalability, and integration with security tools. * Cloud Security Design & Integration: Implement and optimize Microsoft Defender for Cloud to enhance cloud security posture, detect misconfigurations, and enforce compliance. * Log Management & Analysis: Oversee the ingestion, parsing More ❯

our customers. Visit to learn how we're keeping people around the world safe and secure. Program Overview About The Role Peraton seeks a SIEM Engineer Job Responsibilities: Designs hardware, operating systems, and software applications to adequately address cybersecurity requirements. Develops and directs system testing and validation procedures … and documentation. Develops dashboarding capabilities, utilizing the enterprise SIEM and Enterprise Governance Risk and Compliance (eGRC) solution, for the ISSO's to perform real time monitoring of Agency information systems. Develops detailed security design documentation for component and interface specifications to support system design and development. Conducts Assessments and … system(s). Incorporates cybersecurity vulnerability solutions into system designs (e.g., Cybersecurity Vulnerability Alerts). Creates and tracks metrics using the dashboard in the SIEM/eGRC solution. Designs, implements, tests, and evaluates secure interfaces between information systems, physical systems, and/or embedded technologies. Designs, develops, integrates, and More ❯

that can boast some very high profile clients within the Defence sector. Due to expansion, we have this new role for a Senior SOC SIEM Content Engineer with broad experience of Cyber. If you are highly technical and long to put your experience to full advantage, this is … You will be responsible for creating, implementing, and maintaining security content such as rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security best practices and experience working with SIEM platforms and within an MSSP environments where … OR eligible for DV Clearance. What you'll be doing: Create, implement, and maintain security content (such as rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyze SIEM data to identify and respond to potential security threats. Collaborate with others, such as the SOC Analysts More ❯

that can boast some very high profile clients within the Defence sector. Due to expansion, we have this new role for a Senior SOC SIEM Content Engineer with broad experience of Cyber. If you are highly technical and long to put your experience to full advantage, this is … You will be responsible for creating, implementing, and maintaining security content such as rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security best practices and experience working with SIEM platforms and within an MSSP environments where … OR eligible for DV Clearance. What you'll be doing: Create, implement, and maintain security content (such as rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyze SIEM data to identify and respond to potential security threats. Collaborate with others, such as the SOC Analysts More ❯

that can boast some very high profile clients within the Defence sector. Due to expansion, we have this new role for a Senior SOC SIEM Content Engineer with broad experience of Cyber. If you are highly technical and long to put your experience to full advantage, this is … You will be responsible for creating, implementing, and maintaining security content such as rules, dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security best practices and experience working with SIEM platforms and within an MSSP environments where … OR eligible for DV Clearance. What you'll be doing: Create, implement, and maintain security content (such as rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyze SIEM data to identify and respond to potential security threats. Collaborate with others, such as the SOC Analysts More ❯

Job Title: Security Engineer Splunk SIEM Location: London (once or twice a month in the office - travel expenses will be compensated) Salary/Rate: Up to £700 per day INSIDE IR35 Start Date: 21/04/2025 Job Type : Contract Company Introduction We have an exciting opportunity … month contract. Job Responsibilities/Objectives This role involves designing, implementing, and maintaining a robust security log migration pipeline from Splunk to a proprietary SIEM/SOAR platform. Splunk Administration: Configure Splunk to ingest and process security logs from diverse network sources. Data Pipeline Development: Architect and build data … pipelines to migrate logs from Splunk to the in-house SIEM/SOAR platform. Data Transformation: Develop Python scripts to normalize and flatten data originating from multiple sources, ensuring compatibility with the target SIEM/SOAR system. Kafka Integration: Implement Kafka message queues to facilitate efficient and scalable More ❯

Short Description Our client is looking for a skilled and experienced Sentinel Engineer to join their cybersecurity team. Bullet Points Fully remote if the candidate stays further than 80 miles from Maidenhead £60-80K per annum + benefits Minimum of 5 years of experience in cybersecurity More ❯

L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel – £55-65K – Home/Office 2x per month My client is one of the most recognisable names in IT and have some of the best people in the industry working for them. They’re top partners … Key Skills required: 4+ years’ experience working in a SOC environment – ideally MSSP. Experience in a technical security role are also considered. Experience with SIEM tools, such as MS Sentinel, Alien Vault or Splunk A cyber security qualifications, certification or degree e.g. CySA+, CompTIA SEC+, or similar experience. Microsoft … 3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, Alien Vault or Splunk 4 days on 4 days off – days and nights rota Act on Second Line security More ❯

L2 & L3 SOC/Cyber Security Engineer - Threat Hunter/SIEM Sentinel – £45-65K + 25% Shift – Home/Office 2x per month My client is one of the most recognisable names in IT and have some of the best people in the industry working for them. … Key Skills required: 2+ years’ experience working in a SOC environment – ideally MSSP. Experience in a technical security role are also considered. Experience with SIEM tools, such as MS Sentinel, Alien Vault or Splunk A cyber security qualifications, certification or degree e.g. CySA+, CompTIA SEC+, or similar experience. Microsoft … 3rd line analysis for ongoing investigations. Carrying out proactive threat hunts, RCAs, creation of detection capabilities Monitor/hunt security alerts from security platforms (SIEM platforms, such as MS Sentinel, Alien Vault or Splunk 4 days on - 4 days off - Days and Nights Act on Second Line security alerts More ❯

Cyber Security Engineer required by a London financial brokerage ( near Bank station ), paying up to £75k + bonus + benefits. Hybrid role (3 days office-based). Join a focused 3-person IT Security team, reporting to the IT Security Officer, to implement and maintain robust security across their … infrastructure. Key responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email security gateways, SIEM/SOAR/EDR (alert response), firewalls, MFA/ More ❯

Splunk core components. • Experience configuring and deploying data collection for a variety of operating systems and networking platforms. • Experience creating Dashboards and Analytics within SIEM tools. • Experience working with monitoring systems supporting auditing, incident response, and system health. • Must have a solid understanding of networking components and devices, ports … a related discipline. • Network Security Operations Center (SOC) experience. • Experience and talent in data visualization. • Extensive experience creating workflows for Incident Response within a SIEM Tool. • Security+ Certification. • GIAC Certified Incident Handler Certification. • GIAC Cyber Threat Intelligence Certification. • Cybersecurity certifications. • Formal SIEM training. • Experience working on an Agile More ❯

Splunk core components. • Experience configuring and deploying data collection for a variety of operating systems and networking platforms. • Experience creating Dashboards and Analytics within SIEM tools. • Experience working with monitoring systems supporting auditing, incident response, and system health. • Must have a solid understanding of networking components and devices, ports … a related discipline. • Network Security Operations Center (SOC) experience. • Experience and talent in data visualization. • Extensive experience creating workflows for Incident Response within a SIEM Tool. • Security+ Certification. • GIAC Certified Incident Handler Certification. • GIAC Cyber Threat Intelligence Certification. • Cybersecurity certifications. • Formal SIEM training. • Experience working on an Agile More ❯