Cyber Security Consultant - SIEM Content Development

6 days left

CBS Butler
£65000 - £70000 per annum
01 Jul 2021
29 Jul 2021
Charlie Cameron
Business Management
Contract Type
Full Time
Cyber Security Consultant - SIEM Content Development

- Permanent Opportunity

- Role is based in Brentford

- Up to 60/40 split between being on site and remote

- Paying between £65,000 - £70,000 per annum

Job Description

SIEM Content Development Specialist works in the Cyber Security Operations Team. This role is at the heart of the CDO team and a SIEM Content Development Specialist can expect to be involved concurrently in a number of areas like content development, security analytics, security reporting and advisories, residual risk assessment etc.

Required Skills


Solid experience in SIEM content development and refinement.

Prior experience of SOC analyst experience (Level2 or above) required

In depth and extensive hands-on experience in security event analysis, create and refine SIEM/EDR rules and deliver efficiency within the SIEM and all other technologies used within the team

Deep knowledge of IPv4/IPv6, TCP networking protocols

Deep knowledge of Windows/Linux operating systems

Good working knowledge of security technologies such as SIEM (ArcSight, Sentinel, QRadar, LogRhythm, Splunk), EDR (Microsoft Defender, FireEye, Tanium), IDS/IPS, firewalls, proxies, web application firewalls, anti-virus, etc.

Understanding of Window Security Event logs and Syslog

Excellent familiarity with endpoint/perimeter security attack vectors and detection (blue/purple teaming)

Familiarity with standard security frameworks such as MITRE, cyber kill chain and APT campaign strategies

Good knowledge of cloud platforms such as Azure, O365, Google cloud, AWS, Oracle

Good working knowledge of regular expression development

Scripting and programming experience is highly desirable

Kusto or SQL knowledge, including rule/query optimisation

Proven ability to prioritise workload, meet deadlines and utilise time effectively

Good interpersonal and communication skills, works effectively as a team player and the ability to communicate technical information to a non-technical audience

Apply for Cyber Security Consultant - SIEM Content Development

Already uploaded your CV? Sign in to apply instantly


Upload from your computer

Or import from cloud storage

Your CV must be a .doc, .pdf, .docx, .rtf, and no bigger than 1MB

4000 characters left

Marketing Communication

We'd love to send you information about Jobs and Services from by email.

All emails will contain a link in the footer to enable you to unsubscribe at any time.

When you apply for a job we will send your application to the named recruiter, who may contact you. By applying for a job listed on you agree to our terms and conditions and privacy policy. You should never be required to provide bank account details. If you are, please email us.