Cyber Security Consultant - SIEM Content Development

6 days left

Recruiter
CBS Butler
Location
Brentford
Salary
£65000 - £70000 per annum
Posted
01 Jul 2021
Closes
29 Jul 2021
Ref
1172725/002
Contact
Charlie Cameron
Discipline
Business Management
Contract Type
Permanent
Hours
Full Time
Cyber Security Consultant - SIEM Content Development



- Permanent Opportunity

- Role is based in Brentford

- Up to 60/40 split between being on site and remote

- Paying between £65,000 - £70,000 per annum



Job Description



SIEM Content Development Specialist works in the Cyber Security Operations Team. This role is at the heart of the CDO team and a SIEM Content Development Specialist can expect to be involved concurrently in a number of areas like content development, security analytics, security reporting and advisories, residual risk assessment etc.

Required Skills



*

Solid experience in SIEM content development and refinement.
*

Prior experience of SOC analyst experience (Level2 or above) required
*

In depth and extensive hands-on experience in security event analysis, create and refine SIEM/EDR rules and deliver efficiency within the SIEM and all other technologies used within the team
*

Deep knowledge of IPv4/IPv6, TCP networking protocols
*

Deep knowledge of Windows/Linux operating systems
*

Good working knowledge of security technologies such as SIEM (ArcSight, Sentinel, QRadar, LogRhythm, Splunk), EDR (Microsoft Defender, FireEye, Tanium), IDS/IPS, firewalls, proxies, web application firewalls, anti-virus, etc.
*

Understanding of Window Security Event logs and Syslog
*

Excellent familiarity with endpoint/perimeter security attack vectors and detection (blue/purple teaming)
*

Familiarity with standard security frameworks such as MITRE, cyber kill chain and APT campaign strategies
*

Good knowledge of cloud platforms such as Azure, O365, Google cloud, AWS, Oracle
*

Good working knowledge of regular expression development
*

Scripting and programming experience is highly desirable
*

Kusto or SQL knowledge, including rule/query optimisation
*

Proven ability to prioritise workload, meet deadlines and utilise time effectively
*

Good interpersonal and communication skills, works effectively as a team player and the ability to communicate technical information to a non-technical audience

Apply for Cyber Security Consultant - SIEM Content Development

Already uploaded your CV? Sign in to apply instantly

Apply

Upload from your computer

Or import from cloud storage

Your CV must be a .doc, .pdf, .docx, .rtf, and no bigger than 1MB


4000 characters left

Marketing Communication

We'd love to send you information about Jobs and Services from jobs.theengineer.co.uk by email.

All emails will contain a link in the footer to enable you to unsubscribe at any time.


When you apply for a job we will send your application to the named recruiter, who may contact you. By applying for a job listed on jobs.theengineer.co.uk you agree to our terms and conditions and privacy policy. You should never be required to provide bank account details. If you are, please email us.