about 1 month ago
Elastic SIEM engineer SOC / SIEM specialist, Immediate opportunity.
Reading / London
Immediate opportunity. Elastic SIEM engineer SOC / SIEM specialist to join a Security Operation Centre unit in a technical client facing engineer role.
SIEM experience is essential- Elastic SIEM will be used in the environment. Current knowledge is preferred and prioritised.
Individuals must be able to acheive UK SC security clearance.
Specific experience; Installation and Configuration, Indexing Data, Analytics, Queries, Aggregations, Mappings, Text Analysis, Cluster Administration etc
Individuals with a Splunk, QRadar (IBM), ArcSight skillset with architecture / querying background will be cross trained. (Elastic Certified Engineer)
MUST have deep technical experience working within a managed SOC environment.
The role will include, but not be limited to
External: Onboarding customers, SIEM deployment, Configure, Administer (fine tune), updates, use cases etc.
Internal: managing infrastructure, health checks, aiding in the creation / automation of playbooks, internal architecture review design, policy review, working as an escalation point.
This role is specifically ensuring MINIMUM levels of admin. Reporting of monthly metrics, specific customer reports etc will largely be delivered by an admin team.
Cross platform experience essential Microsoft, Linux, Unix etc
Training budgets and long term career opportunities.
All details kept in the strictest of confidence.
Book a call with Chris using the following link https://calendly.com/chris-holt/arranged-call-with-chris-holt-elastic-siem-engineer-soc