Staff InfoSec Engineer SIEM

Job Description


Salary/ Benefits
In order to attract the very best talent on the market a generous remuneration package is on offer. My client is open to considering a more junior person who can grow into the role and develop their skills. Equally they will consider a more experienced hire who can hit the ground running. For this reason, the salary bracket is between £40,000 and £80,000 plus bonus and a range of fantastic benefits including unlimited holidays!

The Client
VANRATH are pleased to be working with an industry leading technical services firm who are recruiting for a high calibre candidate to fill the position of Staff Information Security Engineer - SIEM.

The Ideal Person

  • Bachelor's degree required Computer Science or experience as a SIEM Engineer
  • Cybersecurity or information technology practitioner experience
  • Proficient in one or more SIEM (e.g., QRadar, Splunk, LogRhythm, ArcSight, Securonix, Sumo Logic, Exabeam, ElasticSearch)
  • Knowledge of DevOps technologies such as SONAR is a big plus
  • Knowledgeable of and hands-on experience with supporting intrusion detection/prevention systems (IDS/IPS), firewalls, endpoint solutions, data loss prevention (DLP), Active Directory (AD), and application security. intermediate required
  • Ability to analyze event and incident logs and work with SOC and IR teams to assess security events related to malware, vulnerabilities, exploits, and kill chain methodology
  • Knowledge of operating system configuration (Windows, Unix, Linux) and networking (DNS, DHCP, routing protocols). advanced required
  • Experienced with one or more scripting languages (e.g., Python, PowerShell, Bash, etc.)



The Role

  • Serve as lead engineer for SIEM design, related components, and the confidentiality, integrity, and availability (CIA) of logs.
  • Implement, manage, and maintain event and log collection, reporting, and compliance requirements.
  • Design and build SIEM dashboards and reporting tools required by technical teams.
  • Tune the SIEM with threat intelligence sources (e.g., premium, industry-shared, open-source, and dark web) and correlate event indicators and threats.
  • Lead and perform the content development within the SIEM platform, including use case creation, dashboard design, tuning of use cases to minimize false positives, development of reporting metrics such as SLA and KPI reports and Log source configuration.
  • Support SOC automation initiatives leveraging playbooks while also using human analysis as needed.
  • Act as an escalation point for the Information Security Analysts to assist and advise on the most complex security threat investigations.
  • Leverage advanced knowledge of security operations, cyber security tools, intrusion detection, and secured networks to integrate with the SIEM platform.
  • Support the Developer Operations, deploying integrated automated security assurance activities.



For further information on this vacancy, or any other Cyber Security, Networks or IT Sales roles in Belfast or wider Northern Ireland, please apply via the link below or contact Jordan Madden on 07871030483 in the strictest confidence.