SIEM Engineer / Administrator

England, West Yorkshire, Leeds
£35000 - £40000 per annum + benefits
29 Aug 2020
26 Sep 2020
Vicky Luu
Contract Type
Full Time
SIEM Administrator - Permanent - Leeds - £35k - £40k Per Annum

The Company
An experienced SIEM Administrator is required by a Global consultancy, based in the Leeds office

The Role
The role of the SIEM Administrator will be to work closely with our security team to develop and deliver solutions to gain visibility of security events within our environment. Build new or develop existing event correlation, reporting and remediation capabilities based on advanced monitoring use cases, external threat intelligence, and known traffic patterns.

*Develop and enhance security policies, processes, procedures and technical controls to strengthen security capabilities and resilience to cyber threats
*Take a proactive role in identifying security risks, mitigations and opportunities to strengthen resilience to cyber-attacks and security incidents
*Participate in the design and implementation of systems and applications to ensure that proposed solutions comply with the company's IT Security policies
*Assist with security incident management and response activities
*Interact with the IT team to provide and share technical issue resolution knowledge and deployment/adoption processes best practices
*Provide analysis of information security risk and issues of non-compliance
*Manage, maintain, optimise and tune the Microsoft Sentinel SIEM solution, ensuring all key systems send activity information to the SIEM solution and that the solution recognises and differentiates between both normal and abnormal system activity
*Investigate unusual behaviour highlighted by SIEM, reporting potential threats or malicious activity and support security incident response efforts as required
*Develop dashboards and reports for monitoring of real-time log data, that clearly report on and highlight critical events
*Provide internal training, support and knowledge transfer to other Information Security team members, to enable efficient management of SIEM related processes

Experience Required
*Experience and good understanding of Microsoft technologies including: Azure Active Directory, Windows Server, and M365
*An in depth knowledge of the Microsoft Sentinel SIEM solution and configuration best practice and use
*Use of advanced security assessment tools
*Basic understanding of firewall and intrusion detection system administration
*Basic understanding of TCP/IP
*Ability to tune and harden various operating systems
*Ability to use security systems to correlate and respond to security alerts and events Detailed knowledge of
*SIEM administration, log investigation, analysis and reporting
*Common exploitation tools, tactics and procedures
*Persistent attacks, detection methods and how malicious software persists on compromised systems
*Security incident response procedures and best practices

If you are interested this role, please apply now for immediate consideration!

Spring acts as an employment agency for permanent recruitment and an employment business for the supply of temporary workers. The Spring Group UK is an Equal Opportunities Employer.

By applying for this role your details will be submitted to Spring. Our Candidate Privacy Information Statement explains how we will use your information - please copy and paste the following link in to your browser: