CrawlJobs Logo
Fynity Logo Fynity · IT - Software Development

Senior SIEM Engineer

United Kingdom, Hemel Hempstead 65000.00 - 80000.00 GBP / Year · Job Posted March 01, 2026
Apply Position
Job Link Share

Job Description

Senior SOC SIEM Content Engineer to join and large expanding SOC team supporting some of the most high-profile defence clients out there. The Senior SIEM Engineer will play a key role in the business building and tuning SIEM content, covering rules, dashboards and reports. If you’re strong technically, know your way around SIEMs and want to use your skills to the full across multiple customers and projects, this SIEM Engineer role could be the move you’ve been looking for.

Job Responsibility

  • Building, tuning and looking after SIEM content such as rules, dashboards, and reports, making sure threats don’t get missed
  • Keeping an eye on the data, spotting issues early and helping us respond quickly
  • Working side by side with Analysts, Architects, PMs and Engineers to make sure the SIEM content hits the mark
  • Bringing the latest threat intel, vulnerabilities and attack methods into our set-up
  • Helping to shape and maintain security standards and procedures

Requirements

  • Solid hands-on experience with SIEM tools like Splunk, Sentinel or QRadar
  • A good grip on security best practices and standards (ISO 27001/27002, PCI DSS)
  • Familiarity with frameworks such as NIST, ISO and CIS
  • Comfortable scripting in Python, PowerShell and regex
  • The ability to work across multiple projects and still keep the detail sharp
  • Willing and able to get DV clearance

What we offer

Hybrid set-up gives you a mix of home and on-site time

Fynity - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Senior SIEM Engineer

8 matching positions

Senior SIEM Detection Engineer

We are seeking an experienced Senior SIEM Detection Engineer to design, implemen...
Location
Location
United States , Austin
Salary
Salary:
Not provided
dutechsystems.com Logo
Dutech Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8+ years of experience in SIEM, cybersecurity, or detection engineering
  • Strong expertise in SIEM detection engineering and alert optimization
  • Experience with log source integration and data normalization
  • Hands-on experience with CrowdStrike SIEM and dashboard development
  • Proven ability in documentation, reporting, and knowledge transfer
  • Strong experience in stakeholder engagement and executive communication
Job Responsibility
Job Responsibility
  • Design and develop SIEM detection rules and alerting mechanisms
  • Optimize alerts to reduce false positives and improve detection accuracy
  • Integrate and onboard log sources across enterprise systems
  • Perform data normalization and parsing to ensure consistent log analysis
  • Build and maintain dashboards and reports for security monitoring and executive visibility
  • Work hands-on with CrowdStrike SIEM for detection and dashboard development
  • Collaborate with security and IT teams to enhance threat detection capabilities
  • Document processes, detection logic, and operational procedures
  • Communicate findings and insights to technical teams and executive stakeholders
  • Support continuous improvement of SIEM performance and security monitoring strategies
Read More
Arrow Right

Senior Security MS Engineer - SIEM

As a Security Managed Services Engineer (L2) at NTT DATA, your role will be to e...
Location
Location
India , Chennai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with managed services handling security infrastructure and working knowledge of ticketing tools, preferably ServiceNow
  • Proficiency in active listening, with techniques like paraphrasing and probing for further information
  • Excellent planning skills, able to anticipate and adjust to changing circumstances
  • Strong ability to communicate and engage across different cultures and social groups
  • Adaptability to changing conditions and flexibility in approach
  • Client-focused mindset, always putting their needs and positive experience first
  • A positive outlook and the ability to work well under pressure
  • Willingness to put in longer hours when necessary
  • Bachelor's degree or equivalent qualification in IT/Computing, or relevant work experience.
Job Responsibility
Job Responsibility
  • Ensure that clients' security infrastructures and systems remain operational
  • Monitor, identify, investigate, and resolve technical incidents and problems
  • Handle client requests or tickets with technical expertise
  • Actively manage work queues, perform operational tasks, and update tickets with resolution actions
  • Log incidents promptly and provide second-level support
  • Execute changes responsibly, flagging risks and mitigation plans
  • Work closely with automation teams to optimize efforts and automate routine tasks
  • Audit incident and request tickets for quality and recommend improvements
  • Assist L1 Security Engineers with triage and troubleshooting
  • Contribute to the change management process.
  • Fulltime
Read More
Arrow Right

Senior Cyber Detection Engineer (SIEM)

Zachary Piper Solutions is seeking a Senior Cyber Detection Engineer (SIEM) to s...
Location
Location
United States , Springfield
Salary
Salary:
135000.00 - 150000.00 USD / Year
pipercompanies.com Logo
Piper Companies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI CI Polygraph required
  • Bachelor’s degree from an accredited college in a related discipline and 5+ years of prior relevant experience
  • IAT Level II (GSEC, Security+, SSCP, or CCNA-Security) certification required
  • Proficient in modern operating systems, including Windows, UNIX, network OS environments, databases, and virtualized computing platforms
  • Experienced with enterprise-grade security tools, such as Security Information and Event Management (SIEM) systems specifically Splunk, Threat Intelligence Platforms (TIPs), and network monitoring solutions
  • Skilled in developing, modifying, and fine-tuning detection mechanisms, including IDS signatures and SIEM correlation rules
  • Knowledgeable in implementing cybersecurity countermeasures and mitigation strategies to reduce risk and enhance system resilience
Job Responsibility
Job Responsibility
  • Support Cyber Operations Squadron (COS) efforts by ensuring timely publication of updated cybersecurity tool signatures, including antivirus and host-based security systems
  • Conduct in-depth threat analysis, including reverse engineering of malware, to uncover critical details such as origin, target, impacted systems, recommended mitigations, and mission risk
  • Develop custom content for Security Information and Event Management (SIEM) tools and create tailored IDS/IPS signatures to counter specific threats
  • Correlate security events and incidents using data from diverse enterprise sources to identify patterns and potential threats
  • Assess the impact of cyber incidents on data and infrastructure, providing detailed evaluations of damage and recovery needs
  • Perform trend analysis and reporting on cyber incidents to identify recurring threats and inform proactive defense strategies
  • Analyze network traffic and system data to detect anomalies and potential security threats
  • Deliver real-time detection, identification, and reporting of cyber intrusions, suspicious activities, and policy violations
  • Create and implement detection rules
What we offer
What we offer
  • Full Benefits: PTO
  • 11 Paid Holidays
  • Cigna Medical, Dental, and Vision
  • 401k with ADP
  • Certification reimbursement
  • Contract mobility and job stability – Contract through 2026
  • Fulltime
Read More
Arrow Right

Senior Security MS Engineer - SIEM

As a Security Managed Services Engineer (L2) at NTT DATA, your role will be to e...
Location
Location
India , Chennai
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience with managed services handling security infrastructure and working knowledge of ticketing tools, preferably ServiceNow
  • Proficiency in active listening, with techniques like paraphrasing and probing for further information
  • Excellent planning skills, able to anticipate and adjust to changing circumstances
  • Strong ability to communicate and engage across different cultures and social groups
  • Adaptability to changing conditions and flexibility in approach
  • Client-focused mindset, always putting their needs and positive experience first
  • A positive outlook and the ability to work well under pressure
  • Willingness to put in longer hours when necessary
  • Bachelor's degree or equivalent qualification in IT/Computing, or relevant work experience
Job Responsibility
Job Responsibility
  • Ensure that clients' security infrastructures and systems remain operational
  • Monitor, identify, investigate, and resolve technical incidents and problems
  • Handle client requests or tickets with technical expertise ensuring resolution within SLA
  • Manage work queues, perform operational tasks, and update tickets with resolution actions
  • Log incidents promptly and provide second-level support
  • Execute changes responsibly, flagging risks and mitigation plans
  • Collaborate with automation teams to optimize efforts and automate routine tasks
  • Audit incident and request tickets for quality and recommend improvements
  • Assist L1 Security Engineers with triage and troubleshooting
  • Support project work when required
  • Fulltime
Read More
Arrow Right

Cyber Systems Engineer Senior Technical Specialist – Project Engineer

The Cyber Systems Engineer Project Management Technical Support provides support...
Location
Location
United States , Westfields, Virginia
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS 12-15, MS 10-13, PhD 10+
  • Must possess and be able to maintain a TS/SCI with Poly
  • Able to support customer’s core hours (0900-1500
  • Mon – Fri)
  • DoD 8570 certification in IAT or IAM
  • Experience with security operations, data analysis, threat detection, and the deployment and optimization of Splunk for enterprise security solutions
  • understanding of Security Information and Event Management (SIEM) and log management
  • Experience supporting project management and acquisitions
  • Experience with customer’s Cybersecurity Processes and tools/capabilities to include Splunk
  • Experience in requirements analysis
Job Responsibility
Job Responsibility
  • Work collaboratively with the government customer and a small team of project managers and developers to ensure successful implementation of Splunk
  • Collaborate with the cyber operations group and act as the liaison between the group and developers to ensure Splunk requirements are understood and being met
  • Provide assessments to the customer on the cybersecurity contractor’s program performance.
  • Develop, maintain, and deliver acquisition artifacts to assist the customer in assessing contractor’s performance
  • Assist in the development of execution reviews, acquisition roadmaps and transition plans
  • Develop briefings and artifacts for acquisition Readiness Reviews
  • Provide technical recaps of customer meetings with cyber security contractors
  • Work closely with the customer Lead and stakeholders to execute contracts
  • Provide technical input for the development of acquisition documentation for review and approval by the customer to include Requests for Contract Action (RCA) packages, RFPs for Engineering Change Proposals (ECPs), and proposal analysis to support negotiation and award activities.
  • Assist in the development, review, and update of acquisition documents to ensure guidance for acquisitions is adequate and current.
  • Fulltime
Read More
Arrow Right

Detection Engineer, Senior

We’re looking for a self‑motivated, hands‑on self‑starter who thrives in environ...
Location
Location
United States , Fort Meade
Salary
Salary:
77600.00 - 176000.00 USD / Year
boozallen.com Logo
Booz Allen Hamilton
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in a security engineering function, such as detection engineering, SOC analytics, or threat hunting
  • Experience contributing to shared rule and detection repositories
  • Experience authoring detections in two or more of the following: Sigma, YARA, Suricata, Splunk SPL, KQL, or SQL/DB‑SQL
  • Experience applying Detection‑as‑Code (DaC) best practices, such as Git workflows, pull requests, automated linting, CI pipelines, unit tests, and metadata enforcement
  • Experience with detection versioning, semantic versioning, changelogs, and ruleset lifecycle management
  • Experience building detections across multiple log sources and platforms, such as EDR/XDR, SIEM, cloud telemetry, and identity providers
  • Ability to demonstrate map detections to MITRE ATT&CK techniques and communicate coverage effectively to stakeholders
  • Ability to communicate detection logic clearly, document rationale, and collaborate with SOC, IR, and engineering partners
  • Ability to obtain a Secret clearance
  • HS diploma or GED
Job Responsibility
Job Responsibility
  • Design, build, test, and maintain production‑grade detections across diverse data sources—endpoint, network, identity, SaaS, and cloud—while applying Detection‑as‑Code (DaC) practices to ensure consistency, scalability, versioning, and automation
  • Collaborate closely with incident responders, hunters, and platform engineers to map rules to MITRE ATT&CK, maintain coverage dashboards, and continuously iterate on fidelity and performance
What we offer
What we offer
  • Health, life, disability, financial, and retirement benefits
  • Paid leave
  • Professional development
  • Tuition assistance
  • Work-life programs
  • Dependent care
  • Recognition awards program
Read More
Arrow Right

Senior Engineer, Security

As a Senior Security Engineer you will be a subject matter expert responsible fo...
Location
Location
United States , Boston, MA
Salary
Salary:
Not provided
atscale.com Logo
AtScale
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6+ years Security Engineering / AppSec experience in high-scale distributed systems
  • Experience securing both cloud and on-prem enterprise software deployments
  • Strong hands-on technical background: code, runtime debugging, containers, K8s, CI/CD
  • Expert level understanding in CVEs, vulnerability management, dependency management, SBOM
  • Experience building/operationalizing threat detection, telemetry, and security logging pipelines
  • Strong SOC 2 execution experience (control implementation + evidence + testable automation)
  • Able to work cross-functionally and influence
Job Responsibility
Job Responsibility
  • Hands-on development and tooling to secure code, containers, runtime, and deployment pipelines
  • Lead CVE remediation efforts and build sustainable CVE automation and gating
  • Implement security telemetry, malware detection, anomaly detection, and secure phone-home supportability for on-prem customers
  • Drive secure coding practices, static/dynamic analysis, threat modeling, and secure SDLC enablement
  • Collaborate with Platform, SRE, DevOps, and QA to harden infra, IAM, and default configurations
  • Participate deeply in code reviews, architecture reviews, and design reviews
  • Lead CrowdStrike SIEM integration efforts, including building custom connectors and data pipelines to enhance visibility, detection coverage, and security monitoring capabilities.
  • Work directly with Sales, Sales Engineering, and customers on security posture, audits, POCs, compliance reviews, and enterprise buyer security questions
  • Own security observability and monitoring, defining logs, metrics, alerts, and dashboards to ensure real-time visibility and rapid threat detection.
  • Manage and coordinate 3rd-party penetration testing engagements, scope definition, evidence delivery, and remediation plans
What we offer
What we offer
  • Competitive compensation, including equity.
  • Flexible, remote-friendly work environment with a strong culture of ownership and trust.
  • Unlimited PTO and competitive benefits.
  • The opportunity to directly shape AtScale’s growth by building the team that powers our next phase.
  • Fulltime
Read More
Arrow Right

Senior Cybersecurity Engineer

Senior Cybersecurity Engineer LOCATION: Eglin AFB, FL JOB STATUS: Full-time C...
Location
Location
United States , Eglin Air Force Base
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s Degree (in Computer Science, Cybersecurity or a related field). Relevant experience may be substituted for the degree
  • 10 Years’ total experience, at least 8 of which is in cybersecurity engineering, architecture or R&D infrastructure
  • Top Secret Clearance with SCI. Eligible for Special Access Program (SAP) access. US Citizenship is required
  • DoD 8570/8140 IAT Level III (CISSP, CISM, or equivalent). Certifications: Security+, CEH, or other relevant security certifications
  • Expert-level knowledge of cybersecurity principles, risk management, and secure computing architectures
  • Hands-on experience with security tools and technologies, such as SIEM, intrusion detection/prevention systems, vulnerability scanners, and endpoint protection solutions. Experience with Host-Based Security System (HBSS), Assured Compliance Assessment Solution (ACAS), Nessus, Tenable.sc, Tenable.io, NNM, LCE, Nessus Manager, Agents, and Scanner
  • Experience with scripting (Python, PowerShell) and automation tools (Ansible, Chef)
  • Familiarity with Risk Management Framework (RMF), Authority to Operate (ATO) documentation, and enclave compliance management
  • Physically able to lift up to 50 lbs
  • adaptable to fieldwork and hands-on installations
Job Responsibility
Job Responsibility
  • Collaborate with network engineers to architect secure network topologies for current and future connected and isolated environments, ensuring security is embedded in the design phase
  • Design and deploy security solutions for S&T environments that support continuous research, development, and DevSecOps, working closely with network engineers to implement and maintain these solutions
  • Advise on security planning for long-term initiatives, including SDREN integration and the Weapons Technology Integration Center (WTIC) and other facility projects, in conjunction with network planning efforts
  • Develop security innovation roadmaps aligned with mission goals and emerging technologies, coordinating with network engineers to ensure alignment with network modernization efforts
  • Coordinate with facilities, engineering, and network teams to ensure robust infrastructure supports secure research operations, focusing on the security aspects of network hardware/power/cooling needs and structured cabling
  • Lead security aspects of containerization, virtualization, and orchestration of systems to support laboratory computing, HPC, and edge devices, working with network engineers to implement secure configurations
  • Engineer multiple S&T networks security architecture in compliance with NIST 800-series, DoD RMF, DISA Security Technical Implementation Guides (STIGs), and cybersecurity best practices, collaborating with network engineers to ensure seamless integration. Review engineering, architecture, and designs to ensure DoD security policies are met
  • Implement DevSecOps pipelines to automate security scans and CI/CD deployments, working with network engineers to integrate security into existing pipelines
  • Manage ATO package development and collaborate with ISSMs, network engineers, and cybersecurity stakeholders to ensure compliance. Review and develop RMF Assessment and Authorization (A&A) documentation, e.g. System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms)
  • Integrate identity management and single sign-on solutions across enclaves and hybrid environments, coordinating with network engineers to implement and maintain these solutions. Analyze and tune HBSS policies for assets during integration test events. Perform verification and troubleshooting across all HBSS modules. Install updates to HBSS software as released and in compliance with STIG requirements. Monitor HBSS software to ensure that the clients/servers are operational and reporting properly
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right