Senior Cyber Security Specialist - Remote, United Kingdom - Marcus Donald People

Marcus Donald People

Verified Company

Remote, United Kingdom

3 weeks ago

Posted by:

Tom O´Connor

beBee Recruiter

Description

One of your main responsibilities will be to develop Microsoft Sentinel content including Detection rules, Functions, Playbooks, LogicApps and Query Time Parser With this being said, Microsoft Sentinel experience would be fantastic however, depth of experience with alternatives like AlienVault, Splunk, ArcSight, LogRhythm would be great also

£70,000 - £80,000 per annum + very good benefits

100% remote / OR there are offices in Manchester, Leeds, Newcastle & Berkshire
(They are open to someone working remotely, as long as you don't come in with the mindset of never wanting to come into an office)

Although other SIEM experience such as Splunk & ArcSight would be ideal, we need someone who would be comfortable across a range of SIEM alerting platforms, as you will be an important member of the team in the Development of SOC triage runbooks for developing threats.

Senior
Cyber Security Specialist
- Requirements:

Requirements analysis and SIEM Use Case design, validation, and testing in QA
Ability to develop use cases from scratch
Previous experience of continuously improve existing runbooks
In Depth knowledge of the MITRE ATT&CK framework
Contribute to Cyber systems and infrastructure integration initiatives within the business
Experience Automating and orchestrating using APIs

- strong customer-facing experience or engagement across a variety of customers in terms of Threat detection solutioneering

Good interpersonal skills and personable

Senior
Cyber Security Specialist
- Desirable:

Microsoft Sentinel but if not, then depth of experience with alternatives like AlienVault, Splunk, ArcSight, LogRhythm.
Previously worked with Terraform
Working Experience with common CI/CD frameworks/tooling (Jenkins/Circle CI/Git Pipelines)
Python scripting/development work within security domains. KQL would be a strong bonus too

Ultimately you would be joining a Site Reliability Engineering team that is focussed towards delivering complete technical solutions using leading technology.

The Site Reliability team you will be joining consists of System Developers, Software Engineers, Architects & Support Engineers and their main focus as a team is to design suitable solutions to progress relative team functionalities.

Experience with SIEM Platforms, including working with logs and creating correlation searches and dashboards is vital here and the projects and responsibilities you will have solid involvement with, will really enhance your overall knowledge and therefore, offerings as a Cyber Expert