SIEM Principal Engineer

Sorry, this job was removed at 04:44 p.m. (GMT) on Friday, Oct 04, 2024
Be an Early Applicant
Remote
5-7 Years Experience
Information Technology • Consulting
The Role

Thanks for checking out our job opening; we are excited that YOU are interested in learning more about NCC Group.

We are on a mission to make society a safer and more secure place. Our people are the ones who make that possible; a global community of talented individuals working together towards a safer future.

We aim to create an environment where everyone can reach their full potential. We work together, we are brilliantly creative, we embrace difference, and we want you to join in our mission, as Principal SIEM Engineer.

Take a look at our website here to learn more about why we’re one of the leading global Cyber Security and Risk Mitigation business… https://www.nccgroup.com/uk/

The Opportunity

A successful candidate will be responsible for the day-to-day support and operations of several SIEM solutions within our Leeds based SOC. Roles and responsibilities for this role include, but may not be limited to: 

  • Maintaining the NCC Group SOCs SIEM platforms 

  • Onboard and manage SIEM event sources and transition through to live SOC Managed Services. 

  • Assisting in the development of new SOC infrastructure to assist in SIEM and surrounding SOC requirements. 

  • Providing guidance and support to SOC personnel regarding SIEM operations, concepts, and development. 

  • Collaborating with our Analytics Development capability to create and deploy new detection mechanisms (both traditional analytics and machine learning techniques). 

  • Providing SIEM expertise to support Security Analysts during incidents and investigations. 

  • Collaborating with other teams to help develop and drive improvements/progression. 

A successful candidate would be able to provide security advice to customers to help them develop their security awareness and infrastructure. Working for a Security Partner requires a surrounding knowledge and experience of security awareness, incidents response, and management. 

The Challenge

As a Principal SIEM Engineer, you will be a subject matter expert in SIEM technologies, responsible for designing, implementing, and optimizing SIEM solutions. Your role involves advanced technical contributions and providing guidance to other engineers. Key behaviours and responsibilities include: 

Technical Leadership: Serve as the go-to expert for SIEM architecture, design, and implementation, offering guidance to the engineering team. 

Implementation: Deploy and configure SIEM tools, integrating data sources and creating correlation rules to identify and respond to security incidents. 

Optimization: Continuously refine SIEM configurations, rules, and alerts to enhance threat detection accuracy and reduce false positives. 

Research: Stay informed about emerging threats and vulnerabilities, applying that knowledge to improve the organization's security posture. 

Collaboration: Collaborate with other security and IT teams to ensure seamless integration of SIEM solutions within the broader technology ecosystem. 

Training: Provide training and knowledge sharing sessions to enhance the skills of SIEM engineers and analysts. 

Documentation: Create detailed technical documentation for SIEM solutions, including architecture diagrams and operational procedures. 

Essential Skills

At NCC Group we are passionate about passionate people; someone who wants to join in our mission of making the world safer and more secure, whilst learning new skills and advancing their career forward.

In terms of technical and behavioral capabilities, we are looking for individuals who have experience in the following areas:

Minimum Requirements 

  • Splunk Enterprise Certified Administrator 

Desirable Requirements 

  • Splunk Cloud Certified Administrator 

  • Splunk Cloud Certified Architect

  • CompTIA Certifications (Security+/ Network+/ Linux+) 

  • Crest, GIAC or CISSP Certification 

  • Degree in related field. 

  • Other relevant certifications. 

Behaviors

Detail-Oriented: Pay close attention to details when configuring and monitoring SIEM tools to ensure accurate threat detection and incident response. 

Proactive: Demonstrate a proactive approach to monitoring and responding to security events, taking the initiative to investigate and escalate as needed. 

Learning Mindset: Exhibit a strong desire to learn and stay current with SIEM technologies, cybersecurity trends, and emerging threats. 

Collaboration: Work well within a team environment, communicating effectively with colleagues from different departments and sharing insights to improve security posture. 

Critical Thinking: Apply logical and analytical thinking to assess security incidents, troubleshoot issues, and make informed decisions. 

Adaptability: Embrace changes in technology and processes, adapting to new challenges and learning quickly in a dynamic security landscape. 

Professionalism: Conduct oneself with professionalism, integrity, and ethical behaviour in all interactions and situation 

Please do not hesitate to apply.

About NCC Group

The NCC Group family has over 2,000 members located all around the world, providing a trusted advisory service to 15,000 customers. Born in the UK, we have now have offices in North America, Canada, Europe, Asia- Pacific and United Arab Emirates.

We are passionate about helping our customers to protect their brand, value and reputation against the ever-evolving threat landscape. We fuel that passion with investment in our people and our business.

Our values and code of ethics are at the heart of how we operate – we work together, we are brilliantly creative, and we embrace difference. We treat everyone and everything with equal respect.

We want to create an environment where all colleagues feel psychologically, emotionally and physically safe to be authentic, sharing their personal experiences to represent the diversity of the world they live in, and have equal opportunity to achieve their best.

About your application

We review every application received and will get in touch if your skills and experience match what we’re looking for. If you don’t hear back from us within 10 days, please don’t be too disappointed – we may keep your CV on our database for any future vacancies and we would encourage you to keep an eye on our career opportunities as there may be other suitable roles.

If you do not want us to retain your details, please email [email protected]. All personal data is held in accordance with the NCC Group Privacy Policy. We are committed to diversity and flexibility in the workplace. If you require any reasonable adjustments to support you during the application process, please tell us at any stage.

Please note that this role has background clearance as mandatory due to the nature of the work NCC Group does. To apply, you must be willing and able to undergo the vetting process.

The Company
Manchester
2,292 Employees
On-site Workplace

What We Do

We assess, develop and manage cyber threats across our increasingly connected society. We advise global technology, manufacturers, financial institutions, critical national infrastructure providers, retailers and governments on the best way to keep businesses, software and personal data safe.

With our knowledge, experience and global footprint, we are best placed to help businesses identify, assess, mitigate & respond to the risks they face.

We are passionate about making the Internet safer and revolutionising the way in which organisations think about cyber security.

Headquartered in Manchester, UK, with over 35 offices across the world, NCC Group employs more than 2,000 people and is a trusted advisor to 15,000 clients worldwide

Jobs at Similar Companies

Samsara Logo Samsara

Finance & Strategy Manager - G&A

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Miami, FL, USA
2800 Employees

Samsara Logo Samsara

Account Development Representative - France

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote
France
2800 Employees

Arrow Electronics, Inc. Logo Arrow Electronics, Inc.

VP Sales - Europe Head (Einfochips)

Cloud • Enterprise Web • Hardware • Information Technology • Internet of Things • Robotics • Semiconductor
München, Bayern, DEU
22000 Employees

Cloudflare Logo Cloudflare

Systems Engineering - Metrics and Alerting

Cloud • Information Technology • Security • Software • Cybersecurity
Remote
Amsterdam, NLD
3900 Employees

Similar Companies Hiring

iManage Thumbnail
Software • Productivity • Legal Tech • Information Technology • Cloud • Artificial Intelligence
Chicago, IL
980 Employees
Workrise Thumbnail
Software • Professional Services • Information Technology • Energy
Austin, TX
275 Employees
Nisos Thumbnail
Security • Professional Services • Data Privacy • Cybersecurity • Consulting
Arlington, VA
78 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account