Senior Cyber Security Specialist

Marcus Donald People are currently looking for a well-rounded Senior Cyber Security Specialist who has ideally got practical Microsoft Sentinel knowledge alongside good experience with SOAR tools.

One of your main responsibilities will be to develop Microsoft Sentinel content including Detection rules, Functions, Playbooks, LogicApps and Query Time Parser! With this being said, Microsoft Sentinel experience would be fantastic however, depth of experience with alternatives like AlienVault, Splunk, ArcSight, LogRhythm would be great also!

* £70,000 - £80,000 per annum + very good benefits *
** 100% remote / OR there are offices in Manchester, Leeds, Newcastle & Berkshire **
(They are open to someone working remotely, as long as you don’t come in with the mindset of never wanting to come into an office)
 
Although other SIEM experience such as Splunk & ArcSight would be ideal, we need someone who would be comfortable across a range of SIEM alerting platforms, as you will be an important member of the team in the Development of SOC triage runbooks for developing threats.

Senior Cyber Security Specialist – Requirements:

• Requirements analysis and SIEM Use Case design, validation, and testing in QA
• Ability to develop use cases from scratch
• Previous experience of continuously improve existing runbooks
• In Depth knowledge of the MITRE ATT&CK framework
• Contribute to Cyber systems and infrastructure integration initiatives within the business
• Experience Automating and orchestrating using APIs
• strong customer-facing experience or engagement across a variety of customers in terms of Threat detection solutioneering
• Good interpersonal skills and personable

Senior Cyber Security Specialist – Desirable:

• Microsoft Sentinel but if not, then depth of experience with alternatives like AlienVault, Splunk, ArcSight, LogRhythm.
• Previously worked with Terraform
• Working Experience with common CI/CD frameworks/tooling (Jenkins/Circle CI/Git Pipelines)
• Python scripting/development work within security domains. KQL would be a strong bonus too

Ultimately you would be joining a Site Reliability Engineering team that is focussed towards delivering complete technical solutions using leading technology. The Site Reliability team you will be joining consists of System Developers, Software Engineers, Architects & Support Engineers and their main focus as a team is to design suitable solutions to progress relative team functionalities.

Experience with SIEM Platforms, including working with logs and creating correlation searches and dashboards is vital here and the projects and responsibilities you will have solid involvement with, will really enhance your overall knowledge and therefore, offerings as a Cyber Expert!

This is a great opportunity for someone who values the customer experience as well as someone who has the technical capacity to engage with multiple technologies, customers and third parties simultaneously. If you would like to discuss this in further detail, contact me at bjames@marcusdonald.com or call 020 3328 0400.