SIEM Engineer (Splunk / Elastic)
Active DV Clearance Required
On-site | Hemel Hempstead
 
I'm looking for a hands-on SIEM Engineer to work on mission-critical Defence and National Intelligence systems. This is not a BAU SOC role. You’ll be owning SIEM capability end to end in some of the most secure environments in the UK.
 
If you do not hold active UK DV clearance, you cannot be considered.
 
This SIEM engineer will:

Work on classified, real-world threats not theoretical use cases
High trust, high autonomy technical role
Influence platform design, detection strategy and automation
Join a small number of engineers trusted with systems that genuinely matter 
In this SIEM role, you will be:

Owning and optimising Splunk ES and/or Elastic Security
Building high-fidelity, MITRE ATT&CK-aligned detections
Designing and maintaining SIEM pipelines (CIM / ECS)
Automating detection and response using CI/CD, SOAR and IaC
E...