SIEM Architect

Employer
ANSON MCCADE
Location
UK
Salary
Competitive
Closing date
14 Aug 2021

View more

Sector
Technology & New Media
Contract Type
Permanent

Job Details

SIEM Architect

Quick Summary:
  • We are looking to recruit a SIEM Architect to join our dynamic delivery team.
  • The SIEM Architect whom is successful, will work closely with both our clients and project teams to provide cutting-edge solutions, within the Defence space.
  • A proven track-record of implementing a LogRhytm SIEM environment will be essential.
  • An experience of Monitoring Enterprise network traffic at Application layer, as well as Log Processing Policy will be critical when applying for the role of SIEM Architect.

The Organisation:

This is an opportunity to work for a trusted UK defence solutions provider, which is constantly innovating and growing meaning that the organisation is one of the largest IT providers in the world.

Joining the organisation will see yourself working alongside people with a diverse variety of backgrounds and identities. Furthermore, being at the forefront of digital transformation and technology, there is a passion at the organisation to create a more inclusive, sustainable and trusted future.

Experience Required:
  • Proven track record of leading the delivery of SIEM technical solutions
  • A proven track record of implementing a LogRhythm SIEM and NetMon environment using physical appliances
  • Experience of creating multiple machine policies including full endpoint monitoring of UAD's
  • Experience of Monitoring Enterprise network traffic at Application layer
  • Experience of the Log Processing Policy and the writing of regular expressions

Technical Skills Required:
  • Experience of creating High Level Designs, Low Level Designs, BOM's and support documentation
  • Experience of implementing a LogRhythm SIEM and NetMon environment using physical appliances monitoring devices, end user activity, collecting and processing logs in accordance with the appropriate architectural patterns e.g. JSP440, GPG13, SafeGuarding GOLD guidelines and standards etc.
  • Experience of creating multiple machine policies including full endpoint monitoring of UAD's employing File Integrity Monitoring, Data Loss Defender CD/DVD and USB port Monitoring, Registry Integrity Monitoring, User Activity Monitoring, Network Activity Monitoring.
  • Experience of creating Regexes and parsing rules for "non-standard" logs
  • Experience of Monitoring Enterprise network traffic at Application layer
  • Experience of the Log Processing Policy and the writing of regular expressions
  • Experience of working with 3rd parties

Package Included:
  • Competitive Salary
  • Car Allowance
  • 15% Bonus
  • DV Bonus if have DV or willing to obtain

Please note that being Security Cleared or able to obtain Security Clearance is essential.

If you have any further questions feel free to email at or simply apply!

This job was originally posted as www.cwjobs.co.uk/job/93221031

Get job alerts

Create a job alert and receive personalised job recommendations straight to your inbox.

Create alert