SIEM Engineer

BT Group

View: 109

Update day: 04-06-2024

Location: Skelmersdale North West

Category: High Technology Mechanical / Technical Electrical / Electronics IT - Software

Industry: Telecommunications

Job type: Full-time

Loading ...

Job content

Job Req ID:4955Posting Date:06-Jan-2023Function:SecurityLocation:Skelmersdale, United KingdomSalary:CompetitiveThe National Management Centre (NMC) will provide visibility and control of information risks for Policing. It will support the 24x7x365 nature of the police operations, providing a threat detection and response capability for digital services before, during and after cyber-attacks, enabling stakeholders to understand and proactively manage risk across the technology estate at both the national and force levelAs the NMC SIEM Content Delivery Specialist security incidents carry financial costs and can impact our brand and reputation. Proactively preventing, detecting, and responding to incidents allows NMC to manage and reduce its risk.
  • Delivering great customer experience by engaging with internal and external customers, seeking feedback and utilising this to improve and transform.
  • The NMC SIEM Content Delivery Specialist Role will be available Monday to Friday normal Business hours
  • The NMC SIEM Content Delivery Specialist role places real value in finding and adapting ways to protect and support our people, customers & communities.
During this role, you will continuously identify operational and technical improvements that can be made within the NMC with a focus on automation. In addition, you will input new IOCs and content based on Threat Intel or any NMC services into the SIEMs.What you’ll be doing:
  • You’ll be responsible and accountable for new and updated rules, log sources, dashboard and documentation
  • Continuously identifying operational and technical improvements that can be made within the SIEM tools
  • The role is responsible and accountable for:
  • The lifecycle of a use-case
  • The lifecycle of a dashboard.
  • The lifecycle of a log source.
  • The role is responsible for supporting playbook creation (configuration) of existing or new log-sources
  • The role is responsible for defining time and risk information related to the delivery of the use-case dashboard and log source deliverables.
Skills:
  • Proven experience in SIEM content delivery
  • Content provision in line with log source integration
  • Playbook support
  • The role owner will need to have specific expertise and experience of SIEM technology and on various log source types. They also need to have numerical/science skills to perform profiling of performance of SIEM rules, triggers, use-cases.
  • The role owner will need to be able to maintain as-is but also onward develop the configuration of the SIEM tooling to meet the agreed use-cases and future use-cases
What you might have:
  • Evidence of a proven track record in delivering SIEM content
  • Awareness of the threat landscape and how that informs SIEM content delivery.
  • Ability to convert elements such as Postattack Frameworks and Threat Intel into deliverable content.
  • SME in SIEM technology
  • Development of SIEM rules and use-cases
  • Experience of working in an operational security environment
  • Experience in internal and external stakeholder management and engagement
What’s in it for you?If you have the drive, optimism, and resilience to help propel us forward we’ll offer unrivalled personal development, a wealth of opportunities to learn, experience new things and pursue new careers. If that’s you and what you’re looking for, we’d love you to be part of our future!In addition, benefits of working for BT include:
  • Competitive salary
  • World-class training and development opportunities
  • 10% Target Bonus
  • Discounted broadband, mobile and TV packages
  • Share option and pension scheme programmes
  • Flexible & Smart Working
  • Well-being support for you & your family
BT is an equal opportunities employer. We’re working hard to create an inclusive working environment, where people from all backgrounds can succeed. We want to make sure your recruitment experience is the best it can be – so, if you’re selected for an interview, please let us know if there’s any adjustments we can make that would be helpful for you.How To ApplyIt’s easy to apply online; you just need a copy of your up-to-date CV and to follow the step-by step process. Don’t worry if you need to make changes - you’ll have the opportunity to review and edit your work on the final page. We look forward to receiving your application!
Loading ...
Loading ...

Deadline: 19-07-2024

Click to apply for free candidate

Apply

Report job
Loading ...
Loading ...

SIMILAR JOBS

Loading ...
Loading ...