Joining as our Cyber Operations Engineer - SIEM Specialist, you will support and lead the delivery of Security Information and Event Management (SIEM) usage within Wessex Water under our security improvement programs.
You will fully integrate SIEM technology and its operation with the activities and processes of the Cyber Security team and the wider business. This will include a broad range of project and operational responsibilities, principally focused on the development of the current SIEM tool. The role will include SIEM SOC management, internal use case development, source integration and development, and supporting/educating SIEM users across projects.
The roleYou will:
- execute and champion the collection, analysis and validation of all SIEM source data and activities.
- support the Security SecOps team and project teams to integrate and align MSSP services and develop systems and processes.
- support the enrolment of information into the SIEM tool for visibility of security information and event activities within those assets.
- deliver secure build standards and profiles using the SIEM tool.
- assess enterprise risk and system architecture to understand risk profile and vulnerability.
- accurately document SIEM practices, capturing functional, administrative and analytical processes to develop SIEM use.
- ensure the integrity and efficiency of the SIEM tooling in use, manage tuning and optimization of the SIEM infrastructure to capture relevant/required security information and events, as well as reducing noise where possible.
- evaluate the implementation and usage of current tooling and the drive adoption of improvements to current processes, including the development of proactive threat hunting techniques and processes.
- maintain the awareness of security technology trends and developments (including cloud, identity, access control, automation and SOAR) to guide future security improvements.
- support the Cyber Security SecOps team with operations, investigations and capability development (project) responsibilities.
What do you need?You will:
- be experienced with LogRhythm and Sentinel (advantageous)
- provide advice and practical assistance on information security risk and control.
- have in-depth knowledge of SIEM and SOAR technology?including designing, maintaining and troubleshooting the SIEM ?
- document all processes and procedures, using cases and playbooks building a repository of all SIEM information.
- have strong experience in developing quality dashboard
- proactively identify issues by becoming familiar with technical and business environments while providing recommendations for resolution to these issues.
- have demonstrable knowledge of security engineering standards, practices and procedures.
- have very strong written and verbal communication skills, with experience documenting procedures, security requirements and reporting.
- be able to clearly explain topics and concepts to colleagues at different technical levels.
You will also need to have at least one of the following or equivalent Industry qualifications:
- advanced experience with SIEM platforms
- advanced certifications from SIEM vendors
- knowledge on MITRE ATT&CK, TTPs.
Benefits for you - Pension - up to 20% combined contribution
- 25 days' holiday rising to 28 with length of service
- Opportunity to buy and sell holiday
- Health benefits package
- Life assurance (up to four times your salary)
- Electric vehicle salary exchange
- Flexible working
- Cashback and discounts from over 1,200 retailers
- Paid volunteering day
- Enhanced family leave
- Interactive health and wellbeing platform
- Support from mental health first aiders
- £1,000 referral fee if you recommend someone to work for us
What will you get from us?Our people tell us Wessex Water is a great place to work, and they stay with us! We are proud of how we support development and career progression. We have a wealth of both financial and non-financial benefits to offer our people and are committed to ensuring we provide an environment that supports health and wellbeing and flexible working.
We continue to promote diversity and inclusion. With that in mind, we welcome all applicants.
We are delighted to have signed the Armed Forces covenant and are a Disability Confident Employer. Applicants who declare they have a disability or have previously served with the Armed Forces, and meet the minimum requirements for the job, will automatically be invited for an interview.
Please let us know if you require any additional support or adjustments to assist you in starting your journey with Wessex Water.
If you have what it takes to join this award-winning business and want to be part of our exciting journey and share in that success, then please get in contact with us to find out more.
Sound interesting? Please click APPLY to progress to the next step. Back Apply now
We do not accept CVs from recruitment agencies. We are an equal opportunities employer. You must be able to provide proof of your eligibility to work in the UK and proof of skills and qualifications gained. Appointment of successful applicant/s will also be subject to receiving suitable references and basic (or where job applicable) other criminal disclosure checks.
We respect and value everyone's contribution. Wessex Water is an equal opportunities employer. We are committed to providing an environment that supports and encourages the many skills, interests, backgrounds and experiences that people from different social groups can bring. We strive to provide a workplace which is free from discrimination, harassment and bullying, and where everyone is treated with dignity and respect.
If you have a medical condition, disability or learning difficulty which could impact on your ability to apply or take part in the recruitment process, please email careers@wessexwater.co.uk . We are dedicated to treating all existing and prospective colleagues fairly and will do everything we can to support you during the application and selection process.