Senior Cyber Security Engineer

Job Description

A Council in London is seeking a Contract Senior Cybersecurity Engineer for 6 months. With the strategic deployment of an outsourced Security Operations Center (SOC) that leverages Splunk and CrowdStrike , the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment.

The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence.

Key Responsibilities

- Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon

- SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats.

- Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment.

- Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times.

- Threat Hunting: Proactively search for undetected malicious activity using specialized queries.

- Training . Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team.

Required Experience

- Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role.

- CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus.

- Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES).

- Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK

- Vulnerability Assessment : 2+ years using VA tools would be a bonus

- Penetration Testing : Exposure to Penetration Testing and Web Application Testing.