Senior SIEM Engineer / Technical SME
Ref: BBBH66585_1776242979Senior SIEM Engineer / Technical SME
Whitehall resources are looking for a Senior SIEM Engineer / Technical SME. This role is mainly remote working with occasional travel to the office in West-Surrey for an initial 6-month contract.
***Inside IR35***
Skills and Experience:
KQL:
- Able to develop and maintain high‑fidelity detection rules using Kusto Query Language
- Able to utilize KQL for detection engineering, analytics, and threat‑hunting.
Microsoft Sentinel:
- Act as the technical SME
- Hands‑on experience including analytics rules, connectors, and workbooks.
- Ensure platform reliability and data quality.
- Coordinate the end‑to‑end onboarding of log sources into Sentinel.
Overview:
- Expert in KQL
- Technical SME for Sentinel set up
- Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity).
- Experience onboarding data using AMA, DCRs, syslog/CEF, and Event Hub integrations.
- Comfortable using AI assisted tooling (e.g., Copilot for Security) to enhance productivity.
All of our opportunities require that applicants are eligible to work in the specified country/location, unless otherwise stated in the job description.
Whitehall Resources are an equal opportunities employer who value a diverse and inclusive working environment. All qualified applicants will receive consideration for employment without regard to race, religion, gender identity or expression, sexual orientation, national origin, pregnancy, disability, age, veteran status, or other characteristics.
Apply Now
Your IT Specialist
