SECURITY CLEARED/NPPV3 SOC ENGINEER - £600 PER DAY - 6 MONTHS ROLLING - SKELMERSDALE 

My client are looking for a Security Cleared SOC Engineer to join an exciting long term programme initially in Skelmersdale (Hybrid) following full training which is provided. 

The ideal candidate will be skilled with and expected to carry out the below:

Your Accountabilities
• You’ll be responsible and accountable for new and updated rules, log sources, dashboard and documentation
• Continuously identifying operational and technical improvements that can be made within the SIEM tools
• The role is responsible and accountable for:
o The lifecycle of a use-case
o The lifecycle of a dashboard.
o The lifecycle of a log source.
• The role is responsible for supporting playbook creation (configuration) of existing or new log-sources
• The role is responsible for defining time and risk information related to the delivery of the use-case dashboard and log source deliverables.
• The Role will create or modify standard and custom rules either with a manual custom rule or via automation within the NMC SIEMs.
• The role will continuously identify operational and technical improvements that can be made within the NMC with a focus on automation.
• Peer review activities as requested by NMC Operations SLT.
• Creation of content on SIEM
• Creation rules on SIEM
• Input new IOCs and content based on Threat Intel or any NMC services into the SIEMs.
• Highlight parsing issues (reactive)
• Tuning of existing content in liaison with other NMC services.
• Regular Performance conversation with BT People Manager
• Utilise the My Performance approach and coaching conversations to challenge and develop yourself and others.

Skills required for the job
• Proven experience in SIEM content delivery
• Content provision in line with log source integration
• Playbook support
• The role owner will need to have specific expertise and experience of SIEM technology and on various log source types.

They also need to have numerical/science skills to perform profiling of performance of SIEM rules, triggers, use-cases.
• The role owner will need to be able to maintain as-is but also onward develop the configuration of the SIEM tooling to meet the agreed use-cases and future use-cases

Experience you would be expected to have
• Evidence of a proven track record in delivering SIEM content
• Awareness of the threat landscape and how that informs SIEM content delivery.
• Ability to convert elements such as Postattack Frameworks and Threat Intel into deliverable content.
• SME in SIEM technology
• Development of SIEM rules and use-cases
• Experience of working in an operational security environment
• Experience in internal and external stakeholder management and engagement

Team Responsibilities and Functions
• Collaborate with other NMC services for the tuning of the SIEM platforms.
• Collaborate with other NMC services for opportunities to automate where possible
• Collaborate with other NMC services for to drive new content and revise exiting content within the SIEMs

£600 per day inside IR35 ( for Skelmersdale work during training period expenses maybe provided. 

**Candidates must have a current SC clearance or NPPV3 equivalent**