We're looking for people to assist with some work on SIEM - both operations and development.
Trellix
Location is preferably Ipswich or Birmingham, and we would support hybrid working so not in the office every day. Will need someone until at least the end of March 2025.
Rate inside IR35:
We need an experienced Trellix engineer who can come in and make an immediate impact.
Some of the areas in SIEM that they would be supporting:
1. Actioning front door requests
2. Data source Integrations/Decoms
3. Dealing with platform incidents and actioning change requests
4. Raising and managing Service requests with the Vendor Trellix and attending regular service requests calls
5. Monthly metrics gathering
6. Management of user access
7. Assist with patching/upgrading
8. Assisting with housekeeping tasks (Reporting, Alarms, watchlists, filtering out unnecessary events, fixing bad event times etc)
9. Capacity management
Elastic SIEM
We're currently building a replacement for the Trellix SIEM using Elastic SIEM. In this case it's a more generic request for profiles for people with Elastic (definitely) SIEM (preferably) experience to help us develop the solution and onboard feeds from BT systems. Again Birmingham would be the preference.
Please send your latest CV.
#J-18808-Ljbffr