Robert Half is supporting a Global Consulting Firm in recruiting a Logstash Engineer for a crucial role within their security operations team. This project involves enhancing and optimising SIEM capabilities with a focus on configuring Logstash within the ELK stack to improve log aggregation, threat detection, and response processes. The ideal candidate will bring hands-on expertise with Logstash configuration, fine-tuning, and troubleshooting within a SIEM environment, as well as broader SOC experience. This role is essential for ensuring a streamlined and resilient SOC environment during a high-demand period, setting the foundation for future scalability.
Assignment Details:
* Location : Remote
* Duration : Initial 5-6 week contract with potential to extend into the new year as a larger role develops
* Day Rate : £600-700 per day via PAYE
* Start Date : Immediate, with approximately weeks for onboarding and setup
Key Responsibilities:
• Provide technical, hands-on support in configuring and optimising Logstash within the ELK stack, focusing on efficient log aggregation to enhance threat detection.
• Support the SOC team by contributing to the development and implementation of runbooks and incident response protocols.
• Manage and analyse log data from Logstash to monitor for potential security threats and ensure timely responses to incidents.
Experience Required:
• Proven expertise in SIEM engineering, with a strong focus on Logstash within the ELK stack for log management and security monitoring.
• Broad SOC experience, including the ability to support runbook creation, incident response, and monitoring.
• Ability to adapt quickly to high-priority SOC projects, with the potential for ongoing work into the new year.
Important Note:
Candidates will undergo comprehensive financial and criminal background checks.