Job title:

Senior SIEM engineer /Technical SME

Will the role be 100% remote, hybrid or 100% office?

Remote with rare visit to office

If the role is hybrid/ office based specify location:

Guildford

WON / SWON:

New T&M position

Duration of assignment:

6 months

Start date:

15 Apr 2026

Number of persons required:

1

Special working conditions:(travel, weekend, overtime, on call etc.)

NA

Role description:(Please include a brief outline of the impact this role will have, including overview of customer industry and projects, access to cutting-edge technology etc.)

Technical SME in Cybersecurity space

Key responsibilities:(Up to 10, Avoid repetition)

KQL:Expert Level

• • Able to develop and maintain high-fidelity detection rules usingKusto Query Language
  • Able to utilizeKQLfor detection engineering, analytics, and threat-hunting.

Microsoft Sentinel:

• • Act as the technical SME
  • Hands-on experience including analytics rules, connectors, and workbooks.
  • Ensure platform reliability and data quality.
  • Coordinate the end-to-end onboarding of log sources into Sentinel.

Key skills/knowledge/experience:(Up to 10, Avoid repetition)

• Expert in KQL
• Technical SME for Sentinel set up
• Strong understanding of cloud and on premises logging (Windows, Linux, application, DB, identity).
• Experience onboarding data using AMA, DCRs, syslog/CEF, and Event Hub integrations.
• Comfortable using AI assisted tooling (e.g., Copilot for Security) to enhance productivity.

Person specification:I.e., negotiating, client facing, communication, assertive, team leading/team member skills, supportive.

• Client facing Technical SME