A Council in London is seeking a Contract Senior Cybersecurity Engineer for 6 months. With the strategic deployment of an outsourced Security Operations Center (SOC) that leverages Splunk and CrowdStrike, the Senior Cyber Security Engineer role is a key addition to our team to maximise the timeline and investment.

The ideal candidate will be a technical expert in CrowdStrike for endpoint protection and Splunk for security telemetry, capable of turning raw data into actionable intelligence.

Key Responsibilities
*Endpoint Strategy: Lead the deployment, policy configuration, and maintenance of the CrowdStrike Falcon
*SIEM Mastery: Work with our SOC partner to architect and optimize Splunk dashboards, alerts, and data models to identify sophisticated threats.
*Incident Response: Serve as a technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment.
*Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times.
*Threat Hunting: Proactively search for undetected malicious activity using specialized queries.
*Training. Build up the Crowdstrike, Splunk and Security Analysis skills within the existing team.
Required Experience
*Experience: 5+ years in a dedicated Cyber Security Engineering or SOC Tier 3 role.
*CrowdStrike Expert: Deep hands-on experience with Falcon Prevent, Insight, and Discover. Certification (CCFA/CCFR) is a major plus.
*Splunk Power User: Proficiency in writing complex Search Processing Language (SPL) and managing Splunk Enterprise Security (ES).
*Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK
*Vulnerability Assessment: 2+ years using VA tools would be a bonus
*Penetration Testing: Exposure to Penetration Testing and Web Application Testing.