SIEM Engineer

SIEM Engineer (Splunk / Elastic)

Active DV Clearance Required

On-site | Hemel Hempstead

I'm looking for a hands‑on SIEM Engineer to work on mission‑critical Defence and National Intelligence systems. This is not a BAU SOC role. You'll be owning SIEM capability end to end in some of the most secure environments in the UK.

If you do not hold active UK DV clearance, you cannot be considered.

This SIEM engineer will:

• Work on classified, real‑world threats not theoretical use cases
• High trust, high autonomy technical role
• Influence platform design, detection strategy and automation
• Join a small number of engineers trusted with systems that genuinely matter

In this SIEM role, you will be:

• Owning and optimising Splunk ES and/or Elastic Security
• Building high-fidelity, MITRE ATT&CK-aligned detections
• Designing and maintaining SIEM pipelines (CIM / EC...