SIEM Infrastructure Specialist

Job Req ID: 33593

Posting Date: 21 May 2024

Function: Infrastructure

Unit: Networks

Location:

Martlesham Heath, Ipswich, United Kingdom

Salary: Competitive with Great Benefits

Why this job matters

Your role as a Infrastructure Engineering Specialist in the SIEM Platform team, within Secure Development is to support the development, implementation, operation and support of BTs Strategic SIEM development.

We are seeking a skilled Infrastructure Engineer to play a critical role in designing, developing, and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging SIEM technologies to enhance threat detection, incident response, and overall security posture.

This role follows 3 days in office, 2 days from home and can be based in any of the following locations: Birmingham, Bristol, Belfast, Ipswich, Manchester

What you’ll be doing

Data Source Integration:

• Identify and onboard new data sources (e.g., logs, events, alerts) into the SIEM platform.

• Develop and configure Connectors to ingest data from various sources.

• Monitor and manage the performance of the SIEM infrastructure to ensure efficient data processing.

Security Documentation and Optimization:

• Maintain engineering and security documentation related to SIEM configurations and processes.

• Assist customers in optimizing the SIEM system’s capabilities, including audit and logging features.

SIEM Solution Development:

• Collaborate with security analysts and architects to design and implement SIEM solutions.

• Optimize SIEM rules, alerts, and dashboards for efficient threat detection.

Security Engineering:

• Contribute to security engineering projects, transitions, and transformations.

• Work closely with security operations and associated security incident response systems.

• Stay informed about emerging threats and security best practices.

•Keep abreast of relevant technologies in the area. This may entail the following: reading, attending briefings and talks.

•Contribute to the running of your team. This entails participating (1) in knowledge-sharing, (2) in team discussions, (3) in defining and improving working procedures and (4) in organisation of team events.

•Help colleagues in the team to grow by mentoring when required.

•Keep abreast of relevant news and updates at BT. This may entail the following: attending briefings and talks.

•Agree personal goals with the Team Lead for the year and work towards achieving these.

You'll have the following skills & experience

•Familiarity with web proxies and network security tools.

•Knowledge of regular expressions and data normalization techniques.

•Understanding of intrusion detection methods.

•Ability to work with secured networks for SIEM integration.

•Proficiency in Linux and Windows operating systems.

Nice To have

•ETL Processes with Logstash:

• Design, develop, and maintain data pipelines using Logstash, part of the Elastic Stack.

• Automate data ingestion, transformation, and loading tasks.

Beats for Data Collection:

• Configure and manage Beats (Filebeat, Metricbeat, etc.) for collecting data from various sources (logs, metrics, etc.).

• Ensure seamless data flow from endpoints to the Elastic Stack.

•Data Cleaning and Enrichment with Elasticsearch:

•Security and Compliance with Elastic Security:

•Performance Tuning with Elasticsearch and Logstash:

• Fine-tune query performance using Elasticsearch indices and mappings.

• Monitor Logstash pipelines and optimize resource utilization.

•Kibana Visualization and Monitoring

•Kafka integration

Benefits

At BT, we entertain, educate, and empower millions of people every single day. We’re a brand built on connecting people – whether that’s friends, family, businesses, or communities. Working here, you’ll receive an attractive salary and a range of competitive benefits, but – more than that – you’ll be joining an ambitious organisation with a culture of togetherness, collaboration, and inclusivity, that takes a genuine and proactive interest in your progress and development.

• Competitive salary

• 10% on target bonus

• BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%

• 25 days annual leave (not including bank holidays), increasing with service

• Huge range of flexible benefits including cycle to work, healthcare, season ticket loan

• World-class training and development opportunities

• Option to join BT Shares Saving schemes.

• Discounted broadband, mobile and TV packages

• Access to 100’s of retail discounts including the BT shop

About us

BT is part of BT Group, along with EE, Openreach, and Plusnet.

Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning, and the emergency services responding.

We value diversity and celebrate difference. ‘We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.’

We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck in to tough challenges, pitch in with ideas, make things happen. But you won’t be alone: we’ll be there with help and support, learning and development.

This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it.

A FEW POINTS TO NOTE:

Although these roles are listed as full-time, if you’re a job share partnership, work reduced hours, or any other way of working flexibly, please still get in touch.

DON'T MEET EVERY SINGLE REQUIREMENT?

Studies have shown that women and people who are disabled, LGBTQ+, neurodiverse or from ethnic minority backgrounds are less likely to apply for jobs unless they meet every single qualification and criteria. We're committed to building a diverse, inclusive, and authentic workplace where everyone can be their best, so if you're excited about this role but your past experience doesn't align perfectly with every requirement on the Job Description, please apply anyway - you may just be the right candidate for this or other roles in our wider team.