×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Security Manager

Security Engineer - SIEM, KQL

Job in London, Greater London, W1B, England, UK
Listing for: Harvey Nash
Part Time, Contract position
Listed on 2026-03-11
Job specializations:
  • IT/Tech
    Cybersecurity, Security Manager
Job Description & How to Apply Below
Security Engineer - SIEM, KQL- sought by investment bank based in London.


* Inside IR35 - 3 days a week on-site**Key Responsibilities

  • SIEM Management & Optimization:
  • Design, implement, and maintain Microsoft Sentinel work spaces, connectors, analytics rules, and playbooks
  • Develop advanced KQL queries for threat hunting and reporting
  • Optimize SIEM performance, cost, and data retention policies
  • Troubleshoot log ingestion and parsing issues
  • Log Source Integration:
  • Onboard and configure critical log sources (AD, firewalls, servers, cloud infrastructure)
  • Manage event collection and forwarding infrastructure
  • Implement data filtering and custom log parsing
  • Threat Detection & Use Case Development:
  • Develop and refine detection rules based on threat intelligence and attack patterns
  • Continuously improve detection efficacy and reduce false positives
  • Security Monitoring & Incident Response:
  • Monitor systems for anomalies and malicious activity
  • Contribute to threat hunting and incident response playbooks
  • Provide expert guidance on securing applications and infrastructure
  • Security Advisory & Innovation:
  • Support PoCs for new security tools
  • Help define and measure control effectiveness
  • Required Skills & Experience
    • Certifications:

      AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP
    • Experience with SOAR playbooks, YARA rules, STIX, and YAML
    • Participation in red/purple team exercises.
    • Please apply within for further details - Alex ReederHarvey Nash
    • 3+ years in a Security Engineer, SOC Analyst, or similar role
    • Hands-on experience with Microsoft Sentinel and KQL
    • Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP)
    • Proficiency in scripting (Power Shell, Python)
    • Familiarity with security frameworks (MITRE ATT&CK, NIST, Kill Chain)
    • Experience with EDR, DLP, Proxy, and SEG tools
    Desirable Qualifications
  • Certifications:

    AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP
  • Experience with SOAR playbooks, YARA rules, STIX, and YAML
  • Participation in red/purple team exercises.
  • Please apply within for further details - Alex ReederHarvey Nash

To

From

Record

Yes No

Always use these settings

Note that applications are not being accepted from your jurisdiction for this job currently via this jobsite. Candidate preferences are the decision of the Employer or Recruiting Agent, and are controlled by them alone.
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search:
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search