

Lorien
SIEM Engineer
⭐ - Featured Role | Apply direct with Data Freelance Hub
This role is for a SIEM Engineer (SC Cleared) based in Reading/Havant for 6 months. Key skills include KQL, Azure, Logic Apps, and ETL. Candidates must have experience with Microsoft Sentinel and CI/CD pipelines for effective threat detection and automation.
🌎 - Country
United Kingdom
💱 - Currency
£ GBP
-
💰 - Day rate
Unknown
-
🗓️ - Date
July 2, 2026
🕒 - Duration
More than 6 months
-
🏝️ - Location
On-site
-
📄 - Contract
Unknown
-
🔒 - Security
Yes
-
📍 - Location detailed
Reading
-
🧠 - Skills detailed
#"ETL (Extract #Transform #Load)" #DevOps #Data Transformations #Logic Apps #Deployment #KQL (Kusto Query Language) #Security #GIT #Azure #Azure DevOps
Role description
Job Title: SIEM Engineer (SC Cleared)
Location: Reading/Havant
Duration:6 months
Description:
• Lead onboarding and integration of log sources into Microsoft Sentinel to ensure complete and reliable security telemetry
• Develop custom parsers and data transformations to normalise and enrich ingested data
• Design and optimise KQL queries to support effective threat detection and investigation
• Create and maintain analytic rules and detection logic aligned to emerging threats and business use cases
• Develop Logic Apps and SOAR workflows to automate response and reduce manual effort
• Implement CI/CD pipelines (Azure DevOps/Git) to support controlled deployment of SIEM content (rules, parsers, playbooks)
• Automate deployment and configuration across environments to improve consistency and speed of delivery
• Perform ongoing tuning and optimisation of detections to improve fidelity and reduce false positives
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.
Job Title: SIEM Engineer (SC Cleared)
Location: Reading/Havant
Duration:6 months
Description:
• Lead onboarding and integration of log sources into Microsoft Sentinel to ensure complete and reliable security telemetry
• Develop custom parsers and data transformations to normalise and enrich ingested data
• Design and optimise KQL queries to support effective threat detection and investigation
• Create and maintain analytic rules and detection logic aligned to emerging threats and business use cases
• Develop Logic Apps and SOAR workflows to automate response and reduce manual effort
• Implement CI/CD pipelines (Azure DevOps/Git) to support controlled deployment of SIEM content (rules, parsers, playbooks)
• Automate deployment and configuration across environments to improve consistency and speed of delivery
• Perform ongoing tuning and optimisation of detections to improve fidelity and reduce false positives
Guidant, Carbon60, Lorien & SRG - The Impellam Group Portfolio are acting as an Employment Business in relation to this vacancy.






