DV Cleared - SIEM & Security Analytics Engineer (Contract or Permanent)

We work closely with strategic technology vendors including Elastic, where we hold a Global Alliance Partnership, supporting enterprise and public sector customers across large-scale transformation and secure delivery programmes. As part of our continued growth alongside Elastic, we are building specialist Engineering and Consulting capability across Observability, Security Analytics, SIEM, Enterprise Search and GenAI RAG platforms. This role provides an opportunity to work on long-term enterprise and public sector cyber security programmes whilst building specialist expertise within the Elastic Security ecosystem through structured enablement, certifications, mentoring and hands-on project delivery. Role Overview We are hiring DV Cleared SIEM & Security Analytics Engineers to support secure cyber monitoring, SIEM onboarding and security telemetry engineering programmes. This role is ideal for SIEM Engineers, SOC Analysts, Security Analysts, Cyber Defence Engineers or Log Analytics professionals looking to develop deeper expertise within enterprise-scale SIEM and security analytics environments. You are not expected to be an Elastic expert from day one. We are specifically interested in transferable experience from technologies such as Splunk Enterprise Security, Microsoft Sentinel, QRadar, ArcSight, Chronicle, OpenSearch Security Analytics, Logstash, Cribl, Fluent Bit or similar platforms.,

• Support SIEM and cyber telemetry onboarding across enterprise environments
• Configure ingestion pipelines for parsing, enrichment and normalisation of security data
• Validate timestamps, mappings, field extraction and data quality for SOC use cases
• Support dashboards, alerting and security operations reporting
• Troubleshoot ingestion failures, parsing gaps and visibility issues
• Support threat detection and SOC monitoring teams with reliable data pipelines
• Assist with onboarding documentation, runbooks and operational handover material
• Work closely with cyber security, SOC and platform engineering teams
  
  SIEM or Security Analytics Platforms
• SOC Operations or Cyber Security Monitoring
• Security Event Log Analysis
• Syslog, JSON, XML, CSV and unstructured log formats
• Data collectors, forwarders or ingestion tooling
• Splunk, Sentinel, QRadar, ArcSight or related technologies
• Linux or Windows environments
• Bash, Python or PowerShell scripting
• Security data normalisation or schema awareness (ECS, CIM or similar)
What You'll Gain
• Exposure to enterprise-scale cyber security and SIEM programmes
• Hands-on experience working alongside Elastic Security teams
• Structured enablement and Elastic certification pathways
• Mentoring from experienced Consulting Architects
• Long-term consulting and security engineering progression
• Experience across highly secure public sector environments
  
  GIOS Technology is a specialist Data Services and Technology Consultancy focused on Search, Observability, Security, Data Engineering and AI-driven platforms.