SIEM Architect (LogRhythm) - SC Cleared - Basingstoke

SIEM Architect (Permanent)

  • Basingstoke based SIEM (LogRhythm) Architect role

  • Competitive salary on offer

  • Fantastic Benefits package available

  • Great Career Progression opportunities

Must currently hold live SC Clearance. (ideally Home Office. Will also consider candidates with lapsed Clearance).

The Company:

A FTSE 500 company. In the UK some of their services include; IT consulting services, technology products, managed services, cloud-based solutions, and systems integration.


You will be working at a lead architect level and leading a small team, to define and deliver a SIEM solution to meet current and future customer needs through changes/enhancements to the technology components.

The role holder must have a strong technical background with an ability to interact and work well with multiple areas of the project as well as senior customer stakeholders.


  • The role will report into the Solutions lead and encompass the following disciplines and responsibilities

  • Complete responsibility for the overall technical solution and associated technical artefacts for the customer(s).

  • Managing the risk and impact of any changes, which affect the architecture of the solution.

  • Manage a small design team to deliver the customer requirements, setting high-level criteria for the design of the solution and exercising design control over the implementation.

Technical Skills

  • Experience of creating High Level Designs, Low Level Designs, BOM's and support documentation

  • Experience of implementing a LogRhythm SIEM and NetMon environment

  • Experience of creating multiple machine policies including full endpoint monitoring of UAD's employing File Integrity Monitoring, Data Loss Defender CD/DVD and USB port Monitoring, Registry Integrity Monitoring, User Activity Monitoring, Network Activity Monitoring.

  • Experience of creating Regexes and parsing rules for "non-standard" logs

  • Experience of Monitoring Enterprise network traffic at Application layer

  • Experience of the Log Processing Policy and the writing of regular expressions

  • Experience of working with 3rd parties

Must currently hold live SC Clearance. (ideally Home Office. Will also consider candidates with lapsed Clearance).

If you are keen on this opportunity then please apply to this job advert and we can get the ball rolling from there.