SIEM / Netflow Resource

Job Type Permanent Full Time
Location Reading, Berkshire
Salary Up to £500 per day
Start Date ASAP


SIEM / NetFlow Resource (Contractor)

We are looking for a detail orientated Senior NetFlow Resource to Lead on designing, integrating, implementing and transitioning the Netflow elements of our design which form a key component of a highly available, resilient multi-tenanted Defence Service Management ('DSM') platform, to integrate with the Ministry of Defence's framework.


This project is working between 1-3 days a week for initially 1 month, but will then be reviewed.


The successful candidate will work closely with the existing technical and project teams, and the customer's Solution Architects to ensure the SIEM requirements are built and delivered as per the agreed scope and requirements. This includes migrating a number of technologies, data and processes from a legacy platform to the new ITIL based solution.


You will be largely involved in the design, documentation, development, configuration, testing, installation, implementation, and transition of the new SIEM/NetFlow Resources and the associated infrastructure
The ideal candidate will have demonstrable experience in configuration and deployment of an end to end application solution, producing associated documentation and completing transition to service.


This role will suit a technically aware, self-starter with excellent communication skills and a keen eye for detail.
In addition, the lead will ensure the application suite of deliverables comply with HMG's security classification model.
Due to the nature of the work, you will be required to have a minimum 'SC' security clearance, but we can process this application where such clearance is not currently in place.


Travel to several locations along the M4 corridor may be involved, including but not limited to Reading and Bristol.


SIEM (QRadar) + Protective Monitoring / Network Monitoring (Netflow)


  • Review current LLDs
  • Produce Implementation Plans
  • Complete Builds in all environments
  • Produce Operational artefacts


  • Windows Event Forwarder (WinRM) and Windows Event Collector.
  • Solarwinds Event Log Forwarder.
  • Solarwinds Kiwi Syslog Server.
  • QRadar SIEM.
  • Flowmon (Netflow/IPFix).
  • EndaceProbe.
  • IXIA Packet Broker, Coudlens and V-Tap.

Get in touch to find out more -