Senior Cyber Logging Consultant

Alchemy Security Consulting is a boutique cybersecurity firm specialising in detecting, responding to, and emulating advanced threats. Our consultants have extensive experience across Enterprise, Government, Defence, Critical Infrastructure, and regulated industries, delivering high-value services including:

Red Teaming

Threat Hunting

SIEM Integration

Managed Detection & Response (MDR)

We operate as a highly technical, collaborative team with a strong purple‑team philosophy, equally capable of defending against real adversaries and emulating them during assessments. We emphasise knowledge‑sharing, practical uplift, and delivering meaningful outcomes for every customer.

Role Overview The Senior Cyber Logging Consultant will design, deploy, and uplift logging and SIEM capabilities across customer environments and contribute to the evolution of Alchemy’s internal MDR platform. You will engineer telemetry pipelines, strengthen detection visibility, and help customers build resilient, modern logging architectures.

This role is technical, hands‑on, and highly impactful, shaping logging strategies and detection maturity across diverse organisations.

Key Responsibilities Logging, SIEM & Telemetry Engineering Lead end‑to‑end integration and uplift projects using:

CrowdStrike Next‑Gen SIEM

LogScale

CRIBL Stream/Edge

Splunk

Elastic

Microsoft Sentinel

Design log ingestion, routing, parsing, enrichment, and retention architectures.

Ensure completeness and accuracy of telemetry across endpoint, network, cloud, identity, and application sources.

Support MDR operations by onboarding new log sources and enhancing telemetry quality.

Detection Coverage & Telemetry Uplift Develop and refine detection use cases aligned to modern attacker behaviours (MITRE ATT&CK‑aligned).

Identify telemetry gaps, recommend improvements, and design uplift roadmaps.

Validate and tune log ingestion pipelines to support high‑fidelity alerting.

Customer Consulting & Delivery Engage with customers to understand their logging requirements, business drivers, and technical constraints.

Produce detailed documentation including architectures, playbooks, integration guides, and strategy recommendations.

Advise on SIEM selection, ingestion optimisation, platform consolidation, and cost‑efficiency.

Translate offensive findings into logging improvements and detection opportunities.

Support threat hunting by identifying high‑value telemetry sources.

Contribute to holistic cyber defence strategies across multiple environments.

Internal Leadership & Enablement Mentor and develop junior consultants in SIEM, logging, and telemetry best practices.

Contribute to internal tooling, frameworks, automation, and delivery methodologies.

Actively share knowledge and help uplift team‑wide capability.

Skills & Experience Required 5–10+ years in cybersecurity, with strong experience in telemetry, SIEM engineering, or SOC architecture.

Hands‑on expertise with several of:

CrowdStrike LogScale

CrowdStrike Next‑Gen SIEM

CRIBL

Splunk

Elastic

Microsoft Sentinel

Strong understanding of enterprise logging sources (Windows, Linux, network, cloud, identity).

Proven ability to design complex logging and telemetry architectures.

Excellent communication skills and experience consulting with technical and non‑technical stakeholders.

Highly Desirable Experience in MDR, threat hunting, SOC engineering, or incident response.

Exposure to red team or purple team engagements.

Unlock job insights Your application will include the following questions:

Which of the following statements best describes your right to work in Australia?

Do you hold Australian Security Clearance?

#J-18808-Ljbffr