17 SIEM Jobs in the North West

ISO/IEC 27001, COBIT and NIST; awareness and understanding of compliance and data protection regulations, such as GDPR o Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts o Background in one or more security technologies and a good awareness of the range of available security solutions ▪ Bachelor’s more »

working as a third line security analyst. Good understanding of forensic investigations and using monitoring and detection tools. Extensive knowledge of security technologies e.g., SIEM, Firewalls, XDR etc. Extensive experience of running a penetration testing function with a Security Operations team. Detailed knowledge of forensic tools, techniques, and methods. Experience more »

Ensure compliance with defined Policies. Essential Skills & Experience: Experience with analysing event logs and recognizing cyber intrusions or attacks. Experience using tools such as SIEM, IDS/IPS, antivirus and endpoint protection (e.g. Microsoft Sentinel and Microsoft Defender for Endpoint) Understanding of relevant Cyber Security standards, legislation and regulations including more »

NIST, COBIT, SABSA, etc Expertise in security technologies, tools, and solutions, such as (but not exclusive to) firewalls, antivirus, encryption, VPN, IDS/IPS, SIEM, SOAR, XDR, DLP, etc Familiarity with the Microsoft Security Stack Proficiency in security architecture design, implementation, and review, using various approaches, such as TOGAF, Zachman more »

convey complex security concepts to non-technical stakeholders Strong leadership and team collaboration skills Experience with security tools and technologies, including firewalls, antivirus software, SIEM, EDR and intrusion detection systems Strong technical background, including networking, Operating Systems, M365, Active Directory more »

Cyber Security Analyst or in a similar role. Strong knowledge of cyber security principles, technologies, and best practices. Experience with security tools such as SIEM, IDS/IPS, antivirus, and endpoint protection. Certifications such as CISSP, CEH, or CompTIA Security+ are highly desirable. Skills and Abilities: Analytical mindset with a more »

on technical IT projects ·Experience with O365/M365 Administration including Intune/Endpoint Manager, PowerShell, Power Apps. Experienced with security controls such as SIEM, Vulnerability Scanning, Server and Client Security, SASE solutions and CloudFront/AWS WAF Good working knowledge of PowerShell and Automation tools Good knowledge of networking more »

and response tooling Experience of relevant computer forensics, incident response and e-discovery tools, including password recovery, EDR, NDR, UEBA, honeypots, data loss prevention, SIEM, and log managers Understanding of regulatory processes in evidence-handling procedures Technical knowledge of anti-forensics, data hiding and obfuscation technologies including steganography, digital image more »

of issues within the environment On-Boarding new data sources and Apps and Add-ons into Splunk Building/testing log ingestion sources Supporting SIEM and SOAR technologies Provide ongoing management and administration of cyber security solutions Provide support to projects delivering and implementation of cyber security solutions Where required more »

Benefits Manchester office, 2 days per week onsite requirement Security Operations/Monitoring/Identifying Threats/Investigation/Prevention/Documentation Responsibilities: Monitor SIEM Systems Identify and investigate security threats Responding to alerts Documentation Collaborating within an information security environment Proactive threat intelligence What We Offer: An opportunity to more »

the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using more »

Problem, Change, CMDB and Asset Experience with implementation of catalogue items configuring Security incident response applications Experience with OOB/custom integration build with SIEM tool/TI enrichment tools Experience building email integration for importing suspicious emails as Security incidents. At Cognizant, taking care of employees is a priority more »

/7, dealing daily with over 200 million log events and providing support for over 5,000 network devices. We are specialists in SIEM, our services backed by our EDGE methodology built up through dozens of major deployments and hundreds of use cases with many of the UK’s largest … calls to support change requests and helping diagnose system issues. Key responsibilities • Monitor global IDS, Network Intruder, Firewall, DDoS detection and mitigation, availability and SIEM platforms looking for potential threats, vulnerabilities and indicators of compromise. • Provide Incident remediation and prevention documentation and recommendations to customers based on defined procedures and … Perform other duties as assigned. • Ability to work on a shift basis including weekends and evenings. Skills Theoretical knowledge of security toolsets such as SIEM, IDS, Vulnerability Management, Availability Monitoring and other threat detection technologies. · Pre-existing knowledge of common network protocols. · Pre-existing knowledge of Windows and Linux based more »

will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead …/SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in … implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security more »

security team. Promote cross functional collaboration and knowledge sharing across security and IT teams. Maintain security infrastructure, including Firewalls, intrusion detection/prevention systems, SIEM and endpoint security solutions. Setting the overall security strategy for the business. What you'll need to succeed The Ideal candidate will have a strong … and data. Experience working in alignment with ISO27001 and Cyber Essentials. Experience Managing and maintaining security infrastructure, including Firewalls, intrusion detection/prevention systems, SIEM, and endpoint security solutions. What you'll get in return You can expect a competitive salary (depending on experience), along with pension, life assurance more »

you will play a vital role in managing and deploying environments securely and optimally. Responsibilities include overseeing logging and Security Information and Event Management (SIEM) aspects of infrastructure, collaborating with application development teams to resolve issues, and enhancing security measures within the CI/CD pipeline. Skills and Experience Required more »

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant CTI sources Excellent knowledge of adversarial cyber actors, including their TTPs and the adversary lifecycle Comprehensive experience in conducting malware … phishing, and SIEM log analysis Experience with threat modelling systems and risk assessment models Extensive experience in utilising open-source intelligence Experienced CTI analyst with the ability to progress service provided to police forces, lead development, and train juniors Demonstrated ability to manage customer relationships Strong leadership skills with the more »