in previous Incident Response function environments. Experience with tools for open-source investigation (WireShark, TCPDump, Netflow, etc.); network defence monitoring technologies (IDS/IPS, SIEM, Firewalls, etc.); and sandboxing technologies for static and dynamic malware analysis (IDA Pro, REMnux, etc.). Working knowledge of leading a technical team and mentoring more »
on bids and/or large and complex changes. Solid understanding of a variety of network and routing protocols. Experience with Network Management or SIEM designs, tooling or support. Demonstrable troubleshooting skills and approach to defect resolution. SDWAN experience is advantageous Working Pattern (Mon-Fri, Shifts, on-call) This is more »
will also be given a great opportunity to develop your technical skills and grow in a dynamic, successful company. You will need: Knowledge of SIEM tools e.g Microsoft Sentinel, Google Chronicle. Excellent knowledge of EDR tools e.g CrowdStrike, SentinelOne, Microsoft Defender. Experience providing BAU support. Experience in a SOC environment. more »
analyse, and respond to cyber threats. Understanding of networking technology Cyber security service trends compliance requirements in enterprise organisations Core cyber security products including SIEM, Zero Trust and NDR/XDR products. Core network routing and switching protocols. Knowledge of network performance and optimisation and services Please apply ASAP to more »
security tools. Familiarity with intrusion detection/prevention systems (IDS/IPS), firewalls, and anti-virus software. Experience with securityinformationandeventmanagement (SIEM) systems. Strong analytical and problem-solving skills. Excellent communication and teamwork abilities. Relevant certifications such as CISSP, CEH, or CompTIA Security+ are a plus. Preferred more »
Manchester Area, United Kingdom Hybrid / WFH Options
InfoSec People Ltd
etc Excellent understanding of cybersecurity trends Ability to interpret customer landscape and challenges Strong presentation and client-facing skills Desired Skills: Knowledge across EDR, SIEM, Vulnerability Management Operational experience with security technologies Existing relationships in Manchester area Self-motivation and ability to work autonomously Job Specifics: This is a hybrid more »
that critical business operations continue unhindered. Key Responsibilities Monitor and analyze security events and alerts from multiple sources, including securityinformationandeventmanagement (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs (Windows and Unix), and databases Separate true threats from false positives using … Maintain a strong awareness of the current threat landscape Basic Qualifications Excellent teamwork skills Knowledge of and experience with intrusion detection/prevention systems andSIEM software Strong knowledge and understanding of network protocols and devices. Strong experience with Mac OS, Windows, and Unix systems. Ability to analyze event logs … recommendations for security tools to tool administrators. Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk Strong knowledge of the following: SIEM Packet Analysis SSL Decryption Malware Detection HIDS/NIDS Network Monitoring Tools Case Management System Knowledge Base Web Security Gateway Email Security Data Loss Prevention more »
cyber defence hardware. • Support Junior Analysts to manage SOC systems. • Previous experience of Enterprise ICS/network architectures and technologies • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. • Experience as a mentor/coach to junior analysts Your … C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »
to the Security Operations Manager, your key tasks may involve: Managing vulnerability scanning tools - SAST, SCA, IaC, Containers & DAST for all Egress products Investigate SIEM alerts, working with the Engineering and Operations teams to resolve issues Managing vetting applications, supplier onboarding andsecurity awareness programmes Plan and manage 3rd party … Reviewing vulnerabilities found in code analysis tools and liaising with development/engineering to prioritise the resolution SOC investigation of security events in a SIEM (e.g. Azure Sentinel, Splunk etc) A basic knowledge and desire to learn python, to automate day to day tasks. You should have good prioritisation andmore »
robust security controls including IAM, network security, data protection, andsecurity monitoring. - Implement and manage cloud security tools and services like Azure Security Center, SIEM solutions (Splunk, ELK, Azure Sentinel), and conduct regular security assessments and penetration testing. - Develop and enforce cloud security policies, procedures, such as NIST, ISO … understanding of cloud security controls, tools (Azure Security Center), and services. - Familiarity with security testing methodologies like penetration testing and vulnerability assessments. - Experience with SIEM tools (Splunk, ELK, Azure Sentinel) and incident response/forensics. - Knowledge of security frameworks (NIST, ISO 27001, SOC 2) and relevant certifications (CISSP, CCSP). more »
London, England, United Kingdom Hybrid / WFH Options
Client Server
Lead SOC Engineer/Manager (SC Cleared) London/WFH to £70k Are you an experienced SOC Engineer with a strong knowledge of SIEM combined with leadership experience? You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range … role in ensuring the securityand resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response. This is … About you: You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issues You have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the job You have a good understanding of IT more »
Cyber Security Engineer, M&A, £635(inside) 10 months +Extension – SIEM, SOAR, IdAM, Vulnerability Management, Trellix Are you a Cyber Security Engineer and ready to take on a pivotal role in a global business? Working on a M&A, the largest in its sector. You will be joining the team … maintain cyber action plan. Track and communicate progress, risks, and issues. Review, report, and sign-off Infrastructure designs. Security Tooling (EDR, Vulnerability Management, IdAM, SIEM, SOAR). Input/review into cyber security design artefacts (HLD/LLD) and provide security engineering consultancy. Implementation cyber security support activities (configuration, connectivity more »
security operations and incident management Good knowledge of various security operations tools, technologies and processes including security device management tools, IDs/IPS andSIEM tools You'll also be well versed in security concepts such as threat vectors, eventand incident management, cyber threats and attacks etc. Experience with … security device managementandSIEM solutions Experience in global delivery operations support model (e.g. 24-7/16-8) You'll also have experience in leading security operational meetings with key internal and external stakeholders and managing relationship with service providers Any InformationSecurityand/or Information Technology industry more »
to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … in an MSSP already, or have worked in a shared service model as an inhouse cyber security engineer/consultant across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR, and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »
to your skills to include Google Chronicle. As such this role will require somebody with experience of managed cyber security products/services stacks (SIEM, Endpoint, Cloud Security, Network Security, EDR/XDR, Vulnerability etc). HOWEVER.. if you just have the Microsoft Security stack this unique opportunity will also … consultant/architect role already, or have worked in a shared service model as an inhouse cyber security solutions architect across a range of SIEM (Sentinel), Endpoint Services, Cloud Security, EDR/XDR and Network Security. Plus you will ideally hold industry and vendor certifications. Vendors include: Microsoft, Google, CrowdStrike more »
Linux Engineer - The client requires Linux Engineer with IAM - IDAM - PAM or SIEM Tooling experience. In the rapidly evolving world of electronic trading, a cutting-edge organization is expanding their European operations right here in London, and they're in search of a Linux Engineer. Renowned for their heavy investment … support and engineering. 🛠 Mastery in enterprise Linux, with a preference for Red Hat, CentOS, or Oracle Linux. 🔒 Hands-on exposure with IDAM, PAM, or SIEM tooling - is essential 👁️🗨️ A track record with monitoring tools like Prometheus or Nagios. 🖥️ Scripting skillset in Python, Shell, Bash, or Ruby. 🌐 In-depth understanding of more »
Linux Engineer, IdM, IDAM, PAM, SIEM, Bash, Puppet, Ansible, Python, DNS, LAN, WAN, F5 Linux Engineer Permanent - up to £120,000 + bonus/benefits Hybrid (1 day a week onsite in London) Sponsorship not available The role A Leading leading equity firm is looking for a Linux Engineer to … the Linux-based infrastructure. Technical skills: Linux proficiency - Red Hat Enterprise Linux, CentOS, Linux Kernel Must have recent involvement in implementing IDAM, PAM or SIEM tooling At least one scripting/programming language, i.e. Bash, Ansible, Puppet, python Basic Networking such as TCP/IP, DNS, LAN/WAN Experience … managing full lifecycle, from design to build stage Linux Engineer, IdM, IDAM, PAM, SIEM, Bash, Puppet, Ansible, Python, DNS, LAN, WAN, F5 McGregor Boyall is an equal opportunity employer and do not discriminate on any grounds. more »
City of London, London, United Kingdom Hybrid / WFH Options
Akkodis
type and severity. Identify, create and implement improvements to procedures and processes, with the SOC Manager's approval. Identify opportunities for SOC and client SIEM platform configuration improvements, use case development, monitoring rule creation, tuning & optimisation Assist in architectural design to facilitate the onboarding of new information systems, including the … SOC Analyst/Senior Cyber Securityandsecurity operations experience Experience in managing Microsoft Sentinel, including Lighthouse Experience of onboarding, tuning, reporting and configuring SIEM solutions Experience of threat intelligence Leadership and mentoring experience and skills Understanding of low-level concepts including operating systems and networking Commercial experience in Penetration more »
At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. more »
active DV clearance and have a proven Cyber Security Engineering background, with the following skills/experience: Experience in Securityinformationandeventmanagement (SIEM), Splunk, Threat modelling system solutions. Experience Cyber operations protective monitoring. Experience of providing advice, guidance and assuring documentation against security standards. Experience of working with more »
Solihull, West Midlands, United Kingdom Hybrid / WFH Options
iDPP
Python, Bash, or PowerShell. Familiarity with security frameworks and standards such as NIST, CIS, and ISO 27001. Experience with securityinformationandeventmanagement (SIEM) tools. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications such as AWS Certified Security Specialty, CISSP, or CEH are a more »
technologies. Strong written skills for technical documentation. Ability to design infrastructure solutions for securityand resilience. Experience with various technologies including Cloud, Endpoint Security, SIEM, Automation, Virtualization, and Microsoft security stack. Personal Attributes: Customer-first mindset. Excellent communication skills. Relationship management abilities. Problem-solving skills. Empathy and active listening. Technical more »
Northampton, Northamptonshire, United Kingdom Hybrid / WFH Options
Constant Recruitment Ltd
other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update ManagementSecurity Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »
Cambridge, Cambridgeshire, United Kingdom Hybrid / WFH Options
Constant Recruitment Ltd
other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update ManagementSecurity Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »
Reading, Berkshire, United Kingdom Hybrid / WFH Options
Constant Recruitment Ltd
other administrative tasks as needed. Key Technologies and Skills: Microsoft Windows Server Active Directory Linux IBM operating systems Microsoft Excel QUALYS PALO ALTO CORTEX SIEM tools (e.g., Splunk, ArcSight, LogRhythm) Patching and Update ManagementSecurity Monitoring Automation tools (e.g., Ansible, Puppet, Chef) Scripting languages (e.g., Python, PowerShell, Bash) Compliance frameworks more »