on Sentinel, IAC, and SecOps. Previous experience working in start-ups or software development companies is highly desirable. Proficiency with Microsoft Sentinel and other SIEM platforms. Strong experience with Infrastructure as Code (IAC) tools such as Terraform, CloudFormation, or ARM. Hands-on experience with security tools and technologies In-depth more »
and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events more »
tiers when necessary. Vulnerability Scanning: scan systems for vulnerabilities. and manage vulnerabilities discovered during scans. Security Tool Management: Configure and manage security tools (e.g., SIEM, IDS/IPS, antivirus). Ensure proper functioning and timely updates. Reporting and Documentation: Document incidents, actions taken, and findings. Prepare incident reports for further more »
with firewall configuration, Next Gen Firewalls, Load-Balancers, and intrusion detection/prevention platforms. Proficiency in Python, PowerShell scripting, and Shell scripts. Familiarity with SIEM platforms is preferred. Security certification such as CISSP, GCIA, or CISM is a plus. Our client is an equal opportunity employer who are committed to more »
principles, techniques, and protocols Detailed technical knowledge related to endpoints, servers, infrastructure and networking technologies Strong experience in supporting security systems, including vulnerability management, SIEM, DLP,SOAR, EDR solution, Network Firewalls etc. Working knowledge of IT processes (i.e., ITIL) including incident, problem, defect, change and release management The Cyber Securitymore »
role 3+ experience with cloud vulnerabilities 2+ years of experience with endpoint protection tools 2+ years of experience with securityinformationandeventmanagement (SIEM) tools 1+ years of experience with perimeter security Primary Functions Operate within the global Cybersecurity Team within the Information Technology department Ensure global alignment with … needed with security awareness content such as communications, posters, presentations Experience with securitymanagement/configuration cloud tools and services Experience maintaining and troubleshooting: endpoint security, SIEM systems, network security, cloud security, and perimeter security tools. Experience with Active Directory Experience with Microsoft desktop and server operating systems, RedHat Linux more »
andInformation Technology (IT) services. Proficient in Cyber Security practices for safeguarding IT, OT, and intellectual property networks, including expertise in IPSec VPNs, Firewalls, SIEM, IPS/IDS, AV/EDR solutions, LDAP/AD, etc. Advanced knowledge in Privileged Access Management (PAM) and associated tools. High proficiency in Vulnerability more »
of staff · Minimum two years experience working within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If more »
Off, 5 Nights on, 3 Off) Tech Stack across roles: Experience with Operating Systems & Computer Forensics Network, Routing & Switching experience with knowledge of SIEM Technologies Knowledge of Cybersecurity frameworks and standards If you are interested in any of these SOC roles and are working at any level across the SOC more »
years of experience with perimeter security administration (Web proxy, SMTP gateway, firewall) 3 or more years of experience with securityinformationandeventmanagement (SIEM) tools 3 or more years of experience with endpoint protection tools 2 or more years of experience working with threat intelligence feeds and IOCs Cybersecurity more »
native environmentsExperience in triaging and responding to cyber threats, alerts, and incidents Experience in log analysis, incident response and/or digital forensicsExperience with SIEMand centralized data lake logging (e.g., Splunk, Snowflake)Experience with Security Orchestration, Automation, and Response (SOAR)Experience securing cloud environments such as AWS, GCP, andmore »
VPN, TCP/IP, SSL, TLS, IDS/IPS, SSH, SNMP, NTP of security tools and technologies, including firewalls, IDS/IPS, VPN, andSIEMand scripting skills required (Python, Powershell scripting or Shell scripts preferred) to learn and adapt to new challenges problem-solving skills and excellent communication andmore »
in managing security consultants. Demonstrable consulting experience, trusted advisor, working in partnership with customers and a good relationship builder. Previous experience of working with SIEM products like Splunk, Exabeam, ArcSight, Sentinel, Cisco Sourcefire or other IPS/IDS products is essential Security transformation programmes – design andmanagement of security solution more »
Experience: Bachelor’s degree in a related technical area. One or more relevant certifications such as CISSP, CISM, GCIH, CEH, or OSCP. Proficiency in SIEM Platforms, vulnerability management tools, and incident management processes. Experience in managing security functions or SOC capabilities. Strong analytical skills to analyze security monitoring data andmore »
Leeds, England, United Kingdom Hybrid / WFH Options
Harvey Nash
implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills more »
platform/DevOps environment. Developing cyber incident response playbooks and practices in line with industry standard frameworks and standards, e.g. Mitre Att&ck, NIST. SIEM technologies, andsecurity logging and monitoring good practice for cloud platforms. And would love you to know or learn: Security engineering practices across cloud platform more »
Maidstone, Kent, United Kingdom Hybrid / WFH Options
NewDay
platform/DevOps environment. Developing cyber incident response playbooks and practices in line with industry standard frameworks and standards, e.g. Mitre Att&ck, NIST. SIEM technologies, andsecurity logging and monitoring good practice for cloud platforms. And would love you to know or learn: Security engineering practices across cloud platform more »
you needHigh degree of (hands-on) technical guidance & vision with broad subject matter expertise in cloud, data andsecurity technologies, specifically AWS, Azure, andSIEM platforms (Splunk ES and Sentinel)Extensive experience and expertise across the Splunk platform, its architecture and distributed components including premium apps (ITSI, Enterprise Security, Phantom more »
Birmingham, West Midlands (County), United Kingdom
Hippo Digital
you needHigh degree of (hands-on) technical guidance & vision with broad subject matter expertise in cloud, data andsecurity technologies, specifically AWS, Azure, andSIEM platforms (Splunk ES and Sentinel)Extensive experience and expertise across the Splunk platform, its architecture and distributed components including premium apps (ITSI, Enterprise Security, Phantom more »
Microsoft/Google/AWS).Skills required for the IT Security Manager:- SOC Expertise- Wide technical breadth (Microsoft, Google, AWS)- Deployment of security tools (SIEM, EDR, NSM)- Confident communicator who can deal with a wide range of stakeholdersIT Security Manager/Cyber Security/SOC/Security OperationsLocation: London, Hybrid more »
Experience with Purple Teaming Understanding of computer forensics History with use of Firewalls and IDS/IPS devices Proven ability with SIEM (SecurityInformationandEventManagement) technologies Experience in networking, routing, and switching Use of frameworks such as NIST, ISO 27001,MITRE ATT&CK and CIS. Familiarity with cybersecurity more »
Senior Security Operations Analyst London (Hybrid) Responsibilities: Overseeing the security of the technical infrastructure provided by third-party suppliers, addressing any identified security risks to the organization. Managing the remediation of operational risks to their conclusion and taking ownership of more »
Reading, England, United Kingdom Hybrid / WFH Options
Project People
commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus Microsoft Windows Server family of products. … of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Desirable Experience: Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »
to be on site 3 days a week in our Birmingham office. Why this job matters Your role as a Software Engineer in the SIEM Platform team, within Secure Development is to support the development, implementation, operation and support of BTs Strategic SIEM development. We are seeking a skilled Software … Engineer with expertise in Elasticsearch (or other SIEMand/or Data platforms) to join our dynamic team. As a Software Engineer you will play a critical role in designing, developing, and maintaining our securityinformationandeventmanagement (SIEM) system. Your focus will be on leveraging Elasticsearch and related … Enhance data enrichment by integrating threat intelligence feeds and contextual information. • SIEM Solution Development: o Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. o Optimize SIEM rules, alerts, and dashboards for efficient threat detection. • Query Optimization and Performance Tuning: o Write efficient Elasticsearch queries more »
Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and … incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test required alert/detection rules Experience: Professional experience in cloud security, particularly with Microsoft Azure, Entra ID and Microsoft 365. Proficiency with Rapid7 InsightIDR, Qualys, andmore »