26 to 50 of 124 SIEM Jobs in the UK excluding London

and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events more »

Cloud and/or any experience on AppOmni • Strong understanding of industry security framework and benchmarks such as NIST and CIS • Previous experience with SIEM tools and integration • Security Engineering experience • Excellent analytical and troubleshooting skills across complex systems. • Able to articulate complicated processes to non-technical stakeholders. • Experience creating more »

tiers when necessary. Vulnerability Scanning: scan systems for vulnerabilities. and manage vulnerabilities discovered during scans. Security Tool Management: Configure and manage security tools (e.g., SIEM, IDS/IPS, antivirus). Ensure proper functioning and timely updates. Reporting and Documentation: Document incidents, actions taken, and findings. Prepare incident reports for further more »

VMware, Messaging (Exchange 2016+), IIS, SQL 2012+, Linux appliances, architecture and OS, backup technologies, Citrix, and Cisco networking. Expertise in security technologies such as SIEM, firewalls, intrusion detection/prevention systems, anti-virus software, authentication systems, log management, and content filtering. Solid grasp of security approaches including ISMS, risk analysis more »

the firm. It would be ideal if your also knowledgeable in AWS, GCP. Security wise you will be knowledgeable in CASB, CSPM and IAM, SIEM etc. Required Skills & experience: Tenure as a Microsoft Security Architect in a blue-chip client Strong Azure experience Experience of a Cloud Adoption project Computer more »

Off, 5 Nights on, 3 Off) Tech Stack across roles: Experience with Operating Systems & Computer Forensics Network, Routing & Switching experience with knowledge of SIEM Technologies Knowledge of Cybersecurity frameworks and standards If you are interested in any of these SOC roles and are working at any level across the SOC more »

above is beneficial. Experience: Proven experience in designing highly secure on-premise IT infrastructure. Technical Expertise: Experience with technologies such as VMware, VxRail, Networks, SIEM, AntiVirus, PKI/HSM, Cross Domain Gateways, IDAM/RBAC/ABAC/MFA, Windows Technologies, High Grade Crypto. Design Principles: Knowledge of Secure by more »

implementing security by design. Other essentials: Background that covers cyber technology, security operations, incident response, architecture, and training. Experience in implementing technology such as SIEM, XDR, SOAR, etc. Background in Financial Services or other regulated industries (desired) Experience in leading through leaders and developing an internal capability Good soft skills more »

the implementation and management of various security technologies. Main responsibilities: Analysing security events and incidents relating to internal and customer assets. Designing and developing SIEM security use cases. Designing and implementing security controls and secure configurations. Maintaining proactive vulnerability scanning ensuring that all known vulnerabilities are addressed in line with more »

to be on site 3 days a week in our Birmingham office. Why this job matters Your role as a Software Engineer in the SIEM Platform team, within Secure Development is to support the development, implementation, operation and support of BTs Strategic SIEM development. We are seeking a skilled Software … Engineer with expertise in Elasticsearch (or other SIEM and/or Data platforms) to join our dynamic team. As a Software Engineer you will play a critical role in designing, developing, and maintaining our security information and event management (SIEM) system. Your focus will be on leveraging Elasticsearch and related … Enhance data enrichment by integrating threat intelligence feeds and contextual information. • SIEM Solution Development: o Collaborate with security analysts and architects to design and implement SIEM solutions using Elasticsearch. o Optimize SIEM rules, alerts, and dashboards for efficient threat detection. • Query Optimization and Performance Tuning: o Write efficient Elasticsearch queries more »

Qualys Total Cloud and address any findings relating to non-compliance. Auditing configurations in order to plan remediations and verify compliance requirements are met. SIEM Integration and Configuration for Microsoft Cloud Services: Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and … incident response capabilities. Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories. Work with Security Operations to build and test required alert/detection rules Experience: Professional experience in cloud security, particularly with Microsoft Azure, Entra ID and Microsoft 365. Proficiency with Rapid7 InsightIDR, Qualys, and more »

engineering team. Knowledge: • Knowledge of big data technologies and ecosystems (e.g., NiFi). • Knowledge of current market and emerging leaders in data analytical and SIEM platforms. • Knowledge of network security implementations (e.g., host-based IDS, IPS), including their function and placement in a network. • Knowledge of intrusion detection systems and … ICS/network architectures and technologies. • Working with frameworks and technologies that support data-intensive distributed applications. • Experience maintaining and administrating data analytical and SIEM platforms. • Experience using host and network-based IDS/IPS • Experience using packet capture solutions. • Skill in developing and deploying signatures. • Skill to apply cybersecurity … Cyber Foundation Pathway, SANS SEC 301 Intro to Information Security, SANS 401 Security Essentials Bootcamp. • Certified engineer in a market leading data analysis/SIEM platform. • SANS SEC501 Advanced Security Essentials Enterprise Defender. • SANS SEC 511 Continuous Monitoring & Security Operations. • SANS SEC555: SIEM with Tactical Analytics more »

Information Technology, Computer Science or relevant experience CISSP, CEH, OSCP, GCIH or applicable security field Incident, change and problem process management experience Experience in SIEM (Splunk, Sentinel), IPS and SOAR tools a plus Experience with investigating and managing major/complex cyber security incidents end-to-end Knowledge of adversarial … tactics, techniques, procedures (TTPs) & industry standard frameworks (Mitre Att&ck, ISO27000, ISO27001) Strong working knowledge of security technologies including but not limited to SIEM, EDR/EPP, AV, IDS, IPS, AD, DNS, SOAR E: j.bhard@locke-mccloud.com Locke & McCloud are the UK’s leading cyber security & information security staffing company more »

conveying technical aspects to an audience (e.g. product demos to the customer). Working knowledge of using the Scaled Agile Framework (SAFe). ArcSight SIEM toolset, or open to cross-train into ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC). DV Cleared Application Packager - 5 days onsite near Reading more »

Role : SIEM SOC Engineer - L2 Job Type: Permanent Location: Warrington, Hybrid Ready to leverage your proficiency in Cybersecurity? Are you looking for an exciting opportunity to build a strong performing team, encouraging best practices in Cybersecurity? Join us as a SIEM SOC Engineer - L2 ! Careers at TCS: It means more … bring products to life. Work with customers and identify opportunities to support their strategy and improve their processes across functions. The Role: As a SIEM SOC Engineer - L2 , you will be responsible for collaborating with teams to design and implement Sentinel for specific client needs. Key Responsibilities: Collaborate with teams … in a SOC environment. Understanding of security concepts, threats, and vulnerabilities. Proficiency in KQL for querying and analyzing security data. Knowledge of troubleshooting with SIEM tools. Knowledge of developing queries and reports for log source integration. Experience in lookups and field value mapping. Ability to understand security threats landscape and more »

area of Endpoint Management (Antivirus/DLP, endpoint security and Forensics), including, Disk Encryption, Anti-Malware, Device and Application Control, event collection & monitoring and SIEM platform guidance methodologies. Essential Responsibilities/Qualifications Proven track-record in a similar role . Be responsible for Endpoint Protection related designs and deployments across … Encryption techniques, Event monitoring, Anti-Malware and Endpoint protection software, (Trellix product experience as additional advantage) . Strong subject matter knowledge in relation to SIEM tool configuration, logging, alerting and monitoring. Strong knowledge of forensics tools, (Axiom product experience as additional advantage) Demonstrable subject matter knowledge in at least one more »

area of Endpoint Management (Antivirus/DLP, endpoint security and Forensics), including, Disk Encryption, Anti-Malware, Device and Application Control, event collection & monitoring and SIEM platform guidance methodologies. Essential Responsibilities/Qualifications Proven track-record in a similar role . Be responsible for Endpoint Protection related designs and deployments across … Encryption techniques, Event monitoring, Anti-Malware and Endpoint protection software, (Trellix product experience as additional advantage) . Strong subject matter knowledge in relation to SIEM tool configuration, logging, alerting and monitoring. Strong knowledge of forensics tools, (Axiom product experience as additional advantage) Demonstrable subject matter knowledge in at least one more »

of the current business environment and the challenges it presents to organisations. What skills will you have: Experience with security tools and technologies (eg, SIEM, IDS/IPS, DLP, encryption). Experience with the implementation of CIS benchmarks Knowledge of cloud security principles and practices. Experience with UK & EU compliance more »

cyber security experience with a strong understanding of security concepts, principles and best practice You're experienced with security tools and technologies e.g. Splunk, SIEM, SOAR, EDR, NDR You have a good knowledge of Linux and associated scripting languages e.g. Python, bash, PowerShell You have an infrastructure/systems engineering … and wellness days Training and conference budget to support your personal development Apply now to find out more about this Cyber Security Engineer (Splunk SIEM Linux) opportunity. At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an more »

GIAC GSEC, GCIH or other comparable degree or other relevant experience. IT skills Network Security System Administration Malware Analysis Security Information and Event Management (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying security more »

payments will be made). Your main duties will include: Technical ownership of the Security Operations Centre (SOC) tooling, most notably the AlienVault & Sentinel SIEM platforms but including other supporting tooling as required, such as components of the Microsoft Defender XDR suite. Responsible for the implementation of the SIEM platform … in customer environments. Ranging from the initial ingestion and tuning of data feeds (from both a SIEM, log collector and source device perspective), and heightened support of the implementation. Ensure the progression of the engineering maintenance plan by assuring that all in scope solutions are reviewed by the engineering team … with agreed quality SLAs and KPIs and industry best practice. Required to work closely with the SOC post-implementation, to support and maintain the SIEM platform on behalf of the SOC, contributing to the ongoing development and maintenance of use cases and rulesets as required. Provide chargeable technical Cyber thought more »

Key requirements: Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco knowledge - LAN/WAN, Juniper, IP Trade. McAfee SIEM Security - Security Information Events Management knowledge IT/ICT further education Vendor certification of the following would be beneficial: VMware, MS Windows System Support, Cisco more »

cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEM and Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »

Develop a comprehensive an in-depth understanding of our company's CyberSecurity offering, including but not limited to Public & Private cloud, managed firewall, SOC, SIEM, EDR, managed services and professional services. Articulate the value propositions and benefits to potential clients based on their unique business needs. Make recommendations and drive more »

e.g. Ansible/Puppet/Landscape) Essential skills/experience required for the Senior Infrastructure Engineer: Extensive experience with Windows, Microsoft365, and Linux Implementing SIEM solutions Configuring and monitoring compliance policies within M365 Setting up SSO (specifically SAML) Managing devices via Intune Desirable skills/experience required for theSenior Infrastructure more »