Alexander Mann Solutions - Public Sector Resourcing
given to candidates who meet all of the essential criteria and hold active security clearance. Accountabilities . Subject Matter Expert (SME) for log source evaluation and onboarding into AzureSentinel . Review existing on-premises logging configurations and recommend improvements for cloud ingestion. . Conduct discovery and assessment of log sources, ensuring appropriate classification and prioritisation. … Track onboarding progress and ingestion metrics using workbooks, dashboards, and reports . Document log schemas, ingestion frequency, source ownership, and normalization mappings Knowledge and Experience . Experience with MicrosoftAzure security technologies, especially AzureSentinel, Log Analytics, and Azure Monitor . Strong understanding of common log formats (Syslog, JSON, CEF, Windows Events … CK, NIST, and CAF . Ability to troubleshoot complex ingestion or parsing issues and resolve at speed Essential Skills . Proven experience onboarding and managing log sources in AzureSentinel . Hands-on experience configuring data connectors and diagnostic settings in Azure . Solid understanding of use case development and detection engineering . Knowledge More ❯
Cambridge, Cambridgeshire, England, United Kingdom
Hays Specialist Recruitment Limited
A multinational semiconductor and software design company seeks a Microsoft Security (Sentinel) Automation & Detection Engineer for a 6-month contract to start ASAP, based in Cambridge (Hybrid), Inside IR35 Role Overview:Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate … to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environmentRecent hands-on experience with managing and implementing MicrosoftSentinel log sources and detection, with knowledge of the related technical best practices in Sentinel and Azure specifically across Sentinel Content Hub, Sentinel Analytics, Sentinel Automation, Azure Event Hub, Azure Logic Apps Azure Function Apps.Experience in Sentinel/Analytics Rules/Logic App automationsKQLDemonstrated ability in cybersecurity, with at least 5 years in a technical role in security operations and/or security software development.Solid understanding of security operations, automations standard More ❯
compliance (FCA, PRA, DORA) through improved security operations. Requirements: 4+ years in cybersecurity, with 2+ in SOC or security engineering. Strong experience with SIEM/SOAR (e.g., Splunk, Sentinel). Proficient in scripting (Python, PowerShell). Knowledge of MITRE ATT&CK and incident response. Experience in regulated financial environments. Nice to Have: SOC certifications (e.g., GCIH, GCIA), Splunk … Certified User/Admin. Familiarity with cloud logging (CloudTrail, Azure Monitor). Understanding of NIST 800-61, ISO 27001. More ❯
Manchester, North West, United Kingdom Hybrid / WFH Options
Queen Square Recruitment Limited
its cybersecurity operations team. This senior role is ideal for professionals who excel in high-stakes environments and possess a strong engineering background, particularly within the Microsoft and Azure security ecosystem. The ideal candidate will be instrumental in driving SOC maturity, optimizing license consumption, and enhancing security visibility across the enterprise. Key Responsibilities Lead the investigation and resolution … of high-severity security incidents Conduct proactive threat hunting using MicrosoftSentinel and the Defender suite Develop and fine-tune analytic rules, detection use-cases, and SOAR playbooks Monitor and optimise license consumption across Microsoft security tools Manage log onboarding/offboarding processes across varied sources and environments Drive SOC maturity initiatives, identifying and implementing process improvements Perform … and threat intelligence summaries Required Skills & Experience 5+ years in cybersecurity, with at least 2+ years at SOC Level 3 or senior analyst level Strong expertise in MicrosoftAzure , including security monitoring and engineering Deep experience with MicrosoftSentinel (KQL, custom rules, automation, dashboards) Hands-on proficiency with Microsoft Defender for Endpoint, Identity, and Office More ❯
Azure Technical Architect Our client is looking for an Azure Technical Architect with the knowledge and experience to design and build cloud based solutions. Responsibilities: * Architecting, building, and maintaining cost-efficient, scalable cloud environments for the organization. * Understanding business objectives of the company and creating cloud-based solutions to facilitate those objectives. * Moving archaic systems into … e.g., Docker, Kubernetes). * Produce high-quality technical documentation, including architectural diagrams, implementation guides, and best practice recommendations. Technical skills: * In-depth knowledge of a wide range of Azure services, such as Azure Virtual Machines, Azure App Service, Azure SQL Database, Azure Storage, Azure Functions, Azure Networking,, Azure Active Directory, and Azure Security Center. * Strong understanding of cloud security principles and best practices. Familiarity with Azure security tools and services, such as Azure Security Center, AzureSentinel, Azure Key Vault, Azure Active Directory, and Azure Firewall. More ❯
Manchester, Lancashire, England, United Kingdom Hybrid / WFH Options
Oscar Technology
architecture using industry frameworks (i.e ISO 27001, CIS, NIST) Produce architecture dcumentation, risk assessments and design decision Experience required: Expertise in Microsoft Security Stack (E5 Security, Defender, Endpoint, Sentinel) Strong knowledge of Microsoft Licensing and governance Experiecne designing reusable security architecture patterns and templates Ideal certifications: Microsoft Security Architect Expert (SC100) CISSP/CISM Public Cloud Architect Certification … Azure, AWS, GCP) UML visualisation tools (BizzDesign, Archi) Apply now for the chance to work for a notable client, especially as interviews are commencing imminently! Security Architect (Microsoft) | Manchester, Birmingham, Sheffield, Edinburgh, or Glasgow | £600-£800 p/day (IR35) | 3 days on-site | 6 month contract (possible extension) Oscar Associates (UK) Limited is acting as an Employment More ❯
Manchester, North West, United Kingdom Hybrid / WFH Options
Oscar Associates (UK) Limited
architecture using industry frameworks (i.e ISO 27001, CIS, NIST) Produce architecture dcumentation, risk assessments and design decision Experience required: Expertise in Microsoft Security Stack (E5 Security, Defender, Endpoint, Sentinel) Strong knowledge of Microsoft Licensing and governance Experiecne designing reusable security architecture patterns and templates Ideal certifications: Microsoft Security Architect Expert (SC100) CISSP/CISM Public Cloud Architect Certification … Azure, AWS, GCP) UML visualisation tools (BizzDesign, Archi) Apply now for the chance to work for a notable client, especially as interviews are commencing imminently! Security Architect (Microsoft) | Manchester, Birmingham, Sheffield, Edinburgh, or Glasgow | £600-£800 p/day (IR35) | 3 days on-site | 6 month contract (possible extension) Oscar Associates (UK) Limited is acting as an Employment More ❯
Welwyn Garden City, Hertfordshire, England, United Kingdom Hybrid / WFH Options
Pontoon
Title: Security Analyst (x2 roles available)Location: Hybrid - 3 days per week in Welwyn Garden CityContract Type: Fixed Term - 6 MonthsTeam: Identity & AccessBring clarity, control and leadership to Azure IAM.We're hiring two experienced Security Analyst on a 6-month fixed-term contract to join our Identity & Access team-responsible for managing access across all colleague platforms. The … team covers a wide range of technologies, but needs deep, targeted expertise in Azure and Entra to improve governance, remediate gaps, and drive better access security across the platform.If you're highly familiar with Entra in Azure, with a strong background in access management and security services, this is your chance to take the lead in … shaping and securing a critical part of a large, complex environment. What you'll be doing* Act as the Azure security and IAM subject matter expert within the Identity & Access team.* Discover, assess, and structure access management data across all Azure services.* Define and document IAM standards for each service.* Build and deliver compliance reporting using More ❯
be the main escalation point for on-site support staff to resolve 365 issues and administer the clients collaboration platform, Microsoft 365, Including Exchange, One Drive, Teams, Sharepoint, Azure AD and Microsoft Endpoint Manager You will also be the lead in compliance configuration and monitoring and including managing data protection requests. Maintaining and patching of the local M365 …/SCCM/Intunes/AD/Azure environments You must be able to demonstrate current and recent E5 security products knowledge; Defender for Clouds Apps, Defender for Identity, and password protection. Experience of Configuring alerts into Sentinel and AD recovery PCP plan testing. This opportunity offers long term opportunity and requires 2 to 3 days More ❯
capability Building automated workflows, playbooks, and logging integrations to enhance the SOC's scalability, efficiency, and incident response readiness. Designed and fine-tune proactive and reactive detections in Sentinel - working closely with Threat Intelligence, IR, and Attack Surface Management teams. Partnered with SOC analysts to identify repetitive tasks and implement automation to boost day-to-day operational efficiency … assessed and improved automation systems for reliability, performance, and scalability to meet evolving security and operational needs. Hands-on experience with security automation and cloud tools such as Sentinel, Splunk SOAR, Palo Alto XSOAR, and platforms like Azure, AWS, and GCP to support SOC and detection engineering efforts. More ❯
industry standards. You will be leading daily stand ups, organising the team, and being an escalation point if necessary. What you'll need to succeed Extensive understanding of Azure, MS Defender, Sentinel, and Cyber Assessment Framework Experience leading a team of security and infrastructure engineers Experience of building and implementing strong operational processes Excellent communication skills More ❯