1 to 25 of 178 SIEM Jobs in England

Cyber Defence Analyst - DV Clearance Required! If your skills, experience, and qualifications match those in this job overview, do not delay your application. The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational more »

Cyber Defence Analyst - DV Clearance Required! The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal more »

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

DV. Requirements: Extensive experience as an Infrastructure Engineer in a defence background. Solid experience with Active Directory Wintel experience Experienced with SQL Redhat Linux SIEM/Splunk installation and configuration experience. ACTIVE MOD DV experience This is an urgent requirement. To apply, please send me your updated CV and mobile more »

hardware. Support Junior Analysts in managing SOC systems. Demonstrate previous experience with Enterprise ICS/network architectures and technologies. Possess experience and knowledge of SIEM solutions, including use case identification, creation, deployment, and tuning. Serve as a mentor/coach to junior analysts. Your Profile: Previous experience utilizing the MITRE … C2M2. Excellent communication skills. Experience in writing Defence/Government documentation. Desirable Qualifications: Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent). SIEM Design, Architecture, and Analyst Course (SANS SEC455 or SEC555 or equivalent). Advanced Analyst Course (SANS SEC503 or equivalent). Benefits: Join a rapidly expanding more »

direction in all aspects of security operations. Develop and implement robust security strategies and policies to protect company assets and data. Configure and maintain SIEM tools to monitor and analyze security events across the organization. Collaborate with DEVOPS teams to ensure security best practices are integrated into the development and … improvement. Qualifications: Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). Extensive hands-on experience configuring and managing SIEM tools (e.g., Splunk, ArcSight, QRadar). Proficiency in working within a DEVOPS environment, with strong knowledge of AWS services and security best practices. Proven experience more »

with the following technologies/systems: o Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering o SIEM/Splunk o Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus o Microsoft Windows Server family … Citrix/VMWare 🌳 Ideally the candidate will be CISSP certified and be certified in Risk and information systems 🌳 Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents 🌳Understanding of security issues and ability to allocate work more »

ll need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and more »

skills •Azure API Management •Virtual Network architectures •K8s security features (SecurityContext, network policies) •Relational and no-SQL databases (e.g MS SQL, Redis, Cosmos DB) •SIEM systems such as Sentinel •Cloudflare •A/B and MVT Testing •API design, including RESTful and Graph APIs •GitOps approach and DevOps workflow automation •BDD more »

SOC Centre. Requirements: Proven experience as a SOC Analyst, with a focus on Level 3 responsibilities. Strong knowledge of Sentinel, Defender, Qradar, or similar SIEM tools. Excellent analytical and problem-solving skills. Ability to work effectively under pressure and prioritize tasks in a fast-paced environment. Flexibility to work on more »

time, budget and quality. Experience/essential and desired for successful job performance • Extensive experience in delivery of Security projects like Data loss prevention, SIEM, Identity access management and Privileged Access management. • Significant practical experience of leading and managing Corporate/Infrastructure change programmes across an end-to-end project more »

threat hunts using your understanding of the current threat landscape and methodologies used by attackers. Experience of creating custom detections or correlations rules in SIEM platforms and EDR tools Ability to query logs and manipulate data in a variety of formats across different platforms. Experience in programming/scripting (Python more »

Cyber Security Engineer/SIEM Engineer (ArcSight) Day Rate: Excellent Day Rate IR35 Status: Inside IR35 Contract Length: Initial 6-months (likely to be extended multiple times) Office Location: Central London Hybrid Location: 3 days per week in office, 2 days remote About the Client and the Role: My client … an major ongoing ArcSight integration project . Main Responsibilities: Act as point of contact for ArcSight (integration, deployment, configuration etc.) Implementing and integration of SIEM/security tools and processes Automate build, configuration, and updates for security tools Integration of security capabilities - Scripting with Python, PowerShell etc. Candidate Requirements: SME more »

for new and existing products and ways of working. Requirements: Proven knowledge of information and cyber security engineering Great experience with PCI DSS. Good SIEM knowledge (Splunk is ideal) Great understanding of logs and log events across Linux, Windows, AWS, AV and Vulnerability scanning etc Good experience of Security Operations more »

deliver IT change initiatives in the company. Candidates should have additional experience of: Extensive experience in delivery of Security projects like Data loss prevention, SIEM, Identity access management and Privileged Access management. Significant practical experience of leading and managing Corporate/Infrastructure change programmes across an end-to-end project more »

our SOC Centre. Requirements: Proven experience as a SOC Analyst, with a focus on Level 3 responsibilities. Proficiency in Sentinel, Defender, Qradar, or similar SIEM tools. Strong analytical skills and attention to detail. Ability to work effectively in a team environment and communicate technical information to non-technical stakeholders. Flexibility more »

OT security solutions. Assist in the deployment and configuration of security technologies, such as firewalls, intrusion detection systems, and security information and event management (SIEM) solutions. Conduct vulnerability assessments and penetration tests to identify potential weaknesses in OT environments. Participate in incident response activities, including monitoring and analysis of security more »

Senior Cyber Security Analyst/Senior Cyber Defence Analyst/SIEM SME/Incident SME Position Overview: As a member of the expanding security team, the Cyber Defence Analyst plays a pivotal role in conceptualising, implementing, and sustaining operational cyber security measures. This role encompasses proactive risk assessment, protective monitoring … alerts, enhancing incident response capabilities. Support Junior Analysts in managing SOC systems. Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »

Engineer or in a similar position. You will have experience in a broad variety of technology including AWS, Microsoft 365, internet protections, vulnerability management, SIEM, EDR. Experience securing on premises infrastructure and cloud services. Experience working with Systems Engineering teams, DevSecOps, CI/CD Senior Security Engineer - Onsite - £100K more »

IT security operations analysts, supporting their development and training. Select, deploy, and maintain cyber defence technologies such as Endpoint Detect and Response, Anti-Virus, SIEM, and SOAR. Monitor and manage the use of cyber defence tools, ensuring efficient performance and driving operational efficiency. Develop Standard Operating Procedures (SOPs) and other … and intrusion detection/prevention systems. Proficiency in securing operating systems such as Windows, Linux, and macOS. Knowledge of large-scale security technology deployments (SIEM/SOAR/EDR/NDR). Ability to lead technical teams and manage service providers effectively. Familiarity with threat intelligence sources and incident prioritization. more »

and projects. Requirements You will have worked a as Security Operations Engineer or similar role. You will have solid understanding of AWS, Microsoft security, SIEM, SOC, and programming. Solid experience of relevant security frameworks such as ISO27001, GDPR & HIPAA, NIST Cybersecurity Framework. Proven experience AWS and Azure cloud computing experience more »

capability, especially using PowerShell Bash. Familiarity with tools like zScaler, Solarwinds, Crowdstrike, Splunk. Experience with batch automation tools, Linux, and Azure. Working knowledge of SIEM Tools. Experience in Event Analysis, Triage, Incident Handling, and Root-Cause identification. What can we do for you? 22 days holiday On-sire gym at more »

and communicate effectively at all levels to both technical and non-technical audiences, assess and evaluate risk and understand the implications of new technologies. SIEM experience with designing, implementing and maintaining Splunk Excellent analytical and problem-solving skills coupled with ability to assess complex situations, identify risks, and recommend effective more »

of a collaborative and innovative team where you will be hands-on with various Security & Infrastructure products including Azure, WAF, Internet protection, Vulnerability management, SIEM, Firewalls, CASB and EDR. Within this role, you will work with the team to engage and technically support in driving performance in third parties, support … and skills required: Experience within a Security Operations/Cybersecurity Engineer Experience with Azure (or another Cloud vendor), WAF and one or more of SIEM, Firewalls, CASB, EDR etc Hands-on experience in implementing, customizing and supporting third-party systems Exposure within a professional/managed services environment Desirable For more »

with the ability to create, update and maintain network diagrams. As Senior Cyber Security Specialist, you will have a detailed knowledge of security products, SIEM, AV, security gateways, Firewalls, load-balancers, ACLs, routing and switching. You should have a strong understanding of common IT protocols, infrastructure and systems. You will … have extensive experience of technologies including but not limited to Firewalls, IPS & IDS, Active Directory, Windows Server, Linux, AWS, Vulnerability management and SIEM, DRM. We would expect you to have a familiarity with industry security standards such as NIST, Cyber Essentials, ISO27001 and GDPR. You should also have experience with more »