7 SIEM Jobs in Manchester

Benefits Manchester office, 2 days per week onsite requirement Security Operations/Monitoring/Identifying Threats/Investigation/Prevention/Documentation Responsibilities: Monitor SIEM Systems Identify and investigate security threats Responding to alerts Documentation Collaborating within an information security environment Proactive threat intelligence What We Offer: An opportunity to more »

/7, dealing daily with over 200 million log events and providing support for over 5,000 network devices. We are specialists in SIEM, our services backed by our EDGE methodology built up through dozens of major deployments and hundreds of use cases with many of the UK’s largest … calls to support change requests and helping diagnose system issues. Key responsibilities • Monitor global IDS, Network Intruder, Firewall, DDoS detection and mitigation, availability and SIEM platforms looking for potential threats, vulnerabilities and indicators of compromise. • Provide Incident remediation and prevention documentation and recommendations to customers based on defined procedures and … Perform other duties as assigned. • Ability to work on a shift basis including weekends and evenings. Skills Theoretical knowledge of security toolsets such as SIEM, IDS, Vulnerability Management, Availability Monitoring and other threat detection technologies. · Pre-existing knowledge of common network protocols. · Pre-existing knowledge of Windows and Linux based more »

a strong focus on development/implementation of security strategies Knowledge of security principles and best practices Cyber Essentials Experience with firewalls, antivirus software, SIEM Technical background, including networking, Operating Systems, M365, Active Directory What will you get in return? Bonus scheme Flexible working Exclusive staff discounts Online wellbeing centre more »

Problem, Change, CMDB and Asset Experience with implementation of catalogue items configuring Security incident response applications Experience with OOB/custom integration build with SIEM tool/TI enrichment tools Experience building email integration for importing suspicious emails as Security incidents. At Cognizant, taking care of employees is a priority more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead …/SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in … implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security more »

the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using more »