48 Permanent SIEM Jobs in the South East

Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »

smoothly as well as ordering new equipment and improving existing processes. Main projects will include: Patch Management, Windows 10 Deployment, Cloud Migration, MDM Deployment, SIEM Deployment, Perimeter Security & WAN Management, Cyber Essentials Level 2 & ISO 2001 (Not Essential!) The Ideal Candidate For this role it is essential that you are more »

vulnerability experience In summary, Deliver - Deploy - Install Ideal candidate: Knowledge or experience using Tenable.io Or equivalent experience with vulnerability software - essential Experience with EDR, SIEM, Compute, VMWare, Dell, Cisco Datacenters are also highly desirable more »

At Direct Line Group, insurance is just the start. Combining decades of industry experience with talented people in every field from data, technology, customer care and auto repair, to HR, finance and procurement , we're a customer-obsessed market powerhouse. more »

ofHardware (Dell, Cisco, Pure, Palo Alto)Microsoft Exchange, Microsoft SQLNetworking Cisco, Palo Alto, Big IP (FW, SDWAN, VLAN’s, Routing, Switching)Security (Splunk, APM, SIEM)Login/Monitoring (Splunk, Elastic, Prometheus, PRTG, Netbox, IPAM, CMDB)Mattermost, AtlassianThe roleAs a Site Reliability Engineer you will work on projects relating to application more »

and security controls. Key Responsibilities:Responding to threats and incidents.Developing security controls.Assessing vendor security.Analyzing trends and activities.Requirements:Practical knowledge of technical security controls (e.g. SIEM, EDR, AV, Web + Email Gateways)Strong knowledge of endpoint and server operating systems and networkingISO27001 experience preferred.Desirable Certifications:ISC2 CISSP, CCSP, or SSCPCOMPTIA CASP+ more »

experience in the following:An excellent understanding of Linux operating systems, including knowledge of installations, configurations, and troubleshootingRecent involvement in implementing IDAM, PAM or SIEM toolingPrevious experience managing F5 load balancersExperience of an enterprise Linux, preferably Red Hat EnterpriseAn understanding of scripting/programming in either Ansible, Perl, Python or more »

in scripting languages such as BASH, PowerShell, and Python. Knowledge of databases like MySQL and PostgreSQL. Strong problem-solving and analytical skills. Understanding of SIEM solutions like Splunk. Familiarity with containerization and orchestration principles and tools such as Kubernetes, Docker Swarm, etc. Experience with automation tools like Ansible, Terraform, and more »

on bids and/or large and complex changes. Solid understanding of a variety of network and routing protocols. Experience with Network Management or SIEM designs, tooling or support. Demonstrable troubleshooting skills and approach to defect resolution. SDWAN experience is advantageous. Your benefits: 25 Days annual leave plus public holidays more »

investigating incidents, and assisting in incident response. You will also play a vital role in maintaining and optimizing our security information and event management (SIEM) platform. While previous experience in a Managed Security Service Provider (MSSP) environment is advantageous, it is not a strict requirement. Key Responsibilities Utilize a SIEM … incident analysis and investigation, escalating issues as necessary. Contribute to containment strategies during security incidents, data loss, or breaches. Assist in the design and implementation of SIEM use cases to enhance detection capabilities. Ensure the SIEM platform's health through daily checks and proactive maintenance. Employ various applications and systems … and Hunting methodologies. Experience supporting Incident and Change Management processes. SOC Analyst - Fully remote UK (£50,000 - £70,000 + Bonus) Desired Skills and Experience SIEM/SOC/Threat Hunting/Cyber Security/QRadar more »

5+ years commercial experience with the following technologies/systems: Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning Microsoft Windows Server family of products. Operational experience of PCI … Good understanding of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus Microsoft Windows Server family of products. … of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Desirable Experience: Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

guidance and direction in all aspects of security operations.Develop and implement robust security strategies and policies to protect company assets and data.Configure and maintain SIEM tools to monitor and analyze security events across the organization.Collaborate with DEVOPS teams to ensure security best practices are integrated into the development and deployment … for continuous improvement.Qualifications:Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience).Extensive hands-on experience configuring and managing SIEM tools (e.g., Splunk, ArcSight, QRadar).Proficiency in working within a DEVOPS environment, with strong knowledge of AWS services and security best practices.Proven experience working as more »

Code practices. • Assist in securing data platforms, including Data Bricks, Azure SQL, and other in-house developed apps/plugins. • Collaborate on implementing internal SIEM using Sentinel and work towards establishing an internal SOC. • Support the Infrastructure team in configuring firewalls securely and managing Fortinet FortiAnalyzer. • Provide guidance to Infrastructure … and Product teams on securing Microsoft 365 and Azure cloud services. • Establish and manage SIEM and SOAR capabilities using Azure Logic Apps or equivalents. • Enhance the usage and support of Entra ID (previously Azure AD) for IAM, Identity Governance, and PIM. • Document security processes, tool configurations, and security service delivery more »

Job DescriptionSOC Manager/Lead London/WFH to £70kAre you an experienced SOC Manager/Lead with a strong knowledge of SIEM?You could be progressing you career in an impactful role at a tech company that provide cyber security products to a range of finance, government, defence, law … role in ensuring the security and resilience of both internal and client based information systems. You'll provide subject matter expertise, selecting the appropriate SIEM platform and then once it's embedded ensuring BAU and leading security monitoring, carrying out indepth investigations and actively participating in incident response.This is a … a week.About you:You're an experienced SOC Analyst with the ability to troubleshoot and resolve complex security issuesYou have a strong understanding of SIEM systems e.g. IBM QRadar, FortiSIEM, Splunk, Sentinel and are able to recommend the right tool for the jobYou have a good understanding of IT security more »

Focussing on developing highly secure pipelines while using Terraform to deploy into the Azure Cloud. You'll also require skills in the likes of SIEM and familiar with the likes of DAST & SAST testing. Finally, strong knowledge of frameworks like ISO & NIST is required. Any experience of the OT/… this though; they'll consider a more mid-level candidate with strong foundationsTech-Stack essentials are: Azure (ideally but will consider AWS/GCP), SIEM, ELK, Terraform, Security tools & ScriptingCompany working heavily in Green-technology, Carbon-Emissions & SustainabilityPlease submit your CV to be considered and Ben Griffiths from Paradigm Tech more »

cyber security technologies and services in use at the company Role & Accountabilities KEY Identity access management, experience/involvement with Security services such as SIEM and Vulnerability Management. Provide expert knowledge and act as a subject matter expert on key principles of (IAM) with an in-depth knowledge in the … remediation of vulnerabilities in line with best practise and policy. Assist with the investigation vulnerability results and remediation efforts. Assist with management of the SIEM service, including the ingestion of new log sources, configuration of alerting and providing expert knowledge to aid the investigation of alerts where required. Support the more »

of cyber security experience with a strong understanding of security concepts, principles and best practiceYou're experienced with security tools and technologies e.g. Splunk, SIEM, SOAR, EDR, NDRYou have a good knowledge of Linux and associated scripting languages e.g. Python, bash, PowerShellYou have an infrastructure/systems engineering backgroundIdeally you … medical care and wellness daysTraining and conference budget to support your personal developmentApply now to find out more about this Cyber Security Engineer (Splunk SIEM Linux) opportunity.At Client Server we believe in a diverse workplace that allows people to play to their strengths and continually learn. We're an equal more »

Are you an expert Engineer who has been involved designing and implementing a SIEM solution based on a set of customer requirements? Are you eager for something new and want to join our experienced team on a transformation journey? Join our well-established Cyber Security Operations team within Aerospace, Defense … our HemelHempstead site 3 days a week. What you will be doing: Maintaining the health of the SOCs technology stack Design and implement a SIEM based on a set of customer requirements Crafting and delivering solutions to onboard customers into the Managed SOC Provide engineering support to analysts Aid in … priorities within a fast paced environment It would be great if you have: Deploying solutions into Cloud (especially where Infrastructure as Code is used) SIEM detection-rule writing Use of log filtering and forwarding technology (such as Splunk forwarders, Logstash, Fluentd, Fluent Bit, etc.) If you are interested in this more »

on automation in collaboration with the Head of Information Security Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based security information and event management system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »

conveying technical aspects to an audience (e.g. product demos to the customer). Working knowledge of using the Scaled Agile Framework (SAFe). ArcSight SIEM toolset, or open to cross-train into ArcSight SIEM toolset (ESM, SmartConnectors, Logger and ArcMC). DV Cleared Application Packager - 5 days onsite near Reading more »

are eager to continue their success, supporting a fast-pace, dynamic, trading organisation.The successful candidate will have recent involvement in implementing PAM, IDAM or SIEM tooling and have a range of technical knowledge and be able to add value around scripting, low balancing network infrastructure and an expert around installation … IT Governance policies and procedures.Skills and requirements:Proficient working experience/knowledge of Linux operating systems including configurations, installation, and troubleshooting.Recent involvement in implementing SIEM tooling, IDAM or PAM.Previous experience managing F5 load balancers.Previous experience of diagnosing, trouble shooting and resolving technical issuesTCP/IP, DNS, LDAP, SNMPLAN/WAN more »

experience with the Microsoft suite of services to secure the Modern Workplace (Defender, Intune & Sentinel) as well as advanced, cloud-based services (SOC/SIEM, MDR/EDR). In addition, customers will need expert guidance in protecting their data, securing their IT infrastructure and working securely from anywhere (LAN … an MSP/Pre-Sales role: Microsoft 365, Windows Copilot, SharePoint, Defender, Intune, Entra, Teams, Sentinel, Purview.Advisor in advanced cybersecurity services including SSE, SASE, SIEM, MDR/EDR.Solutions design experience - modern workplace infrastructure - SD-WAN, SASE, LAN, WiFi & CybersecurityExperience in recommending and designing solutions to meet compliance standards such as more »