11 Permanent SIEM Jobs in the Thames Valley

Security Engineering, Network security and/or SOC experience. Experienced engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, SASE, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Strong understanding of Security Infrastructure design, IT Security best more »

Security Engineering, Network security and/or SOC experience. Experienced engineer with demonstrable detailed knowledge of security products, Web Application Firewalls, SASE, access control, SIEM, AV, email and web security gateways, firewalls, load-balancers, ACLs, TCP/IP, routing and switching. Strong understanding of Security Infrastructure design, IT Security best more »

commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning (e.g., Nessus) Microsoft Windows Server family of products more »

and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events more »

/pcaps Solid understanding of TCP/IP, Routing and DNS Compliance monitoring (GDPR, ISO etc) Defence in Depth techniques. Experience in using a SIEM (ELK, Logstash, Splunk, Sentinel etc) for reporting and analysis, with experience in configuring and tuning alerts and alarms and ingesting new log sources Monitor threat more »

with the following technologies/systems: o Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering o SIEM/Splunk o Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus o Microsoft Windows Server family … Citrix/VMWare 🌳 Ideally the candidate will be CISSP certified and be certified in Risk and information systems 🌳 Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents 🌳Understanding of security issues and ability to allocate work more »

in scripting languages such as BASH, PowerShell, and Python. Knowledge of databases like MySQL and PostgreSQL. Strong problem-solving and analytical skills. Understanding of SIEM solutions like Splunk. Familiarity with containerization and orchestration principles and tools such as Kubernetes, Docker Swarm, etc. Experience with automation tools like Ansible, Terraform, and more »

5+ years commercial experience with the following technologies/systems: Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning Microsoft Windows Server family of products. Operational experience of PCI … Good understanding of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

commercial experience with the following technologies/systems: Check Point Firewall/NIDS/DLP/Anti-Virus/Identity Awareness/URL Filtering SIEM/Splunk Enterprise Desktop and Server Anti-Virus/Malware and endpoint protection technologies Vulnerability Security Scanning e.g. Nessus Microsoft Windows Server family of products. … of TCP/IP Identity and access management systems Active Directory, GPO Configuration Citrix/VMWare Desirable Experience: Experience of managing and developing a SIEM system, and feeding events into a SOC in order to identify and alert on security incidents Understanding of security issues and ability to allocate work more »

investigating incidents, and assisting in incident response. You will also play a vital role in maintaining and optimizing our security information and event management (SIEM) platform. While previous experience in a Managed Security Service Provider (MSSP) environment is advantageous, it is not a strict requirement. Key Responsibilities Utilize a SIEM … incident analysis and investigation, escalating issues as necessary. Contribute to containment strategies during security incidents, data loss, or breaches. Assist in the design and implementation of SIEM use cases to enhance detection capabilities. Ensure the SIEM platform's health through daily checks and proactive maintenance. Employ various applications and systems … and Hunting methodologies. Experience supporting Incident and Change Management processes. SOC Analyst - Fully remote UK (£50,000 - £70,000 + Bonus) Desired Skills and Experience SIEM/SOC/Threat Hunting/Cyber Security/QRadar more »

on automation in collaboration with the Head of Information Security Operations and the rest of the team. OxCERT runs an on-premises Elasticsearch-based SIEM solution, an Intrusion Detection System (IDS), and a vulnerability scanning service as well as other open source and commercial tools. We are one of the … Software and Open Source technologies and actively supports several related project communities. Current projects include the enhancement of the existing Elastic based security information and event management system, the deployment of a new incident response tool, and development of an IT forensics capability. The team has achieved standing and recognition more »