Gosport, South East, United Kingdom Hybrid / WFH Options
Sopra Steria Limited
Do you have extensive experience with Splunk? Eligible for DV clearance? And can be based in either Gosport or Glasgow with some remote working? If yes to all of this then read on! As a Managing Security Engineer, you will more »
SOC Centre. Requirements: Proven experience as a SOC Analyst, with a focus on Level 3 responsibilities. Strong knowledge of Sentinel, Defender, Qradar, or similar SIEM tools. Excellent analytical and problem-solving skills. Ability to work effectively under pressure and prioritize tasks in a fast-paced environment. Flexibility to work on more »
ll need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of securityevent data, the value of different data sources andmore »
Dell, Cisco, Pure, Palo Alto) Microsoft Exchange, Microsoft SQL Networking Cisco, Palo Alto, Big IP (FW, SDWAN, VLAN’s, Routing, Switching) Security (Splunk, APM, SIEM) Login/Monitoring (Splunk, Elastic, Prometheus, PRTG, Netbox, IPAM, CMDB) Mattermost, Atlassian The role As a Site Reliability Engineer you will work on projects relating more »
emerging threats, such as 0-day exploits published for popular software used across the Integrity360 customer base. Continuous deployment of detection analytics (predominantly to SIEM), designed to detect any threats or risks identified during threat intelligence reviews. Engage with colleagues, from teams such as Incident Response, to identify indicators which … Engineer, DevSecOps Engineer, Network Security Engineer, Cyber Security Engineer, InformationSecurity Engineer, etc. Demonstrable experience implementing threat detection capabilities in security tooling such as SIEM, EDR, XDR, or SOAR. Deep understanding of security frameworks such as Mitre ATT&CK, OWASP, NIST, and/or CIS. Strong, low-level understanding of more »
direction in all aspects of security operations. Develop and implement robust security strategies and policies to protect company assets and data. Configure and maintain SIEM tools to monitor and analyze security events across the organization. Collaborate with DEVOPS teams to ensure security best practices are integrated into the development and … improvement. Qualifications: Bachelor’s degree in Computer Science, InformationSecurity, or related field (or equivalent experience). Extensive hands-on experience configuring and managing SIEM tools (e.g., Splunk, ArcSight, QRadar). Proficiency in working within a DEVOPS environment, with strong knowledge of AWS services andsecurity best practices. Proven experience more »
years’ experience in a related SOC Incident management/Analyst role IT skills Network Security System Administration Malware Analysis SecurityInformationandEventManagement (SIEM) Incident Response Tools Professional Competencies Solid grasp of cybersecurity concepts, including threat identification, risk assessment, and incident management, coupled with practical experience in applying securitymore »
verify compliance requirements are met.SIEM Integration and Configuration for Microsoft Cloud Services:Configure cloud services and Defender for Cloud for integration with Rapid7 InsightIDR SIEM to enhance security monitoring and incident response capabilities.Integrate SIEM for monitoring Entra ID sign-in, audit, and risk log categories.Work with Security Operations to build more »
Corsham, England, United Kingdom Hybrid / WFH Options
J&C Associates Ltd
IT Recruitment specialist that provides support to the clients across UK, Europe and Australia. We have an excellent job opportunity for you. Role Title: SIEM/Incident SME(Need Active DV Clearance) Location: Hybrid onsite in one of the following locations 2/3 days per week - Corsham, Portsmouth or … cyber defence hardware. • Support Junior Analysts to manage SOC systems. • Previous experience of Enterprise ICS/network architectures and technologies • Experience and knowledge of SIEM solutions; having the ability to identify use cases and their creation, their deployment and tuning. • Experience as a mentor/coach to junior analysts Your … C2M2) • Excellent communication skills • Experience of writing Defence/Government documentation Desirable Qualifications: • Broad Spectrum Cyber Course (SANS SEC401 or SEC501 or equivalent) • SIEM Design, Architecture and Analyst Course (SANS SEC455 or SEC555 or equivalent) • Advanced Analyst Course (SANS SEC503 or equivalent more »
AWTG, a leader in 5G systems integration and application development, is looking for an IT and Network Security Engineer. As a Network Security Engineer, you'll work across various domains, including RAN, Mobile Core, IP Routers, Ethernet switches, Data center more »
OT security solutions. Assist in the deployment and configuration of security technologies, such as firewalls, intrusion detection systems, andsecurityinformationandeventmanagement (SIEM) solutions. Conduct vulnerability assessments and penetration tests to identify potential weaknesses in OT environments. Participate in incident response activities, including monitoring and analysis of securitymore »
IT security operations analysts, supporting their development and training. Select, deploy, and maintain cyber defence technologies such as Endpoint Detect and Response, Anti-Virus, SIEM, and SOAR. Monitor and manage the use of cyber defence tools, ensuring efficient performance and driving operational efficiency. Develop Standard Operating Procedures (SOPs) and other … and intrusion detection/prevention systems. Proficiency in securing operating systems such as Windows, Linux, and macOS. Knowledge of large-scale security technology deployments (SIEM/SOAR/EDR/NDR). Ability to lead technical teams and manage service providers effectively. Familiarity with threat intelligence sources and incident prioritization. more »
Cyber Security Engineer/SIEM Engineer (ArcSight) Day Rate: Excellent Day Rate IR35 Status: Inside IR35 Contract Length: Initial 6-months (likely to be extended multiple times) Office Location: Central London Hybrid Location: 3 days per week in office, 2 days remote About the Client and the Role: My client … an major ongoing ArcSight integration project . Main Responsibilities: Act as point of contact for ArcSight (integration, deployment, configuration etc.) Implementing and integration of SIEM/security tools and processes Automate build, configuration, and updates for security tools Integration of security capabilities - Scripting with Python, PowerShell etc. Candidate Requirements: SME more »
Glasgow, Lanarkshire, Scotland, United Kingdom Hybrid / WFH Options
SDL Solutions Limited
updated on IT security trends and regulations. Maintain accurate security documentation. Skills and Qualifications: Understanding of computer networking across LANs and WANs Knowledge of SIEM solutions Any knowledge of Azure Security principles Ideally experience with Microsoft Defender stack Knowledge of essential cybersecurity principles and practices Excellent communication, stakeholder management, andmore »
Protection (AIP). Ability to develop and implement strategies for compliance with data protection regulations. Knowledge and experience in security technologies such as EDR, SIEM, and Vulnerability Management is a plus. Relevant security certifications (CISSP, GCIA, CISM, etc.) and/or product certifications (Azure, Windows, AD, etc.) are desirable. This more »
andsecurity monitoring Understanding of threat modelling Investigation experience into Informationand Cyber security incidents Broad technical understanding covering Windows, Linux, Unix, Networking, Cisco, SIEM, IAM, DLP, LAN/WAN, Wireshark, VMware, SSL and others Experience and knowledge of NIST, COBIT, GCIA, GCIH, GCFA etc. This is an excellent opportunity more »
and risk levels Develop and maintain SecOps documentation, policies, and procedures Maintain cybersecurity solutions across systems, applications, and infrastructure Investigate security alerts from the SIEM tool and take appropriate incident response actions. Communicate with stakeholders about security incidents, detailing actions taken. Support the Cyber Incident Response Manager by triaging events more »
with firewall configuration, Next Gen Firewalls, Load-Balancers, and intrusion detection/prevention platforms. Proficiency in Python, PowerShell scripting, and Shell scripts. Familiarity with SIEM platforms is preferred. Security certification such as CISSP, GCIA, or CISM is a plus. Our client is an equal opportunity employer who are committed to more »
and mentoring to data, security, and network engineers. Technical Scope: Security Domains : Architecture and strategy across IT security areas such as Identity & Access Management, SIEM/SOAR, Threat Prevention, Network Security, Application Security, Data Privacy. Compliance : Ensure data securityand compliance with relevant regulatory andsecurity standards (e.g., NIST, CyberEssentials more »
Aberdeen, Scotland, United Kingdom Hybrid / WFH Options
prosource.it
and monitoring tools Cloud Virtualisation and Containerisation security assessments and review Edge Security Technology, IAM, PAM Data Securityand governance Network Monitoring Tools andSIEM Technology Risk Management Tools Ability to act proactively, escalating issues as required Strong documentation and communication skills (verbal and written) Excellent problem-solving skills Strong more »
Time Protocol (NTP) system to deliver accurate time to the Cyber Security suite of systems and facilities; Delivery of a SecurityInformation & EventManagement (SIEM) system for monitoring Cyber Security information. Network Hardening Project Protective Monitoring Project Qualifications Degree Qualified in appropriate discipline Professional registration (minimum IEng Level) with a more »
Will Need to Succeed: Minimum 5+ years of experience working in 24x7 enterprise operations, preferably security operations Minimum 3+ years of experience working with SIEM, including running investigations (correlating events on different aspects such as source/destination addresses, usernames, and process names) Demonstrable comprehension of InformationSecurity including malware more »
of staff · Minimum two years experience working within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If more »
Off, 5 Nights on, 3 Off) Tech Stack across roles: Experience with Operating Systems & Computer Forensics Network, Routing & Switching experience with knowledge of SIEM Technologies Knowledge of Cybersecurity frameworks and standards If you are interested in any of these SOC roles and are working at any level across the SOC more »
Frameworks and governance such as NIST, SOCII, ISO27001 etc. Security certification such as CEH, CCNA, OSCP, GCIH etc Security tools/practices such as SIEM, EDR, NDR, OSINT etc Security clearance Commitment As a ‘bench’ Incident Manager you will be called whenever a suitable incident is raised by our clients more »