1 to 25 of 47 Azure Sentinel Jobs in England

discipline. * Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. * Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

secure-by-design" solutions are woven into the fabric of the entire ecosystem.Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

terms of Business Outcomes rather than technical vulnerabilities. Multi-Cloud Security: Hands-on experience designing and securing estate consolidation across AWS and Azure, specifically focusing on identity federation and crosscloud security guardrails. Regulatory Alignment: Deep understanding of the FCA’s Operational Resilience and Consumer Duty requirements, ensuring security … threat modelling techniques (e.g., STRIDE, PASTA) at the design stage of the lifecycle. Security -as -Code: Familiarity with automated assurance tools (e.g., Terraform Sentinel, Azure Policy, AWS Config) to embed guardrails into CI/CD pipelines. Identity & Access Management (IAM): Advanced knowledge of Zero Trust principles ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/O365/Identity … Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – UK Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like … within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build ...

Microsoft Sentinel Engineer Up to £70,000 DOE Remote UK Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like … within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build ...

modern security architectures, solving complex technical challenges, and acting as a trusted technical partner. Technology Environment Microsoft Security Stack: Microsoft Defender XDR Microsoft Sentinel Microsoft Entra ID Microsoft Intune Microsoft Defender for Cloud Experience with alternative modern security platforms such as SentinelOne or CrowdStrike is advantageous. Cloud Platforms … Microsoft Azure (required) Exposure to AWS or GCP (desirable) Platforms & Infrastructure: Active Directory/Entra hybrid identity Windows Server and Linux Networking, VPNs, firewalls, endpoint management Tooling & Automation: KQL PowerShell API integrations Automation tooling Key Responsibilities Technical Delivery Lead technical discussions with customers, guiding architecture, design decisions ...

reputable global client is seeking an experienced L3 SOC Analyst with expertise across Microsoft Security stack, including Microsoft XDR, Microsoft Defender, Sentinel, and the wider M365 security ecosystem. You'll be handling IR, threat detection, threat hunting, lead complex investigations and develop advanced detection content. What … manage high-severity security incidents from identification through containment, eradication, recovery, and post-incident reporting Perform advanced threat hunting using Microsoft Defender XDR, Sentinel, KQL, and other telemetry sources to identify emerging threats, anomalous behaviour, and undetected malicious activity Develop, tune, and maintain Sentinel analytics rules ...

investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot … further details - Alex Reeder Harvey Nash 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity ...

PRTG). Microsoft Technologies Strong Windows Server (Apply online only)), AD, Group Policy, and systems admin. Working knowledge of Exchange Online. Experience with Azure AD and hybrid identity. Familiar with Intune and JAMF for device management. Solid Office 365 and Windows 10/11 admin skills. Virtualisation & Cloud … Skilled in Hyper-V and VMware (resource management, backups, failover). Exposure to Azure, AWS, GCP for migrations and optimisation. Communication Systems Experience with enterprise VoIP systems. Knowledge of IP CCTV setup, storage, and network integration. Backup & DR Proficient with Veeam for backup/replication. Experience ...

nature of the clients supported, candidates must be eligible for SC and NPPV3 security clearance . Key Responsibilities Create, maintain, and optimise Microsoft Sentinel analytics rules, Logic Apps, and playbooks to support incident detection and response. Support and enhance integrations between Microsoft Sentinel and other security … MSSP environment, responding to security incidents for public sector customers in line with agreed SLAs. Essential Experience Hands-on experience with Microsoft Sentinel within a SOC or MSSP environment. Experience building and maintaining automation using Azure Logic Apps and Sentinel playbooks. Working knowledge ...

helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory ...

Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data … protection requirements Great to have: Certifications such as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure to AI/ML tools in security contexts Experience with MDM platforms and mobile security Skills & Attributes Strong analytical and problem-solving skills Clear and confident communication ...

Cloud Security Pre-Sales Consultant - Cloud, Security, AWS, Azure Salary: £60,000 - £65,000 (Depending on Experience) Location: London/Hybrid (willingness to travel on-site required) Company Overview A forward-thinking and entrepreneurial cloud security company, partnering with major organisations and continuing to grow rapidly, is offering … years' experience in cloud security, pre-sales engineering, technical consulting, or security operations. Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise. Understanding of hybrid and on-premise security concepts. Awareness of key frameworks such ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

leading or mentoring SOC teams Strong knowledge of incident response and threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding ...

leading or mentoring SOC teams Strong knowledge of incident response and threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding ...

experience: GlobalProtect, site-to-site IPsec VPNs, SSL decryption operations Advanced Threat Prevention tuning, WildFire analysis, DNS Security Cloud security/networking exposure: Azure/AWS/GCP, cloud-native firewalls, transit networking VM-Series deployments, Terraform/automation exposure SIEM integration experience: Splunk/Sentinel ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

SIEM and XDR tooling Developing parsers, rules and detection logic Running vulnerability and exposure assessments using leading platforms Supporting cloud environment reviews across Azure, AWS or GCP Delivering clear technical documentation to customers Collaborating with internal SOC Engineers on innovation and roadmap work What we're looking … Experience across SOAR platforms (XSOAR, Logic Apps, Siemplify) Strong scripting ability (Python, PowerShell) Hands‐on SIEM engineering (Sentinel, Chronicle or similar) Knowledge of XDR/EDR tooling (Defender, CrowdStrike, SentinelOne) Experience with Tenable, Qualys or Rapid7 Understanding of exposure management or CTEM tooling Strong communication skills and customer ...