1 to 25 of 50 Azure Sentinel Jobs in England

highly experienced Monitoring and Governance Subject Matter Expert (SME) to lead the design, implementation, and optimisation of monitoring capabilities across Microsoft Fabric and Azure ecosystems. The role focuses on Microsoft Purview, Azure monitoring services, and unified observability across data platforms including Power BI. You will … optimise Microsoft Purview capabilities including: Data Catalogue Data Lineage Data Classification Sensitivity Labels Data Loss Prevention (DLP) Configure and manage monitoring tools including: Azure Monitor/Log Analytics Azure Sentinel Fabric Capacity Metrics Monitoring Hub Fabric Unified Admin Monitoring (FUAM) Insight Manager Ensure effective ...

Responsibilities: Security Operations: Lead monitoring, detection, and incident response for internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration … about people and processes as it is about code. Experience: 4-5 years in cybersecurity with at least 2-3 years specifically in Microsoft Azure cloud security. Technical Depth: Deep expertise in Azure AD, Sentinel, and Microsoft Defender. SIEM Mastery: Proven experience tuning SIEM ...

application owners to drive remediation of unpatchable vulnerabilities through configuration changes, mitigations, or documented risk acceptance. Assess cloud security risks across the Azure estate using native and third party security tools. Develop, maintain and evidence standards, procedures and secondary security controls to ensure policy and regulatory compliance. Support … Ivanti Neurons, cloud security controls and industry best practices. Hands-on experience with the Microsoft security ecosystem, including Microsoft Defender for Cloud, Microsoft Sentinel, Azure Update Manager and core Azure services. Demonstrated expertise in vulnerability management, risk assessment, mitigation strategies, and patch management within ...

application owners to drive remediation of unpatchable vulnerabilities through configuration changes, mitigations, or documented risk acceptance. Assess cloud security risks across the Azure estate using native and third party security tools. Develop, maintain and evidence standards, procedures and secondary security controls to ensure policy and regulatory compliance. Support … Ivanti Neurons, cloud security controls and industry best practices. Hands-on experience with the Microsoft security ecosystem, including Microsoft Defender for Cloud, Microsoft Sentinel, Azure Update Manager and core Azure services. Demonstrated expertise in vulnerability management, risk assessment, mitigation strategies, and patch management within ...

influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking … into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through ...

Management processes Implement identity access control measures and DLP controls Respond to Tier 3 security incidents Monitor threat intelligence Participate in pentests Engineer Microsoft Sentinel detections & SOAR playbooks Cyber Security Engineer: Technical Experience Microsoft Security: Defender of Endpoint, Identity, Cloud Apps, Office 365 Azure AD Microsoft … Purview Cloud & Endpoint Security Azure Sentinel The permanent opportunity for a Cyber Security Engineer will be based out of the Birmingham offices on a hybrid basis. This is an opportunity to join an industry leader that has grown year on year. For more information, please apply ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

understand the implications of new technologies. Good project management skills, with the ability to balance multiple initiatives and priorities simultaneously. SIEM experience with Azure Sentinel and or Splunk. Experience of running simulated or reacting to actual incidents, following procedures and good practice to limit, reduce ...

schedule works and manage customer expectations Skills Required: Windows Server - Active Directory, DNS, DHCP migration, group policy, auditing, security, windows events Microsoft 365 Azure AD, Exchange, Teams, OneDrive/SharePoint migration, policies, security Microsoft 365 security Intune, conditional access, defender for cloud EDR or XDR solutions such ...

schedule works and manage customer expectations Skills Required: Windows Server - Active Directory, DNS, DHCP – migration, group policy, auditing, security, windows events Microsoft 365 – Azure AD, Exchange, Teams, OneDrive/SharePoint – migration, policies, security Microsoft 365 security – Intune, conditional access, defender for cloud EDR or XDR solutions such ...

schedule works and manage customer expectations Skills Required: Windows Server - Active Directory, DNS, DHCP migration, group policy, auditing, security, windows events Microsoft 365 Azure AD, Exchange, Teams, OneDrive/SharePoint migration, policies, security Microsoft 365 security Intune, conditional access, defender for cloud EDR or XDR solutions such ...

Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security, and threat intelligence Experience … communication and stakeholder management abilities Desirable Skills Relevant certifications such as Security+, SC-200, CySA+, CISSP, or similar Experience with cloud security technologies (Azure, AWS, Microsoft 365) Knowledge of MITRE ATT&CK framework and threat hunting methodologies Scripting or automation experience (PowerShell, Python, etc.) What’s on Offer ...

will have experience across network security, infrastructure, and security operations, with strong exposure to technologies such as Darktrace, SentinelOne, Netskope, Mimecast, Entra/Azure, or similar NDR/EDR platforms. Candidates should be comfortable investigating alerts, improving configurations, and working closely with infrastructure teams to strengthen overall security ...

response activities Build SOAR-style workflows to improve response speed, consistency, and efficiency Cloud Security Implement and enhance security controls across AWS and Azure environments Review cloud configurations for security risks, misconfigurations, and compliance gaps Strengthen identity, logging, monitoring, and access controls across cloud platforms Support secure adoption … security improvement initiatives during business transformation Skills & Experience Required Proven experience in a hands-on Security Engineering role Strong experience securing AWS and Azure cloud environments Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning ...

tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud … Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments (e.g. M365 … Azure, AWS) Strong analytical and communication skills, with the ability to explain technical issues to varied audiences Demonstrated commitment to continuous learning Desirable Skills Experience with scripting or automation (e.g. PowerShell, KQL, Python) Exposure to threat hunting or threat intelligence practices Experience mentoring or supporting junior colleagues Familiarity ...

seeking an experienced Cloud Security Engineer to play a key role in strengthening and maturing their cloud security posture across a Microsoft Azure environment. Having recently completed a comprehensive security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider … Experience from the Cloud Security Engineer: Proven experience in a Cloud Security Engineer or similar cybersecurity role Strong hands-on experience securing Microsoft Azure environments Experience with Microsoft Security tools in needed for example: Microsoft Entra ID Microsoft Defender Azure Bastion Microsoft Sentinel Microsoft ...

seeking an experienced Cloud Security Engineer to play a key role in strengthening and maturing their cloud security posture across a Microsoft Azure environment. Having recently completed a comprehensive security audit, the organisation is now focused on implementing a series of security recommendations as part of a wider … Experience from the Cloud Security Engineer: Proven experience in a Cloud Security Engineer or similar cybersecurity role Strong hands-on experience securing Microsoft Azure environments Experience with Microsoft Security tools in needed for example: Microsoft Entra ID Microsoft Defender Azure Bastion Microsoft Sentinel Microsoft ...

Engineer - SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100, Our leading global law firm client are currently looking to take on a new SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) to join their … London and offer a great deal of autonomy and technical exposure. This SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) role, will be responsible for the enhancement of existing SIEM platform and improve performance, coverage and fidelity by conducting regular assessments ...

Strong knowledge of regulatory and compliance frameworks (FCA, GDPR, PCI DSS, SOX) Hands-on experience with Microsoft security and compliance platforms including Microsoft Sentinel, Microsoft Purview, Defender suite, and Entra ID Security Operations (SecOps) expertise covering monitoring, triage, investigation, and incident response Microsoft Sentinel for advanced … including privileged access management and Zero Trust principles Endpoint, email, and cloud threat protection using Microsoft and other security platforms Cloud security across Azure and AWS in hybrid financial environments Effective problem-solving skills in high-pressure operational environments Relevant certifications such as CISSP, CISM, CEH, or CompTIA ...

Broadcom VMware Cloud Foundation and vSphere, including the ability to manage, optimise, and troubleshoot on-premise virtualised environments Strong working knowledge of Microsoft Azure, including IaaS, PaaS, Azure networking, and Azure-based storage, with hands-on experience planning and executing cloud migration programmes from … site-to-site connectivity Experience configuring and managing Sophos firewalls, including SD-WAN, intrusion prevention, and web filtering policies Familiarity with Microsoft Sentinel (SIEM) and Microsoft Defender for Endpoint for security monitoring, threat detection, and incident response Familiarity with infrastructure and application monitoring tools, such as Auvik ...

Technical Cyber Security Engineer/Architect (Microsoft Sentinel & M365 Defender) £75,000 + Benefits 2 days per week on-site | London or Manchester SC Clearance required - ESSENTIAL A large national organisation is seeking a Technical Cyber Security Engineer/Architect (Microsoft Sentinel & M365 Defender) to join … response, and help drive a security-by-design approach across the wider estate. This role will suit someone with strong experience across Microsoft Sentinel & M365 Defender , alongside broader cyber architecture, engineering, and security operations capability. Key areas of focus Secure architecture across enterprise networks, cloud, and end-user ...

analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute … Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ...

analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute … Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ...