1 to 25 of 40 Azure Sentinel Jobs in England

will evaluate application-generated logs, develop threat detection strategies and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics and automation to enhance the customer's application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories Analyse logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats Design, build and maintain KQL queries Implement automated alerting and reporting workflows through Azure Logic Apps ...

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. Implement automated alerting ...

BCorp certified and values led scale-up with unique offering in the travel sector. Azure, Networking, Terraform, Security. Long term career development, project leadership. Fast-growing travel business in central Bristol with international offices are looking for an Azure Cloud Engineer to help them reach … carbon.*Likely to be 1 trip to the office fortnightly What skills you’ll be needing Hands-on experience designing, deploying, and managing Azure-only cloud environments across networking, compute, storage, identity, and PaaS services. Strong knowledge of Azure networking, including Azure Firewall ...

discipline. * Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. * Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/O365/Identity … Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

Senior Azure DevOps Engineer Permanent Location: UK - Remote Salary: £80,000 - £90,000 (+ benefits) Skills: Azure, DevOps, CI/CD, Terraform, PowerShell, SC Clearance We are looking to recruit an SC Cleared Senior Azure DevOps Engineer for a leading technology consultancy. You will … with low-level design expertise. Stay ahead of emerging technologies, applying them to deliver maximum client value. Essential Skills & Experience Extensive experience in Azure services and architecture (VMs, EntraID, Application Gateway, Sentinel, Defender for Cloud, Azure Fabric, Functions, Logic Apps, Front Door, App Service ...

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – UK Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like … within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build ...

modern security architectures, solving complex technical challenges, and acting as a trusted technical partner. Technology Environment Microsoft Security Stack: Microsoft Defender XDR Microsoft Sentinel Microsoft Entra ID Microsoft Intune Microsoft Defender for Cloud Experience with alternative modern security platforms such as SentinelOne or CrowdStrike is advantageous. Cloud Platforms … Microsoft Azure (required) Exposure to AWS or GCP (desirable) Platforms & Infrastructure: Active Directory/Entra hybrid identity Windows Server and Linux Networking, VPNs, firewalls, endpoint management Tooling & Automation: KQL PowerShell API integrations Automation tooling Key Responsibilities Technical Delivery Lead technical discussions with customers, guiding architecture, design decisions ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

broad technical knowledge of a wide range of solutions such as ConnectWise, RMM systems (Asio/Addigy), Mac & Windows OS, Active Directory/Azure Active Directory, Virtual machines (Oracle & Hyper-V), Mac & Windows hardware build/deployment, printers/peripherals, cloud services (Microsoft 365, Google Workspace, Dropbox), Microsoft ...

investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot … further details - Alex Reeder Harvey Nash 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity ...

helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

leading or mentoring SOC teams Strong knowledge of incident response and threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding ...

leading or mentoring SOC teams Strong knowledge of incident response and threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding ...

MITRE ATT&CK, adversary simulation, and detection engineering Hands-on experience with SIEM and EDR/XDR platforms such as Splunk, Microsoft Sentinel, or Elastic Experience in threat hunting, incident response, and security operations Exposure to cloud security across AWS, Azure, or GCP AI & Emerging Technology ...

Cyber Security Engineer Tech Focus: Azure/Microsoft 365/Purview/Defender/Sentinel Rate: Circa £500/day Inside IR35 Location: Fully Remote Duration: 6 Months This is a fantastic opportunity for a Cyber Security Engineer to join a small but growing Cloud/… Azure team within a global organisation in the construction consultancy sector. The business has now fully moved into Azure Cloud and is looking to strengthen and mature its cyber security posture. You’ll be joining a highly skilled and well‐established security and cloud team that ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

have a current opportunity for a Head of Azure Platform Security on a permanent basis. The position will be based in London. For further information about this position please apply. Requirements Hands-on Azure cloud security architecture and implementation - Defender for Cloud, Policy-as-Code, RBAC … segmentation, NSG/UDR/NVA architecture, hub-spoke topology, and perimeter defence for hybrid environments WAF design, deployment, and operational tuning - Cloudflare, Azure Application Gateway, or equivalent; custom rule authoring and false-positive management at production scale Network flow log analysis and intrusion detection engineering - building detection ...

government organisation to recruit a Principal Cyber Security Engineer on a 2-year FTC. The role requires someone with a strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls … Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft ...

pure new business role, ideal for someone with a passion for solving security challenges through Microsoft-aligned services such as Entra ID (Azure AD) , Microsoft Defender , Microsoft Sentinel , and broader IAM and managed security solutions . You’ll be part of a high-growth business that … with CISOs, Heads of Security, and IT leaders on identity protection , zero trust , threat detection , and compliance Own complex sales cycles around Microsoft Sentinel , Defender suite , Entra ID , and managed IAM Collaborate closely with technical consultants and presales to build tailored, value-led proposals Maintain a healthy, well ...