11 of 11 Azure Sentinel Jobs in Slough

Security Architecture & Engineering Design, implement, and maintain layered ("defence-in-depth") security architectures across network, host, application, and data layers Integrate security controls within hybrid cloud environments (AWS, Azure, Microsoft 365) and on-premise systems Deploy, configure, and tune platforms including SASE, Sentinel One, AWS Security Hub/GuardDuty, Azure Security Center, Azure Sentinel, and Microsoft 365 Defender Embed security in Infrastructure as Code templates (Terraform, ARM, Ansible) for repeatable, compliant deployments Maintain documentation of all deployed security architectures and controls Cloud, Network, and Endpoint Security Implement, optimise, and monitor AWS and Azure native security controls such as IAM, GuardDuty, Key Vault, and Security Hub Manage endpoint … Maintain awareness of emerging threats and advise on appropriate mitigations Incident Detection, Response, and Monitoring Lead detection, triage, and investigation of security incidents using SIEM tools such as Azure Sentinel, Splunk, or ELK Stack Correlate and analyse logs from network, endpoint, and cloud sources to identify potential compromises Work with DevOps and IT teams to contain More ❯

in MIS, CIS, Cybersecurity or similar. At least five years of Security Operations. At least three years of Linux Administration. At least two years of Cloud (AWS or Azure) Administration. Must-Have Skills Linux and Windows OS. DNS. Certificate Management: Digicert, AppViewX. Experience with ticket management solutions: Dynamics 365, ServiceNow, Remedy, etc. Experience with PMO tools such as … Jira, Smartsheet, Monday.com, etc. Microsoft O365 products (Excel, PowerPoint, etc.). SEIM and SOAR technologies (Splunk, Cribl, Azure Sentinel). Configure and troubleshoot EDR/Microsoft Defender for Endpoint, vulnerability management, and threat detection systems, with focus on Linux OS. Azure Security Center and Office365 Compliance Portal. AWS and Azure (IAM, IaaS … PaaS). Knowledge in KQL queries in Sentinel and/or SPL in Splunk for developing use cases, dashboards, custom rules, custom parsers. Intermediate Understanding of services and protocols commonly used in hosting environments: web servers, database servers, active directory protocols. Understanding of network packet analysis using tools such as Wireshark and TCPDump. Collaboration and communication skills across More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

detection/prevention systems, endpoint protection, SIEM, and identity management platforms. Implement secure network architecture and enforce segmentation and least-privilege access controls. Support secure cloud environments across Azure, AWS, or GCP (e.g., IAM, security groups, encryption, KMS). Threat Detection & Incident Response Monitor and analyze security alerts and network traffic for threats or suspicious activity. Lead or … Computer Science, Networking, or a related field. Experience: 3+ years’ experience in cybersecurity, network engineering, or IT infrastructure security roles. Certifications (Preferred): CompTIA Security+, CEH, OSCP, CISSP, CCSP, Azure/AWS security certifications. Skills & Competencies Strong knowledge of network security (TCP/IP, VPNs, DNS, firewalls). Experience with SIEM tools (e.g., Splunk, Sentinel, QRadar) and More ❯

help shape something rather than simply follow a process, this is the right environment for you. Core Responsibilities: Security Monitoring & Incident Response Monitor security alerts generated by Microsoft Sentinel, Microsoft Defender, Datadog and Elastic. Assess severity and impact of alerts, triage and investigate incidents independently. Execute containment and remediation actions using defined runbooks and playbooks. Correlate data across … RCA and after-action reviews for internal and client use. Maintain accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis and threat evolution. … University educated with a degree in computer science, information security or equivalent At least one year of experience in a SOC environment monitoring and responding to incidents Microsoft Sentinel and Defender hands-on expertise SC-200 certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat More ❯

SOPs). Senior 3rd Line IT Engineer - Key Responsibilities Act as the primary escalation point for complex 2nd/3rd line incidents and service requests across infrastructure, networking, Azure, Microsoft 365, and cybersecurity. Manage and maintain client systems and centralized services, including Mimecast, Avanan, SentinelOne, MDR/XDR, Fortinet, DR/BC, Huntress, Autotask, and Datto RMM. Provide … in cybersecurity, resilience, and performance. Key Skills & Experience Proven experience in a 3rd Line/Senior Engineer role within an MSP environment Strong knowledge of Microsoft technologies, including Azure, 365, SharePoint, and Intune Excellent understanding of networking, firewalls, VPNs, and Windows Server environments Experience with RMM tools, security platforms, and endpoint management Familiarity with tools and platforms such … across teams Experience with Cyber Essentials, Cyber Essentials Plus, and other frameworks such as NIST, ISO27001 Commitment to producing clear documentation and knowledge sharing Desirable Certifications Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, or similar cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, etc.) Why Join the Company Join a technically strong, supportive More ❯

with frameworks including CIS Controls, NIST, ISO 27701, and GDPR Oversee incident response, threat detection, and access governance across systems such as iManage, Intapp, Aderant, Microsoft 365, and Azure Drive firm-wide security awareness and training initiatives Monitor regulatory changes and emerging threats, and advise on best practices Ideal Candidate Profile: Strong knowledge of ISO 27001 implementation and … certification Experience in a professional services or legal environment Familiarity with Microsoft 365 Defender, SentinelOne, Purview, and Azure security tools Skilled in managing access controls and security operations across enterprise platforms Excellent communication and stakeholder engagement skills Desirable Attributes: Certifications such as CISM, CISSP, or ISO 27001 Lead Implementer/Auditor Experience working with MDR/XDR partners More ❯

cases across SIEM, EDR, and SOAR platforms. Analyze and investigate alerts across cloud and on-prem infrastructures to identify real threats and eliminate false positives. Strengthen visibility across Azure, AWS, and GCP environments, ensuring comprehensive monitoring and detection coverage. Drive threat hunting activities and develop hypotheses based on attacker TTPs and frameworks like MITRE ATT&CK. Collaborate with … team capability. What You’ll Bring Solid background in threat detection, SOC operations, or incident response. Deep understanding of SIEM, EDR, and cloud-native security tooling (e.g., Microsoft Sentinel, Defender, GuardDuty, Chronicle). Hands-on experience developing and tuning detection content for cloud and hybrid environments. Strong grasp of adversarial tactics and techniques and how they translate to More ❯

own time and resources to ensure aims are met. Using information effectively - able to develop insights and conclusions following risk events Desirable Knowledge of cloud security particularly Microsoft Azure (E5) including defender for endpoint, sentinel, and purview. A knowledge of ITIL including incident management and problem management including root cause analysis. A knowledge of the data More ❯

Analysis; monitoring and responding to incidents whilst also developing new detection rules and enhancing their monitoring infrastructure and tooling. This is a cloud-native SOC capability, based in Azure with a big emphasis on the Microsoft E5 suite of security monitoring and detection tooling. Experience configuring, fine-tuning and managing this tooling will be essential, as well as … years minimum) , dealing with and responding to escalated and most high profile incidents. Comprehensive knowledge and experience utilising/fine-tuning the Microsoft E5 Security stack – Defender, Sentinel, KQL, etc. Experience working in hybrid-cloud SOC environments – Azure preferably. Ability to articulate specific projects that you have built, developed or led on, specific to SecOps Engineering More ❯

business which will relate directly to your potential bonus. You'll be given a platform to learn and progress. Most issues you're working on will relate to Azure, with everything on MS here, including the physical stack. You'll need to have strong experience with Azure and this must be current knowledge and experience, along … with Sentinel and Defender. You're going to be joining a well respected PE firm, with over $60bn in assets under management you'll be at a key player in the markets. Starting salary will be up to £95,000 and there are a range of benefits on top of this including discretionary bonus, health and wellness benefits More ❯