1 to 25 of 40 Azure Sentinel Jobs in the UK excluding London

Security Operations Centre (SOC) staffed by dedicated professionals. We're seeking a skilled Cyber Security Engineer to join our clients eam. The ideal candidate will have expertise in Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. This role demands a proactive individual who can monitor and protect our organization's digital assets while staying updated on … the latest security threats and trends. If you are interested in this opportunity, apply today! Responsibilities: Implement and manage Azure Sentinel SIEM for threat detection, incident response, and security monitoring. Configure and maintain Microsoft Defender for endpoint protection and threat detection. Develop and maintain KQL scripts for querying and analysing data within Azure Sentinel. … Security Engineer or similar role. In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst). Strong analytical and problem-solving skills. Excellent communication and interpersonal abilities. Ability to work well independently and as More ❯

Azure 3rd/4th Line Escalation Support - Remote Azure, MFA, Conditional Access, Licensing, Azure Virtual Desktop, Server, Active Directory, O365, Sentinel, Defender for Endpoint. My client are a leading and well established IT services company, recognised as a leading support provider for Microsoft. Due to ongoing success and growth they have an … immediate requirement for a Azure 3rd/4th Line Escalation Support analyst. As Azure 3rd/4th Line Escalation Support Analyst you will be working closely with internal and external support teams on escalated support issues as well as close contact with Microsoft directly. The Azure 3rd/4th Line Escalation Support Analyst will … be an Azure hot shot but with also someone that has built up their skills and knowledge around on-prem infrastructure and networking. looking for a deep troubleshooter that has been there an got the T-shirt. My client is after someone that is by nature inquisitive, technical and wants to get to the root of a problem. More ❯

Cyber Security Lead - Sentinel & Azure | Local Government Rate: £650 per day IR35: Inside IR35 Location: Hybrid - 2 days per week onsite in London Contract: 3 months initially, with strong potential for extension Salt Recruitment's Local Government team is working with a London-based Local Authority to recruit an experienced and hands-on Cyber Security Lead … upcoming projects, embedding security practices, and leading preparations for a Public Services Network (PSN) audit. This is a critical delivery role that requires advanced technical expertise with Microsoft Sentinel and Azure , including automation using Sentinel playbooks . You'll also be expected to mentor internal analysts and drive cross-departmental engagement on cyber posture … compliance, and incident response readiness. Key Responsibilities: Act as the lead for cyber security across multiple projects and programmes Design and implement Sentinel playbooks to automate detection and response Lead on PSN audit readiness and ensure compliance with key frameworks (Cyber Essentials, ISO27001, NIST, GDPR) Conduct cyber risk assessments, maintain the risk register, and drive remediation activity Provide More ❯

Cleared) - Contract Location: United Kingdom 100% Remote? Duration: 6 Months Clearance: Active SC Clearance is required Are you a hands-on Security Engineer with deep expertise in SIEM , Azure Sentinel , and incident response Join a dynamic cyber security team … to support a critical national infrastructure (CNI) project involving the deployment of Windows Hello for a major UK utility company. What You'll Be Doing: Supporting and tuning Microsoft Sentinel and other SIEM platforms (KQL scripting) Managing escalated incidents from L1 analysts and leading full incident response lifecycle (MIM) Conducting in-depth data analysis , threat hunting, and forensic … and contributing to security strategy Ensuring security policies align with standards like NIST, ISO 27001, MITRE ATT&CK We're Looking for Someone With: Expert-level SIEM experience (Azure Sentinel highly preferred) Strong knowledge of Kusto Query Language (KQL) Demonstrated experience in cybersecurity incident response & breach handling Familiarity with threat intelligence, vulnerability management , and cloud security More ❯

Job Title: Security Architect – Azure Focus Contract Type: Contract (Outside IR35) Day Rate: £600/day Location: Hybrid – Remote with occasional travel to London Duration: 6 months (with potential extension) About the Role - We are looking for a highly skilled Security Architect with deep expertise in Microsoft Azure to join a leading organisation on a contract … basis. This role is ideal for someone who can design and implement secure cloud architectures, drive security best practices, and support enterprise-wide Azure security initiatives. Key Responsibilities Design and implement secure architectures within Microsoft Azure, ensuring alignment with business and compliance requirements. Conduct Azure-specific threat modelling, risk assessments, and security reviews across … infrastructure and applications. Collaborate with cloud engineering, DevOps, and compliance teams to embed security into the Azure development lifecycle. Define and maintain Azure security policies, standards, and best practices (e.g., Azure Security Center, Defender for Cloud, Azure Policy). Provide expert guidance on Azure-native security tools including Azure More ❯

and to our Birmingham or London offices Key Responsibilities: Deliver security architecture services aligned with TOGAF and SABSA frameworks. Provide expert guidance to clients on secure cloud architecture (Azure, AWS) Lead the design and implementation of SIEM tools (e.g., Azure Sentinel, Splunk). Architect enterprise DLP solutions, including Varonis and Microsoft Purview. Support organisations … Experience working within a professional services or technology consultancy. Experience working in Pharmaceuticals is desirable. Strong knowledge of security architecture frameworks (TOGAF, SABSA). Experience with SIEM platforms (Azure Sentinel, Splunk). Deep understanding of enterprise DLP systems and data protection strategies. Familiarity with Microsoft security tools including Purview, MCAS, MDI. Strong governance and risk management More ❯

international Financial Services business, looking for a skilled and driven Information Security Specialist to join our dynamic, fast-growing team. What You'll Do: Leverage your expertise in Azure Sentinel and related security platforms to monitor, detect, and respond to security incidents. Lead and participate in incident management , ensuring swift identification, investigation, and resolution of security … threats using modern toolsets. Who You Are: Experienced with Azure Sentinel , SIEM, and other security monitoring/incident management tools. Adept at i ncident management, risk assessment, and operational security for enterprise systems. Passionate about automation, innovation, and continuous improvement in security. DCS Recruitment and all associated companies are committed to creating a working environment where More ❯

an expectation to be in the office 2-3 days per week. You’ll be joining a technical team focused on strengthening cloud security and ensuring compliance across Microsoft Azure environments. This role will involve hands-on security engineering, working closely with infrastructure and DevOps teams, and supporting the adoption of Microsoft’s security toolset across the organisation. … You will need proven experience with: Securing Azure environments in line with best practices - essential Microsoft Defender (Cloud, Endpoint, 365) - essential Sentinel - essential Microsoft Purview, Compliance Manager and related compliance tools Entra ID (Azure AD), Conditional Access and Identity Governance Data Loss Prevention, sensitivity labels and insider risk management ISO 27001, SOC 2, GDPR … towards) One or more of MS-500/SC-400/SC-900 The following are desired: CISSP, CISM, CCSP Interested? Please apply below. Senior Cloud Security Engineer, Azure Security Engineer, Azure Security Consultant, Cloud Security Consultant, Microsoft Security, Azure Sentinel, Defender, Purview, Compliance, Entra ID, Cloud Security, DLP, Data Sector, London More ❯

on cloud infrastructure development, security architecture, and risk mitigation - ensuring systems are scalable, secure, and aligned with regulatory expectations. Key Responsibilities: Design, implement and optimise secure, scalable Microsoft Azure and Microsoft 365 infrastructure. Manage and enhance the organisation's security posture using Microsoft Defender for Endpoint, Sentinel, Intune, and other Microsoft security tools. Lead cloud migration … projects and hybrid infrastructure initiatives. Maintain robust access controls, including RBAC and Conditional Access, within Azure AD and Microsoft 365. Collaborate with Risk and Compliance teams to ensure infrastructure aligns with enterprise security frameworks (e.g. ISO 27001, NIST, CIS). Support incident response, vulnerability remediation, and disaster recovery planning. Promote a culture of continuous improvement and secure-by … and cyber security, with a focus on Microsoft cloud technologies. Demonstrated experience in leading enterprise-level cloud projects and managing hybrid environments. Strong technical knowledge of Microsoft Defender, Sentinel, Azure AD, and identity governance. Solid understanding of Zero Trust principles, access control policies, and cyber risk management. Excellent written and verbal communication skills; able to work More ❯

Azure Cloud Security Architect – £700/day – Outside IR35 – Hybrid (Cardiff) We’re working with a major organisation undergoing a large-scale Azure transformation. They’re seeking a Cloud Security Architect with deep Azure expertise to lead the design and implementation of secure cloud solutions. Key Details: Location: Cardiff (Hybrid – 2 days/week … on-site) Rate: Up to £700/day IR35 Status: Outside IR35 Contract Length: 6 months (strong extension potential) Start Date: ASAP Role Overview: As the Azure Cloud Security Architect, you’ll play a critical role in shaping the organisation’s cloud security posture. You’ll work across architecture, engineering, and compliance teams to ensure secure-by-design … principles are embedded throughout the Azure environment. Key Responsibilities: Design and implement secure Azure cloud architectures Lead threat modelling, risk assessments, and security reviews Define and enforce cloud security policies and governance Integrate security into CI/CD pipelines and DevOps practices Provide guidance on Azure-native security tools (e.g., Defender for Cloud, Sentinel More ❯

standardization of the incident response framework. Support broader efforts to enhance the group's overall security maturity. Technical Leadership Apply technical knowledge of tools such as Microsoft Defender, Sentinel, Azure 365, and vulnerability management platforms. Ensure security operations align with organizational goals and industry best practices. Required Skills & Qualifications Significant hands-on experience with incident response … and vulnerability management. Strong proficiency in Azure 365, Microsoft Defender, Sentinel, Tenable, and Nessus. Excellent ability to identify, analyze, and remediate security gaps and threats. Proven experience writing clear technical documentation and executive summaries. Strong interpersonal and communication skills to manage multi-functional stakeholder engagement. Capable of working independently in a fast-moving, evolving environment. Background More ❯

demonstrate the following skills and experience; Minimum of 3 years of experience in IT/Cyber Security roles. Microsoft Security Stack experience, i.e, Entra ID, Defender Suite or Sentinel, Azure Security. Good understanding of Microsoft identity and access management (IAM) concepts and technologies, including EntraID and MFA. Experienced with Zero Trust Security. Experience with security frameworks … and standards such as CyberEssentials Plus. Microsoft Azure experience. Experience in writing Policies, procedures and documentation. Basic IT infrastructure and Networking knowledge. IT degree or Security/Microsoft certifications are desirable. About Us: The Money and Pensions Service (MaPS) is based in Bedford, in a recently renovated modern office. This is a wonderful opportunity for you to become More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

Devonshire Hayes are seeking a highly skilled Azure Cloud Administrator to join our clients dynamic IT team. Based in London, this hybrid role offers the opportunity to work on a range of cloud-based projects, ensuring the smooth operation, performance, and security of our Microsoft Azure environment. You’ll play a key role in managing cloud … infrastructure, supporting deployment processes, and ensuring compliance with operational and security standards across the business. Proven experience as an Azure Administrator or in a similar cloud operations role. In-depth knowledge of Microsoft Azure services (e.g., Azure VMs, App Services, Azure Storage, VNets). Experience with Azure Active Directory, Conditional … Strong skills in PowerShell or other scripting languages for automation. Solid understanding of networking concepts (DNS, firewalls, VPN, ExpressRoute). Experience with monitoring and logging tools such as Azure Monitor, Log Analytics, and Sentinel. Excellent problem-solving, communication, and documentation skills. More ❯

customers, conducting occasional site visits, and helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory, Microsoft 365, Intune, and More ❯

an initial 6-month contract in a Work from Office (WFO) role. This role will focus on creating a business strategy, gap analysis and implementation, for securing their Azure-based infrastructure, integrating security automation, ensuring PCI DSS compliance, vulnerability and penetration testing and incident response. This role will focus on developing and maintaining secure, scalable Azure … approach to integrating security across their software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall cybersecurity posture. … Responsibilities Infrastructure Security: Architect and secure Azure-based infrastructure using Terraform, ensuring adherence to security best practices by developing, maintaining, and optimizing Terraform code. DevOps Pipeline Development and Maintenance: Design, develop, and optimize Azure DevOps pipelines with security embedded at every stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and More ❯

MyclientisaleadingProfessionalServicescompanybasedinLiverpool,experiencingearonyearhighgrowth.TheyareseekingaskilledInfrastructureEngineer,withstrongAzureexperiencecoupledwithareallygoodgraspofsecurityandsecuritycontrols/bestpractice. RequiredSkills: StrongknowledgeofMicrosofttechnologies(WindowsServer,Azure,Office365). Excellentknowledgeofsecuritybestpractices(CyberEssentialsPlus,ISO27001) Experiencewithvirtualization(Hyper-V),networking,andsecuritytools. Experienceconfiguringandadministeringcorenetworkswitchingandfirewalls. Experiencedealingwithsecurityplatforms(e.g.Barracuda,SentinelOne,N-Able) KeyResponsibilities: AdministerandmaintaincoreITinfrastructureincludingon-premiseandcloud-basedsystems(e.g.,MicrosoftAzure). Supportlegalapplicationsandsystemssuchascasemanagement,documentmanagement,andtimerecordingtools. Monitorsystemperformance,conductcapacityplanning,andimplementimprovements. EnsureinfrastructuresecurityandcompliancewithGDPRandSRAregulations. ManageActiveDirectory,EntraID,Office365,MicrosoftIntune,andCiscotechnologies. ManageandmaintainsecuritysystemsforincludingXDR,EDR&RMMsolutions. Provide2nd/3rdlinesupportforinfrastructure-relatedincidentsandescalations. Participateindisasterrecoveryplanningandtesting. Documentinfrastructureconfigurationsandmaintaintechnicaldocumentation. Interested?ApplynowwithanuptodateCVandJameswillbeintouchwithfurtherdetailsaboutthisexcitingopportunity More ❯

Engineer - SIEM, KQL- sought by investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot log ingestion and parsing issues … YARA rules, STIX, and YAML Participation in red/purple team exercises. 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity with security frameworks (MITRE More ❯

compliance needs. Develop and present tailored SIEM architecture and design strategies, ensuring alignment with client goals and industry best practices. Recommend the best-fit SIEM platform (e.g., Splunk, Sentinel, CS) based on client requirements, budget, and existing security infrastructure. SIEM Implementation & Configuration: Lead the design and configuration of SIEM solutions, ensuring integration with client systems and optimizing for … consulting, with the ability to communicate complex technical concepts clearly and effectively to clients. Technical Expertise Hands-on experience with at least one major SIEM platform (e.g. Splunk, Sentinel or QRadar) and familiarity with cloud security tools such as AWS GuardDuty, Azure Security Center, or Google Cloud Security. Background in client-facing roles or consulting, with More ❯

of some of the following skills, then LETS TALK! Previous experience in a similar role, championing Cloud Operations, DevOps and SRE principles, approaches, and best practices. Experience with Azure DevOps CI/CD Pipelines (or equivalent tooling). Experience of working within an Agile working environment. Defining Infrastructure as Code with all of, or either, Azure Bicep, ARM or Terraform. Excellent experience using Azure in a broad sense i.e: Designing and developing small infrastructures (limited to single systems)Networking infrastructure concepts such as Azure DNS, Azure Firewalls, ExpressRoute, Virtual WANs and vNet Peering.Provisioning of Azure hosted databasesWorking with a hybrid Azure tenant with some … infrastructure in physical data centres Active Directory Identity and Access ManagementPlatform as a Service featuresLogging, Monitoring and Alerting, including Monitor, Alerts, Dashboards, Sentinel; Defender What you'll get in return In return, you will be rewarded with ongoing career development and training, an industry-leading pension scheme and 35 days holiday plus bank holidays. What you need to More ❯

five years working in an Infrastructure Services role, preferably in structured, managed ICT service environments in a senior engineering capacity - SC Clearance/Ability to gain SC Clearance - Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) - Monitoring/Alerting/log Analytics - Azure AD (Entra)/Local AD - Windows Server, Active Directory … scripting and automation - SD-WAN - SAN Storage: (e.g., HPE Nimble) - Microsoft Windows Server OS - IaaS (Windows/Linux) Desirable experience - IT/Related Degree - Microsoft O365 Administrator - Microsoft Azure Administrator - CCNA - MCSA/MCSE - ITIL Foundation V3+ - AWS - Sentinel - Logic Apps - API Mgmt. gateways - Intune and Autopilot - Application Proxies - Data management Gateways - Microsoft Data Protection Manager More ❯

able to obtain SC Clearance or already hold SC clearance. Must have a good understanding on Incident Response approaches Must have knowledge and hands-on knowledge of Microsoft Sentinel (or any SIEM tool). Strong verbal and written English communication. Strong interpersonal and presentation skills. Strong analytical skills Must have good understanding on network traffic flows and able … and Change Management. Ability to work with minimal levels of supervision. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring … a SOC/NOC environment. Preferably holds Cyber Security Certification e.g. ISC2 CISSP, GIAC, SC-200, Certified SOC Analyst Experience with Cloud platforms (AWS and/or Microsoft Azure) Excellent knowledge of Microsoft Office products, especially Excel and Word Reports to Security Director - NTT DATA UK Security Practice Client Delivery Director - NTT DATA UK Managed Services Who we More ❯

M365 Azure Security Specialist Location: Remote Rate: £500 per day Inside IR35 Duration: 4 months Start Date: ASAP We're working with a leading financial services organisation seeking a Microsoft 365 Azure (Policy, Resource Manager) Security Specialist to join on a contract basis and lead the design, implementation and optimisation of M365 security services across the … security posture within the Microsoft 365 ecosystem (Defender XDR, Purview, Entra ID, etc.) Configure and fine-tune Microsoft Defender for Office 365, Identity, Endpoint and Cloud Apps Bring Azure Policy and Resource Manager knowledge/experience into the team Define and implement security baselines and compliance policies for M365 workloads Lead investigations and incident response leveraging Microsoft security … security, infrastructure and architecture teams to ensure alignment with overall cloud strategy Required Skills & Experience: Proven expertise in Microsoft 365 security technologies (Defender suite, Purview, Entra ID, Intune) Azure Policy and Azure Resource Manager experience is essential Strong knowledge of Zero Trust principles, conditional access and data loss prevention Experience working in regulated enterprise environments Hands More ❯

DevOps environment and following DevOps practices. A good working knowledge of multi-cloud environments, or expert knowledge in at least one recognised major cloud services provider,(e.g. AWS, Azure etc) network security, and secure software development. Incident management and alerts triage experience Experience in Microsoft Sentinel Strong understanding of security principles, technologies, and frameworks (e.g., NCSC More ❯

expert guidance across IT projects and infrastructure. Operational Oversight: Define and deploy control baselines, templates, and standards. Tooling & Effectiveness: Manage and monitor security operations tools such as Defender, Sentinel, Tenable, and CASB. Incident Response: Lead triage, coordinate crisis responses, and oversee post-incident reviews. Documentation & Governance: Maintain hardening guides, architecture diagrams, and lead working groups. Cross-Regional Alignment … in Information Security. Certifications such as Security+, CEH, CySA+, or Cloud Security Engineer. Extensive experience in cybersecurity, especially incident response and technical operations. Strong understanding of AWS and Azure cloud platforms. Familiarity with frameworks like NIST, ISO, COBIT, and OWASP. Proven success in leading and delivering security projects. Experience with PowerShell and automation. Consulting experience across IT and More ❯