1 to 25 of 34 Azure Sentinel Jobs in the UK excluding London

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. Implement automated alerting ...

BCorp certified and values led scale-up with unique offering in the travel sector. Azure, Networking, Terraform, Security. Long term career development, project leadership. Fast-growing travel business in central Bristol with international offices are looking for an Azure Cloud Engineer to help them reach … carbon.*Likely to be 1 trip to the office fortnightly What skills you’ll be needing Hands-on experience designing, deploying, and managing Azure-only cloud environments across networking, compute, storage, identity, and PaaS services. Strong knowledge of Azure networking, including Azure Firewall ...

against external threats and adversaries. Position Overview: My client is seeking a proactive and motivated Cloud Security Engineer with a strong focus on Microsoft Azure security to join a growing team. This role would suit a security engineer or SecOps professional who understands the importance of maintaining highly … secure environments and is keen to work across cloud, endpoint, and infrastructure domains. While the primary focus is Azure security engineering, experience with hardware and traditional infrastructure security would be advantageous. Team Principles: The team operates best when they: Remain curious and passionate about their work Communicate clearly ...

discipline. * Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. * Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

expected to work with a high degree of autonomy. What You Will Be Doing Monitoring and analysing threat data from Microsoft Defender and Sentinel and translating findings into clear, actionable outcomes Reviewing and implementing Microsoft and third party security recommendations across a broad and complex technology estate Managing … delivering security improvements through formal change management processes, ensuring changes are properly scoped, approved and tracked Maintaining security standards across Azure, M365, Active Directory, Dynamics, Power Apps and SQL environments Aligning security posture against ISO 27001, NIST, NCSC, CISA and Cyber Essentials+ frameworks Producing reports and dashboards ...

seeking an experienced Azure Cloud Security Architect to lead the design, implementation, and governance of security controls across our Azure cloud platform. This role requires a hands-on technical expert with deep experience in Microsoft Defender for Cloud, Azure-native security services, and enterprise … platform security architecture. What you'll bring: Design and implement secure Azure cloud architectures aligned with security best practices and compliance requirements Lead implementation, configuration and optimisation of Microsoft Defender for Cloud Develop and enforce Azure security policies, standards, and guardrails Implement Zero Trust principles across ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

escalation point for 1st Line Engineers, taking ownership of more complex issues. Troubleshoot and resolve advanced incidents across Microsoft 365, Azure AD, NinjaOne, SentinelOne, Barracuda, networking technologies, virtualisation and Windows Server environments. Deliver remote and on-site support where required. Ensure all tickets are handled within agreed SLAs ...

Cloud Security Engineer (Azure/M365) | SC Clearance needed | Remote + Client Visits We're working with a growing, security-focused organisation that is investing heavily into its cloud security capability and looking to bring in a Cloud Security Engineer to support both internal platforms and client environments. … work in Cheltenham office if preferred. The Role: You'll play a key role in designing, improving and maintaining cloud security across Azure and Microsoft 365, working closely with technical teams and stakeholders to ensure environments are secure, compliant and continuously improving. This is a hands-on position ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

they are able to fully exploit MS M365, improve efficiency and enhance job satisfaction. Advise on user set up in regards of SharePoint, Azure, Forms Power BI, Teams, One Drive including sub sites, lists, libraries, and content. This may include: o Working with the users to understand their ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Strong leadership and team management capability * Expertise in Incident Response and Vulnerability Management processes * Hands-on experience with Microsoft security technologies (Defender suite, Sentinel) * Experience developing and maintaining operational security procedures and documentation * Alert tuning and optimisation to reduce false positives * Ability to define, measure, and report … automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding of regulatory and compliance requirements in operational security * Certifications such as CISSP, CISM or equivalent TO BE CONSIDERED: Please either ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

Design, Coding, Application Security, IAM, Network Security, Security Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Architect (Home Based ...

Project Delivery: Taking part and ownership of IT projects such as new client onboarding, Office 365 migrations, and network installations. - Microsoft Entra/Azure AD Administration: Manage users, groups, access, and support cloud identity issues. - Intune MDM Experience - Customer Service: Deliver friendly, professional support to end-users … knowledge base and help refine processes. Essential Qualifications & Experience: - Technical Skills: Windows, Networking, Office 365 Migrations, Intune MDM, SharePoint, Teams, OneDrive, Defender, Sentinel - MSP Experience: Previous experience in an MSP or IT support provider environment. - Right to Work in the UK: Legal authorisation to work ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills ...

current with emerging threats and recommend improvements SOC ENGINEER ESSENTIAL SKILLS Strong understanding of information security fundamentals Experience with SIEM tools such as Sentinel or Splunk Familiarity with security monitoring technologies Analytical mindset with strong problem solving skills Ability to manage multiple priorities and meet deadlines Strong communication … role, you give consent for your application to be submitted to our client in connection with this vacancy. KEY SKILLS SOC Engineer, SIEM, Sentinel, Splunk, Cyber Security, Security Monitoring, Threat Detection, Azure, AWS, Network Security ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experience—especially Sentinel or Splunk. If you are interested in this role but not sure if your ...