1 to 25 of 49 Azure Sentinel Jobs in the UK

strategy, to developing Data & AI solutions, right through to providing a range of managed services. We are a Microsoft Solutions Partner, holding Specialisations in AI Platform on Microsoft Azure, Analytics on Microsoft Azure, Data Warehouse Migration to Microsoft Azure and Migrate Enterprise Applications to Microsoft Azure, as well as holding Solutions Partner … designations in Data & AI (Azure); Digital & App Innovation (Azure); Infrastructure (Azure) and Security. But it's not just about the badges. We are proud to be recognised as the winner of the 2024 Microsoft Community Response Partner of the Year award, reflecting our dedication to using technology for positive change. We are also a … Planning Analytics. With offices in York and Sheffield, and a team based throughout the UK – we champion creativity, innovation and collaboration in the workplace. The Role As an Azure Cloud Infrastructure Engineer, you will be responsible for designing, deploying, and managing cloud solutions on the Microsoft Azure platform. Your role will involve architecting cloud infrastructure, implementing More ❯

enabling their team to excel in their roles. Your new role This is a cloud-focused infrastructure position where your primary responsibility will be supporting and enhancing the Microsoft Azure environment. You'll play a key role in designing and deploying secure, resilient Azure infrastructure and services that underpin the organisation's operations. Your day-to … day work will involve managing and administering a wide range of Azure resources, including compute, storage, networking, identity, and security services. You'll also be responsible for automating infrastructure provisioning, using Infrastructure as Code tools such as Terraform or ARM templates, to ensure efficiency and consistency across deployments. Monitoring the performance and availability of cloud services will be … remediation, and system hardening processes, ensuring that the cloud environment remains robust and secure. In addition, you'll support the migration of workloads from on-premises infrastructure to Azure, helping the organisation take full advantage of cloud capabilities. Maintaining robust disaster recovery and backup strategies across all Azure environments will also be a key focus, ensuring More ❯

fixed-term contract paying £70,000 , offering full remote flexibility across the UK. The Opportunity You'll play a key role in stabilising and strengthening Microsoft 365 and Azure environments through a period of change. The role blends technical delivery with stakeholder engagement - you'll be as comfortable securing systems as you are guiding … users through new policies and controls. What You'll Be Doing Delivering and maintaining security across Microsoft 365 and Azure . Building and tuning detections in Microsoft Sentinel . Managing patching, malware protection, and vulnerability remediation . Supporting Cyber Essentials Plus and ongoing compliance programmes. Documenting changes, maintaining governance, and ensuring minimal disruption. Mentoring a service … desk engineer stepping into cyber security. What You'll Bring Strong experience with Microsoft 365 security, Defender, Intune, and Azure AD/Entra ID . Working knowledge of Azure Sentinel (SIEM) and KQL. Solid understanding of patch management and endpoint security. Previous involvement in Cyber Essentials Plus or ISO27001 accreditation. Clear communication skills, able More ❯

will always endeavour to offer everything they need to help them explore, experiment, and enjoy our brands. About the Role Space NK operates a hybrid environment across Microsoft Azure, corporate offices, datacentres, and a large UK retail footprint. As a Security Engineer, you will design, implement, and operate security controls across cloud platforms, identity systems, endpoints, servers, and … and ensure Zero Trust and compliance controls are met — while Network Engineering implements the network infrastructure itself. This role bridges strategy and technical execution: shaping identity security, strengthening Azure cloud posture, enhancing monitoring and detection capabilities, advising on architecture, and maintaining a secure foundation for all business platforms. Key Responsibilities Hybrid Security Architecture & Governance Design and implement security … controls across Azure cloud services, on-prem servers, and SaaS applications. Define and maintain security baselines, hardening standards, and cloud security benchmarks (Microsoft CSB, CIS, NIST). Govern and enforce Azure Policy, Defender for Cloud, and platform-level security controls. Participate in design and architecture reviews to ensure secure-by-design deployments. Maintain security documentation, operational More ❯

Knowledge of additional log forwarding/processing tools (e.g. Elastic Agent, Fluentd). Exposure to vulnerability management and threat intelligence platforms such as OpenCTI. Qualifications: Expert knowledge of Azure & Sentinel Proven experience as a Cyber Analyst with a focus on Security Operations. Strong expertise in using Elastic Stack, including Elasticsearch, Logstash, and Kibana. Familiarity with other More ❯

as Solution Architect on large scale programmes within a Cyber Security Portfolio. Working knowledge of security architecture requirements for solution designs, good security practices related to AWS/Azure PaaS, IaaS, SaaS configuration and an understanding of enterprise scale solutions. Experience collaborating with the Security Operations Centre (SOC) to optimise security monitoring, response planning and execution. Experience with … and threat landscape detection and remediation Understanding of Network Security risks and solutions Essential Technical Skills & Qualifications Experience of the M365 security stack: Endpoint, Defender, DLP, Device Management, Azure Sentinel Cloud Security (Tenable, MDR solutions, Remote Access, Network security) Working knowledge of Cyber Essentials, UK DPA/GDPR Knowledge of one or more cybersecurity controls standards … and SIEM Desirable Experience Experience of implementing of the Tenable Vulnerability Management agents across Clients EndPoints and Servers. Experience in the implementation of an End Point Detection system (Sentinel One) on our Legacy Operating Systems not supported by MS Defender. Experience in upgrading existing SIEM capabilities to handle more data sources and advanced analytics Experience in the implementation More ❯

Azure Security Architect Location: UK (Remote) Salary: Up to £100,000 + Excellent Benefits I'm working with one of Microsoft’s most respected Azure Expert MSPs, who are growing their Azure practice and looking for an Azure Security Architect to lead the charge on all things security. This is a strategic … and highly visible role, shaping customer security outcomes, influencing the direction of the Azure Security practice, and defining how the business delivers secure cloud environments moving forward. You’ll combine deep technical knowledge with a consultative mindset, taking ownership from architecture through delivery, while building scalable frameworks that align with Microsoft best practices. The Role As Azure Security Architect, you’ll: Own and evolve the Azure Security portfolio, ensuring alignment with Microsoft Lead customer-facing workshops that turn security strategy into real world solutions. Design, implement, and optimise Azure security solutions. Develop repeatable frameworks and security roadmaps. Contribute to pre-sales , supporting solution design, high-level proposals, and SoW creation. Collaborate More ❯

reporting for stakeholders. Identify automation and workflow enhancements. Essential Skills Strong experience with Microsoft Defender platforms. Incident investigation skills across endpoint, identity, and cloud. Understanding of Microsoft 365, Azure, and Zero Trust. Skilled in ASR rules, AV baselines, and KQL analytics. Desirable Skills Experience with Microsoft Sentinel. Understanding of MITRE ATT and CK. Exposure to red team activities. More ❯

forward to ensure the business makes the full use of the collaboration tools (Teams, SharePoint etc.). A good knowledge of the security features of 365 (Entra/Azure AD) is required to ensure the business leverages the maximum potential of cyber hygiene and GDPR best practice Understanding the importance of Identity Threat Management Experience or understanding of More ❯

forward to ensure the business makes the full use of the collaboration tools (Teams, SharePoint etc.). A good knowledge of the security features of 365 (Entra/Azure AD) is required to ensure the business leverages the maximum potential of cyber hygiene and GDPR best practice Understanding the importance of Identity Threat Management Experience or understanding of More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – MUST be UK based Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like to join a fast-growing global consultancy where … The team currently numbers around 15 within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build automation playbooks, and work … combines engineering depth with real client interaction ideal for someone who enjoys both hands-on work and architectural thinking. What You Will Be Doing Design, configure, and deliver Sentinel SIEM solutions for enterprise clients. Develop and optimise automation rules, playbooks, and runbooks using Logic Apps and Power Automate. Write and fine-tune Kusto Query Language (KQL) queries to More ❯

to support a leading government client . The role is based in London and will need 2/3 days on site.Im looking for someone that has recent Sentinel and Defender experience and is a SME in this area Background skills required. • Policy Enforcement: Implement Conditional Access, MFA, and DLP policies. Maintain security posture using Secure Score and … of workload. • PowerShell Scripting: Automate routine tasks and configurations across O365 services • Policy Development: Support creation and enforcement of Council-wide O365 usage policies • Configure and maintain Sentinel workspaces aligned with Council tenancy and compliance requirements. • Integrate data sources including Defender for Endpoint, Defender for Identity, Office 365 audit logs, Azure AD, and third-party connectors. … Develop and implement playbooks and alert rules for automated incident response. • Collaborate with the Service Desk to triage and escalate Sentinel alerts. • Administer and maintain Microsoft 365 services including Exchange online, Exchange on prem and managing hybrid setup. • Administer and optimise Microsoft Defender XDR solutions including Defender for Cloud Apps, Defender for Office 365, and Defender for Identity. More ❯

and experienced Detection Engineer to expand our Managed Security Service Provider (MSSP) team. You will be responsible for developing and maturing detection coverage across our MSS customers (Splunk, Azure Sentinel, Chronicle SIEM). For this particular role we're primarily looking for someone with Sentinel detection engineering experience. Requirements This role sits within our …/YARA-L) Strong knowledge of scripting languages such as Python, Go or Shell Knowledge of Infrastructure as Code (IaC) tools e.g. bicep Experience with cloud platforms (AWS, Azure, GCP). Benefits What's in it for you? Our vision is to create a safe, inclusive digital world where people and organisations can thrive. Our values of Do More ❯

Proven experience in a 3rd Line/Senior Engineer role within an MSP or security-focused IT environment, supporting multiple clients and environments. Strong knowledge of Microsoft technologies (Azure, Microsoft 365, SharePoint, Intune/Entra) with a focus on security configuration, hardening and monitoring. In-depth understanding of networking, firewalls, VPNs, Windows Server, Active Directory and hybrid cloud … improvement of client security posture. Mentorship and leadership experience, providing cybersecurity guidance to junior engineers and Service Desk teams. Cyber Security & Centralised Services Manager - Desirable Certifications: Microsoft Certified: Azure Administrator/Solutions Expert CompTIA Security+, CISSP, CISM or equivalent cybersecurity qualification ITIL Foundation Vendor-specific certifications (Fortinet, SentinelOne, Datto, Mimecast, Huntress, etc.) Why Join the Company: Be part More ❯

hunt for threats, and enjoy taking ownership of complex challenges this role is for you. What Youll Do Lead on threat detection, hunting, and incident response, working with Azure/Defender, Sentinel, and third-party SOCs. Investigate alerts and coordinate responses with internal IT teams and external managed SOCs. Continuously monitor, enhance, and report on security … with ISO27001, GDPR, Cyber Essentials Plus, and other regulatory frameworks. What Were Looking For Proven experience in Cyber Security, Threat Intelligence, or SOC environments. Hands-on experience with Azure Security Center, Microsoft Sentinel, Defender ATP, M365 Security & Compliance, and KQL scripting. Knowledge of frameworks such as MITRE ATT&CK, NIST, CIS, NCSC, and Security Scorecard. Understanding More ❯

direct reports Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such … as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure to AI/ML tools in security contexts Experience with MDM platforms and mobile security Skills & Attributes Strong analytical and problem-solving skills Clear and confident communication skills Ability to work independently and collaborate effectively Detail-focused, adaptable, and proactive Motivated by learning and More ❯

direct reports Essential Experience & Knowledge Experience in Security Operations, Incident Response, or similar role Strong understanding of networking, Windows/Linux, and cybersecurity fundamentals Experience with SIEM (e.g., Sentinel, Splunk), EDR tools, and vulnerability platforms Understanding of security frameworks (ISO 27001, NIST, CIS) Working knowledge of Microsoft InTune Familiarity with GDPR and data protection requirements Desirable Certifications such … as Security+, CEH, GIAC Experience with cloud security (Azure/AWS/GCP) Exposure to AI/ML tools in security contexts Experience with MDM platforms and mobile security Skills & Attributes Strong analytical and problem-solving skills Clear and confident communication skills Ability to work independently and collaborate effectively Detail-focused, adaptable, and proactive Motivated by learning and More ❯

authority and governance for the effective use of technical security controls across the firm Act as an escalation point for threat hunting and security incidents Investigate alerts from Azure/Defender, IT monitoring systems, and 3rd-party SOC, helping to ensure critical assets remain secure Manage supplier relationships, report on control effectiveness, and support compliance with ISO … GDPR, and Cyber Essentials Plus Technology NIST, CIS, NCSC, Mitre Att&ck, Security Scorecard, M365/Azure Security Center Azure Security Center, SIEM, Defender ATP, M365 Security, Data Compliance and Governance, PIM & PAM Zscaler (ZTNA), Darktrace, Firewalls, NAC, Network segregation, remote access & wireless technologies Windows & KQL (MS Sentinel) scripting Cloud computing (IaaS, PaaS, SaaS More ❯

baselines. Support architectural governance, project reviews, and digital assurance. Maintain the technical security roadmap and drive improvements across tooling and capabilities. Operate and optimise core security tools (Defender, Sentinel, Tenable, CASB) and track control adoption through KPIs and dashboards. Lead and document security initiatives, including hardening guides, architecture diagrams, and evidence packs. Chair the Cyber Security Working Group … equivalent experience plus relevant security certifications (Security+, CEH, CySA+, Cloud Security Engineer). Significant experience in cyber security operations or incident response. Hands-on expertise with Microsoft Defender, Sentinel, Tenable, CASB, and cloud security (AWS/Azure). Proven security project delivery, PowerShell automation skills, and familiarity with IR frameworks. Consulting-style experience providing advisory support More ❯

Active Directory, Hyper-V and high availability failover clustering Microsoft Data Protection Manager PowerShell scripting and automation All round Microsoft Cloud Operations engineer Cloud Services, IaaS, PaaS, Microsoft Azure, including Site recovery (ASR) and M365, Exchange Online, OneDrive, Teams Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) Operations systems, Windows Desktop, Windows … Server and Linux Monitoring/Alerting/log Analytics, Sentinel Logic Apps API Management gateways Azure Application Proxies You must be eligible for security clearance living in the UK as a British Citizen. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy More ❯

Active Directory, Hyper-V and high availability failover clustering Microsoft Data Protection Manager PowerShell scripting and automation All round Microsoft Cloud Operations engineer Cloud Services, IaaS, PaaS, Microsoft Azure, including Site recovery (ASR) and M365, Exchange Online, OneDrive, Teams Azure networking (private endpoints, Azure firewalls, VPNs, IP Groups etc) Operations systems, Windows Desktop, Windows … Server and Linux Monitoring/Alerting/log Analytics, Sentinel Logic Apps API Management gateways Azure Application Proxies You must be eligible for security clearance living in the UK as a British Citizen. What you need to do now If you're interested in this role, click 'apply now' to forward an up-to-date copy More ❯

defence, helping to design and deliver solutions that strengthen resilience and enable smarter security operations. You will: Architect & Design : Build and evolve secure frameworks using Microsoft Security (Defender, Sentinel, Purview, Entra) and integrate Qualys vulnerability management for continuous threat detection and remediation. Automate & Innovate: Lead the charge on automation (SOAR, IaC, workflow automation) and embed Gen AI into … Expert, AZ-500, etc.). Strategic mindset, strong communication skills, and a passion for emerging tech. The following would also be of interest: Certifications in automation/cloud (Azure Solutions Architect, Terraform, GIAC), vulnerability management (Qualys, ISO 27001, NIST). Experience with SOAR, SIEM, XDR, and cloud-native security (especially Azure). Pre-sales or solution More ❯

experience developing Python scripts/systems Experience working directly with software engineering best practices: source control, unit testing, code reviews, design documentation, excellent debugging, troubleshooting skills. Experience with Azure (ideally), AWS or GCP, Docker, Kubernetes, and Helm. Experience of operationally managing software components once live, including; observability, logging, metrics, error reporting, debugging and live incident management. Experience with … Microsoft Sentinel, Microsoft's Defender and Purview suites and Microsoft Entra. Experience of SOAR tooling and automating security capabilities and operations. Experience in Threat Modelling. Ability to communicate with stakeholders and audiences outside your own team. Exposure to Agile working. Experience working in/with cross-functional teams consisting of engineers, product, UX and non-technical stakeholders. Desire More ❯