1 to 25 of 39 Azure Sentinel Jobs in the UK excluding London

will evaluate application-generated logs, develop threat detection strategies, and report findings to the Information Security team. This role requires deep expertise in Microsoft Azure security tools, log analytics, and automation to enhance the customer’s application anomaly detection capabilities. Key Responsibilities: Develop detailed threat models tailored … large portfolio of applications with varying threat categories. Analyze logs generated by applications using Azure Log Analytics and Azure Sentinel to identify anomalies and potential threats. Design, build, and maintain KQL queries to extract and correlate security-relevant data from logs. Implement automated alerting ...

BCorp certified and values led scale-up with unique offering in the travel sector. Azure, Networking, Terraform, Security. Long term career development, project leadership. Fast-growing travel business in central Bristol with international offices are looking for an Azure Cloud Engineer to help them reach … carbon.*Likely to be 1 trip to the office fortnightly What skills you’ll be needing Hands-on experience designing, deploying, and managing Azure-only cloud environments across networking, compute, storage, identity, and PaaS services. Strong knowledge of Azure networking, including Azure Firewall ...

against external threats and adversaries. Position Overview: My client is seeking a proactive and motivated Cloud Security Engineer with a strong focus on Microsoft Azure security to join a growing team. This role would suit a security engineer or SecOps professional who understands the importance of maintaining highly … secure environments and is keen to work across cloud, endpoint, and infrastructure domains. While the primary focus is Azure security engineering, experience with hardware and traditional infrastructure security would be advantageous. Team Principles: The team operates best when they: Remain curious and passionate about their work Communicate clearly ...

discipline. * Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. * Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. * Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

discipline. Proven ability to adapt quickly to emerging threats or new information, shifting focus as needed. Demonstrated expertise in Microsoft 365 Defender and Azure Sentinel for detecting, investigating, and responding to suspicious behaviors and anomalous activities. Familiarity with endpoint security solutions and security infrastructure, including … Working knowledge of cloud based web and email filtering solutions such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security ...

design" solutions are woven into the fabric of the entire ecosystem. Key Responsibilities Hybrid Architecture & Governance: Design and implement security controls across Azure, on-prem servers, and SaaS applications while maintaining hardening standards based on CIS and NIST benchmarks. Identity & Access Security: Define standards for Entra … overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/Hyper-V), Windows ...

Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence engaging ...

expected to work with a high degree of autonomy. What You Will Be Doing Monitoring and analysing threat data from Microsoft Defender and Sentinel and translating findings into clear, actionable outcomes Reviewing and implementing Microsoft and third party security recommendations across a broad and complex technology estate Managing … delivering security improvements through formal change management processes, ensuring changes are properly scoped, approved and tracked Maintaining security standards across Azure, M365, Active Directory, Dynamics, Power Apps and SQL environments Aligning security posture against ISO 27001, NIST, NCSC, CISA and Cyber Essentials+ frameworks Producing reports and dashboards ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

Microsoft Sentinel Engineer Up to £70,000 DOE Remote – UK Are you an experienced Microsoft Sentinel Engineer ready to take ownership of advanced security projects? Do you have strong 3rd-line level experience across Microsoft, Azure, networking, and cloud security? Would you like … within a 60-person business and is expanding fast including the recent onboarding of a major financial services client. As a Microsoft Sentinel Engineer, you will design, implement, and optimise Sentinel solutions across enterprise environments. You will connect multiple data sources, write complex KQL queries, build ...

broad technical knowledge of a wide range of solutions such as ConnectWise, RMM systems (Asio/Addigy), Mac & Windows OS, Active Directory/Azure Active Directory, Virtual machines (Oracle & Hyper-V), Mac & Windows hardware build/deployment, printers/peripherals, cloud services (Microsoft 365, Google Workspace, Dropbox), Microsoft ...

escalation point for 1st Line Engineers, taking ownership of more complex issues. Troubleshoot and resolve advanced incidents across Microsoft 365, Azure AD, NinjaOne, SentinelOne, Barracuda, networking technologies, virtualisation and Windows Server environments. Deliver remote and on-site support where required. Ensure all tickets are handled within agreed SLAs ...

investment bank based in London. *Inside IR35 - 3 days a week on-site** Key Responsibilities SIEM Management & Optimization: Design, implement, and maintain Microsoft Sentinel workspaces, connectors, analytics rules, and playbooks Develop advanced KQL queries for threat hunting and reporting Optimize SIEM performance, cost, and data retention policies Troubleshoot … further details - Alex Reeder Harvey Nash 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel and KQL Strong knowledge of Active Directory, Windows/Linux systems, and cloud platforms (Azure, AWS, GCP) Proficiency in scripting (PowerShell, Python) Familiarity ...

helping optimise IT systems and services. This is an exciting opportunity to work with a broad tech stack including Windows, Microsoft 365, Azure, networking tools, and security platforms. To thrive as an IT Support Advisor , you must have hands-on experience with Windows 10/11, Active Directory ...

Cloud Security Engineer (Azure/M365) | SC Clearance needed | Remote + Client Visits We're working with a growing, security-focused organisation that is investing heavily into its cloud security capability and looking to bring in a Cloud Security Engineer to support both internal platforms and client environments. … work in Cheltenham office if preferred. The Role: You'll play a key role in designing, improving and maintaining cloud security across Azure and Microsoft 365, working closely with technical teams and stakeholders to ensure environments are secure, compliant and continuously improving. This is a hands-on position ...

from you.Experience2-4 years' experience in cloud security, pre-sales engineering, technical consulting, or security operations.Exposure to at least one major cloud provider (Azure, AWS, or GCP), with a willingness to broaden your expertise.Understanding of hybrid and on-premise security concepts.Awareness of key frameworks such … PlatformsExperience with some of the following is helpful (not all required):Microsoft Defender for Cloud, AWS Security Hub, GuardDuty, GCP Security Command Center.Microsoft Sentinel, AWS CloudTrail, Config, KMS, GCP Cloud Logging.CSPM: Prisma Cloud, Wiz, Orca, Lacework, CloudGuard.CIEM: SailPoint, Saviynt, Veza.Identity & Access ManagementAzure AD/Entra ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

London are looking for a seasoned Information Security Lead to be the authority across all Information Security and Cloud Infrastructure; ensuring Azure, Microsoft 365, and SaaS platforms are secure, resilient, and compliant. The role combines hands-on technical security expertise with risk management, governance, and assurance, supporting business … enablement, rather than day-to-day service desk operations. The ideal candidate will have strong technicals skills across the following: Microsoft Entra ID (Azure AD): Conditional Access, MFA, Passwordless authentication, Identity Protection, PIM, Phishing resistant MFA configurations Zero Trust architecture and least-privilege access models Identity governance, access ...

leading or mentoring SOC teams Strong knowledge of incident response and threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Previously worked as a Threat Detection Engineer or in a similar role. Must have strong expertise in KQL. Hands-on experience with Microsoft Sentinel and Defender (Endpoint, Office 365). Familiarity with Microsoft Entra ID, including Identity Governance. Experience with Microsoft Purview, particularly DLP and data protection tools. … Exposure to cloud-native logging in Azure and Kubernetes environments. Understanding of “detection as code” or “everything as code” approaches, including CI/CD pipelines. Experience working with or alongside MSP SOC teams. Awareness of Agile methodologies and ways of working. Knowledge of attacker TTPs, threat modelling ...

Strong leadership and team management capability * Expertise in Incident Response and Vulnerability Management processes * Hands-on experience with Microsoft security technologies (Defender suite, Sentinel) * Experience developing and maintaining operational security procedures and documentation * Alert tuning and optimisation to reduce false positives * Ability to define, measure, and report … automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding of regulatory and compliance requirements in operational security * Certifications such as CISSP, CISM or equivalent TO BE CONSIDERED: Please either ...

prem LDAP applications, and outdated protocols like Kerberos and NTLM. Automation: Streamline operations by automating identity tasks using PowerShell, Microsoft Graph API, and Azure CLI. Governance & Compliance: Ensure all platforms meet hardening standards and assist with audit readiness for frameworks such as ISO 27001, GDPR, or PCI DSS. … What We’re Looking For Essential Experience: Expertise in Microsoft Identity: Proven track record with Azure Entra ID, Active Directory, and managing hybrid-to-cloud transitions. Device Management: Strong proficiency in Microsoft Intune/Endpoint Manager and modern Windows device transformation. Security Tooling: Hands-on experience deploying ...

will: • Lead and schedule the SOC Engineering team across onboarding and live service activity • Own technical delivery during customer onboarding and transition • Oversee Sentinel connector deployment, Defender integration, rule tuning and SOAR playbooks • Ensure structured service handover into SOC operations with clear documentation • Act as escalation point … logic, automation and enrichment capability • Drive engineering standards, reporting clarity and workload discipline • Coach and develop junior engineers • Maintain technical authority across Microsoft Sentinel, Defender suite, Entra ID and Azure security architecture What Success Looks Like • Onboarding delivered on time with validated integrations • Clean handover into ...

Project Delivery: Taking part and ownership of IT projects such as new client onboarding, Office 365 migrations, and network installations. - Microsoft Entra/Azure AD Administration: Manage users, groups, access, and support cloud identity issues. - Intune MDM Experience - Customer Service: Deliver friendly, professional support to end-users … knowledge base and help refine processes. Essential Qualifications & Experience: - Technical Skills: Windows, Networking, Office 365 Migrations, Intune MDM, SharePoint, Teams, OneDrive, Defender, Sentinel - MSP Experience: Previous experience in an MSP or IT support provider environment. - Right to Work in the UK: Legal authorisation to work ...