1 to 25 of 34 Azure Sentinel Jobs in the UK excluding London

looking for an Azure Engineer who can help our client with phase 2 & 3 of the configuration of a new Azure environment with specific focus on Landing Zones, Network Connectivity and VPN gateways. You will have a proven tack record with Azure implementations … confifuration of Azure Infrastructure. You will be an expert in advsiing how Azure is configured and can create an environment that will interact and complement a companies wider working processes and technology. Experience Azure Infrastructure: Proficiency in Azure Virtual Machines, Storage, Azure ...

Azure DevSecOps Consultant – Information Security Location: Ipswich, Suffolk Onsite/Hybrid (UK – 3 days per week in office). Candidates must live a commutable distance from Ipswich. We are partnered with a major enterprise undergoing significant cloud-security transformation, and we're seeking an experienced Azure … their Information Security function. This is a pivotal, hands-on role focused on designing, implementing, and automating secure-by-design cloud practices across Azure environments and CI/CD pipelines. You’ll work closely with cloud architects, engineering teams and security governance stakeholders to embed security from code ...

application owners to drive remediation of unpatchable vulnerabilities through configuration changes, mitigations, or documented risk acceptance. Assess cloud security risks across the Azure estate using native and third party security tools. Develop, maintain and evidence standards, procedures and secondary security controls to ensure policy and regulatory compliance. Support … Ivanti Neurons, cloud security controls and industry best practices. Hands-on experience with the Microsoft security ecosystem, including Microsoft Defender for Cloud, Microsoft Sentinel, Azure Update Manager and core Azure services. Demonstrated expertise in vulnerability management, risk assessment, mitigation strategies, and patch management within ...

influence decisions and deliver real value. You will bring: Strong understanding of SIEM tools and attacker behaviours. Handson experience with O365, M365 and Azure security administration. PowerShell scripting capability. Experience working with firewalls, IDS, WAF, network segmentation and wider security controls. Broad technical knowledge spanning Windows, networking … into meaningful technical solutions. Experience writing technical design documents. And it would be great (but not essential) if you also have experience with: Azure Sentinel, AlienVault, AWS or GCP security controls. Linux, data storage, or scripting in Python or Bash. What can we offer you? Through ...

Management processes Implement identity access control measures and DLP controls Respond to Tier 3 security incidents Monitor threat intelligence Participate in pentests Engineer Microsoft Sentinel detections & SOAR playbooks Cyber Security Engineer: Technical Experience Microsoft Security: Defender of Endpoint, Identity, Cloud Apps, Office 365 Azure AD Microsoft … Purview Cloud & Endpoint Security Azure Sentinel The permanent opportunity for a Cyber Security Engineer will be based out of the Birmingham offices on a hybrid basis. This is an opportunity to join an industry leader that has grown year on year. For more information, please apply ...

from the outset. What youll do Develop and implement security architectures aligned with enterprise strategy, regulations, and control standards, with a focus on Azure and hybrid cloud environments. Collaborate with Enterprise, Solution, and Cloud Architects to embed security in all designs, including application security and Azure-native services. Define and maintain security standards, guidelines, and reference architectures for Azure workloads, identity management (e.g., Entra ID), and secure application development. Deliver clear cybersecurity advice to technical and non-technical stakeholders on Azure security best practices, threat protection, and compliance. Champion 'Secure ...

understand the implications of new technologies. Good project management skills, with the ability to balance multiple initiatives and priorities simultaneously. SIEM experience with Azure Sentinel and or Splunk. Experience of running simulated or reacting to actual incidents, following procedures and good practice to limit, reduce ...

schedule works and manage customer expectations Skills Required: Windows Server - Active Directory, DNS, DHCP migration, group policy, auditing, security, windows events Microsoft 365 Azure AD, Exchange, Teams, OneDrive/SharePoint migration, policies, security Microsoft 365 security Intune, conditional access, defender for cloud EDR or XDR solutions such ...

Experience Proven experience working within an MSSP environment Strong background in Security Operations/SOC environments Experience with SIEM platforms such as Microsoft Sentinel, Splunk, QRadar, or similar Knowledge of EDR technologies and incident response methodologies Strong understanding of network security, firewalls, endpoint security, and threat intelligence Experience … communication and stakeholder management abilities Desirable Skills Relevant certifications such as Security+, SC-200, CySA+, CISSP, or similar Experience with cloud security technologies (Azure, AWS, Microsoft 365) Knowledge of MITRE ATT&CK framework and threat hunting methodologies Scripting or automation experience (PowerShell, Python, etc.) What’s on Offer ...

ambitions, to build the future. What you’ll be doing Security Engineering & Automation Architect and implement security controls across Microsoft 365, Azure, Dynamics 365, Kubernetes (AKS), and AI/ML workloads. Lead the design and deployment of conditional access, Defender for Cloud, Purview DLP, Azure Firewall … related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. ...

response activities Build SOAR-style workflows to improve response speed, consistency, and efficiency Cloud Security Implement and enhance security controls across AWS and Azure environments Review cloud configurations for security risks, misconfigurations, and compliance gaps Strengthen identity, logging, monitoring, and access controls across cloud platforms Support secure adoption … security improvement initiatives during business transformation Skills & Experience Required Proven experience in a hands-on Security Engineering role Strong experience securing AWS and Azure cloud environments Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning ...

tooling and SIEM platforms, with responsibility for monitoring, detecting, and responding to cyber threats, intrusions, and unauthorised or suspicious activity. This includes Microsoft Sentinel (data and source tuning, creation and maintenance of workbooks and connectors, and threat intelligence review), Microsoft Defender for Endpoint and Defender for Cloud … Ensure security operations align with regulatory standards and frameworks such as NIST, ISO 27001, and NCSC CAF. Person SpecificationEssential: Demonstrated experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management. Technical experience securing Microsoft Azure and Amazon ...

objectives. Providing support to police forces for the onboarding and maintenance of system log sources. Configuring and maintaining the NMC central Microsoft Azure, Lighthouse and Sentinel platform. Developing, maintaining, and deploying detection rules and other SIEM content. Creating custom solutions using both low-code and traditional … development approaches. Providing support to forces for the configuration of Sentinel and log sources. Testing and implementing new Sentinel connectors. Working with wider NMC teams, contributing to Continual Service Improvement and innovations. Creating and maintaining technical design documentation. Working with the PDS design team and wider ...

environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage, containment, and response Good knowledge of network protocols, Windows/Linux systems, and cloud environments (e.g. M365 … Azure, AWS) Strong analytical and communication skills, with the ability to explain technical issues to varied audiences Demonstrated commitment to continuous learning Desirable Skills Experience with scripting or automation (e.g. PowerShell, KQL, Python) Exposure to threat hunting or threat intelligence practices Experience mentoring or supporting junior colleagues Familiarity ...

Engineer - SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100, Our leading global law firm client are currently looking to take on a new SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) to join their … London and offer a great deal of autonomy and technical exposure. This SOC Engineer (SIEM, Exabeam, SOAR, EDR, IDS/IPS, MITRE, Azure, SC-200, SC-100) role, will be responsible for the enhancement of existing SIEM platform and improve performance, coverage and fidelity by conducting regular assessments ...

analytic techniques for incident detection Collaborate with an MSP SOC to maintain and tune the detection catalogue Build automated reporting dashboards using Microsoft Sentinel workbooks Support security initiatives including ISO 27001 activities and KQL-based tasks Ensure monitoring coverage across cloud platforms, SaaS apps, and internal systems Contribute … Experience: Previously worked as a Threat Detection Engineer or in a similar role. Strong proficiency in KQL and hands-on experience with Microsoft Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ...

confidently present findings to both technical teams and senior leadership. Lead SecOps meetings, operational reviews and security consultations. Technical Experience & Skills Microsoft & Azure Security Defender for Endpoint/Server/365 Office 365 SIEM/Observability Hands-on experience with Microsoft Sentinel Experience with Datadog … similar observability platforms Security Tooling Cloud Security Strong understanding of cloud security principles across Azure, AWS and GCP, ideally within managed services environments. Qualifications Essential Microsoft Certified: Security Operations Analyst Associate ...

cloud and on-prem environments. You’ll work across systems, networking, and security, contributing to both operations and design. Responsibilities Manage AWS/Azure infrastructure Support Windows/Linux systems and virtualisation (VMware, Hyper-V, KVM, Proxmox) Maintain networking (firewalls, routing, switching, VPNs) Implement monitoring, logging, and backup … backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (e.g. Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Jira/Confluence, IBM i Due to the volume of applications received for positions, it will ...

technical stakeholders. What youll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down sophisticated … detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested in this role but not sure if your skills ...

technical stakeholders. What you’ll bring: Deep SIEM expertise, building advanced detection logic, automation and complex queries in Splunk (SPL) and Microsoft Sentinel (KQL). A proven track record delivering complex detection engineering projects within enterprise or MSSP environments. Strong analytical skills, with the ability to break down … detections in QRadar and/or conducting EDR-focused threat hunting (e.g. CrowdStrike, Microsoft Defender for Endpoint). Broad infrastructure awareness across Cloud (Azure/AWS), on-prem, and SaaS/PaaS/IaaS environments. If you are interested in this role but not sure if your skills ...

government organisation to recruit a Principal Cyber Security Engineer on a 2-year FTC. The role requires someone with a strong background in Azure infrastructure, as well as AWS experience and Windows Server knowledge. Key Responsibilities: Technically Proficient Implementing Security Controls Administration of SIEM tools and Security Controls … Sentinel, Defender, DarkTrace) Incident Response Security Operations Centre Vulnerability Management & Reporting Continuous Improvement Training & Awareness Secure Architecture Support Compliance and Framework Alignment Essential Skills: Experience with Microsoft Sentinel, Microsoft Defender for Endpoint/Cloud SIEM tools, threat intelligence platforms, and vulnerability management Technical experience securing Microsoft ...

cloud and on-prem environments. You’ll work across systems, networking, and security, contributing to both operations and design. Responsibilities Manage AWS/Azure infrastructure Support Windows/Linux systems and virtualisation (VMware, Hyper-V, KVM, Proxmox) Maintain networking (firewalls, routing, switching, VPNs) Implement monitoring, logging, and backup … backup tools Knowledge of networking and security principles Familiarity with vulnerability management and VPNs Desirable ITIL processes SIEM/EDR tools (e.g. Microsoft Sentinel/Defender) Scripting (PowerShell, Bash, Python) Due to the volume of applications received for positions, it will not be possible to respond ...

endpoint management. This includes Windows Active Directory and integration with Microsoft Entra ID, unified security operations with Microsoft Defender XDR and Microsoft Sentinel, and modern endpoint and device management with Microsoft Intune and Microsoft Configuration Manager (SCCM/ConfigMgr), providing practical guidance, design assurance and implementation support where … Travel: Ability to travel to different sites and locations on a weekly basis Critical Competencies – Technical Competencies (Essential) Strong architectural capability across Microsoft Azure and core Microsoft cloud services Proficiency in security technologies, frameworks, and secure architecture patterns (including Microsoft Defender XDR and Microsoft Sentinel) Strong ...

follow agreed processes. Keep up to date with threats and recommend improvements. What you will bring: Clear understanding of Information Security fundamentals Sentinel OR Splunk experience. Familiarity with security monitoring/protective technologies. Good project-management skills; able to juggle multiple priorities. Analytical and systematic problem-solving approach … deadlines and collaborate in a busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills ...

troubleshooting devices and Microsoft 365. You'll be working across Windows 10/11, Microsoft 365 (Outlook, Teams, SharePoint, OneDrive), Active Directory, and Azure (Entra). There's also a strong focus on Intune for device enrolment, compliance, and endpoint support. You'll manage tickets … support onboarding/offboarding, and work with tools like Microsoft Defender and Sentinel within the wider environment. What they're looking for This role requires someone experienced who can contribute immediately in a busy environment. Key skills: Windows 10/11 support Microsoft 365 (Outlook, Teams, SharePoint, OneDrive ...