Experience with network security, incident management, and penetration testing. Strong up-to-date knowledge of Cyber Security. Experience with EDR and Anti-Virus/Malware management such as SentinelOne, CrowdStrike and Defender. Demonstrated ability working with IT System Administration of Azure, Defender (ATP), M365 and Windows. Experience with Identity Access and Management (IDAM) solutions. CyberArk and ENTRA ID Familiarity More ❯
Microsoft cloud services (Intune, Azure, Entra), security auditing, and modern endpoint protection such as CrowdStrike. Responsibilities Monitor and respond to security incidents using EDR/XDR tools such as CrowdStrike, Microsoft Defender, and SIEM platforms. Perform regular audits and security assessments across cloud (AWS, Azure) and SaaS platforms to identify risks and ensure compliance with internal policies and industry … background in cloud security (AWS/Azure), including the shared responsibility model. Familiarity with compliance frameworks (ISO 27001, GDPR, SOC 2, NIST). Hands-on experience with EDR tools (CrowdStrike, Defender for Endpoint) and SIEM/SOAR platforms. Basic scripting for automation and reporting using PowerShell or Python. Working knowledge of network security protocols, VPNs, firewalls, and web filtering More ❯
ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client setting) Security certifications like More ❯
City of London, Greater London, UK Hybrid / WFH Options
ZenTech Talent
ISO 27001, Cyber Essentials, etc.) Tech Environment: Microsoft 365 Defender, Intune, Azure Security Center Firewalls: Palo Alto, Fortinet, SonicWall SIEM: Sentinel, Splunk, or equivalent EDR/XDR solutions (Sophos, CrowdStrike, Defender) Scripting knowledge (PowerShell preferred) What We’re Looking For: 5 years’ experience in a cyber security role (ideally within an MSP or multi-client setting) Security certifications like More ❯
Security Operations Center. As a Tier 3 CERT Analyst, Candidate will lead the investigation and remediation of advanced cyber threats, leveraging cutting-edge tools such as Splunk, Microsoft Sentinel, CrowdStrike, and Defender and other security stacks. Candidate will handle complex incidents like APTs, malware, and data breaches, ensuring swift, effective responses to minimize risk to the organization and its More ❯
Nottingham, Nottinghamshire, United Kingdom Hybrid / WFH Options
Experian Group
Anti-Virus, Intrusion Prevention, Web Application Firewalls) Interest in developing knowledge across common Incident Response and Security Monitoring applications such as SIEM (e.g., Qradar, Splunk), EDR (e.g., FireEye HX, CrowdStrike Falcon, Microsoft Defender), and SOAR (Palo Alto XSOAR, Google Secops/Chronicle) Desire to build technical skills and hands-on knowledge in the following areas of security operations and More ❯
Barton upon Humber, England, United Kingdom Hybrid / WFH Options
Wren Kitchens
frameworks such as ISO 27001 and NIST CSF. Cybersecurity certifications like Security+, CSA, SC-900, CC, CySA+, GSEC are beneficial but not mandatory. Familiarity with tools like Zscaler, Mimecast, CrowdStrike, SIEM, Cisco, Microsoft Defender, Azure, AWS, Cloudflare, Jamf. About The Company Wren Kitchens is passionate about both kitchens and our people! We have achieved milestones like opening over More ❯
support of all aspects of an information security program, including Governance Risk & Compliance, Security Operations, and Security Engineering with hands on engineering and administration of security tools, such as CrowdStrike, Qualys, and Splunk in collaboration with fellow security and IT professionals. Required Skills and Qualifications: Demonstrable experience across multiple cybersecurity domains including vulnerability management, risk management, network security, Splunk … deliver solutions on time. Experience with security industry frameworks, such as NIST CSF, ISO 27000 series, FAIR risk analysis, and privacy regulations. Proficiency with security tools such as Qualys, Crowdstrike, and Splunk. Experience with incident response and threat hunting. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills, with the ability to effectively convey technical information to More ❯
working in a 24/7 rota within IT or Security. Understanding of PCI-DSS compliance. Scripting skills, especially with PowerShell and Bash. Familiarity with tools like zScaler, Solarwinds, Crowdstrike, Splunk. Experience with batch automation, Linux, and Azure. Knowledge of SIEM tools. Experience in Event Analysis, Triage, Incident Handling, and Root-Cause analysis. What can we do for you More ❯
/800-171, HIPAA, etc.). Understanding and experience with computer networking fundamentals, operating systems, SIEM, vulnerability scanning, EDR, email and cloud security platforms. Experience with platforms such as CrowdStrike and Splunk is a plus. Experience in penetration testing, threat/vulnerability assessments, and operational technology (OT) security. Proven ability to adapt to changing priorities and make decisions with More ❯
. Certifications in security governance and frameworks: ISO/IEC 27001, NIST CSF, CAF, or CIS Controls. Additional vendor or platform-specific certifications (AWS, Azure, Microsoft, GCP, Palo Alto, CrowdStrike, Tenable) are advantageous. OT/ICS/SCADA-focused certifications: IEC 62443, GRID/GRID+ (SANS/GIAC), GICSP, or equivalent industrial cybersecurity training are desirable. Demonstrable commitment to More ❯
weeks ago Bristol, England, United Kingdom 3 days ago Newport, Wales, United Kingdom 2 weeks ago Cardiff, Wales, United Kingdom 3 weeks ago Network/Security Engineer/Crowdstrike Falcon Cardiff, Wales, United Kingdom 1 month ago Bristol, England, United Kingdom 2 months ago City Of Bristol, England, United Kingdom 5 days ago Defence Digital Cyber Compliance Project Officer More ❯
developing, implementing, and maintaining automation playbooks to improve incident response efficiency within the Security Operations Centre. This role integrates multiple security tools and workflows, leveraging platforms like , Darktrace , and CrowdStrike to create cohesive and automated threat detection and response mechanisms. Key Responsibilities Playbook Development: Design, implement, and maintain SOAR playbooks for automated response and alert enrichment. Tool Integration: Develop … and manage integrations with: Google SecOps (Chronicle, Security Command Center) Darktrace (Threat Visualizer, Antigena) CrowdStrike Falcon (EDR, threat intelligence, APIs) Other security platforms such as SIEMs, ticketing systems, and firewalls. Automation & Enrichment: Automate repetitive security tasks like indicator enrichment, triage, and threat intelligence lookups. Collaboration: Work with SOC analysts and threat detection teams to identify and implement automation opportunities. … or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python , PowerShell , or Bash . Experience with REST APIs and JSON for tool integration. Working knowledge of incident response frameworks and MITRE ATT&CK. More ❯
developing, implementing, and maintaining automation playbooks to improve incident response efficiency within the Security Operations Centre. This role integrates multiple security tools and workflows, leveraging platforms like , Darktrace , and CrowdStrike to create cohesive and automated threat detection and response mechanisms. Key Responsibilities Playbook Development: Design, implement, and maintain SOAR playbooks for automated response and alert enrichment. Tool Integration: Develop … and manage integrations with: Google SecOps (Chronicle, Security Command Center) Darktrace (Threat Visualizer, Antigena) CrowdStrike Falcon (EDR, threat intelligence, APIs) Other security platforms such as SIEMs, ticketing systems, and firewalls. Automation & Enrichment: Automate repetitive security tasks like indicator enrichment, triage, and threat intelligence lookups. Collaboration: Work with SOC analysts and threat detection teams to identify and implement automation opportunities. … or security engineering. Hands-on experience with SOAR platforms (e.g., Cortex XSOAR, Splunk SOAR, IBM Resilient). Strong familiarity with: Google SecOps/Chronicle Darktrace (AI-based threat detection) CrowdStrike Falcon platform Scripting experience in Python , PowerShell , or Bash . Experience with REST APIs and JSON for tool integration. Working knowledge of incident response frameworks and MITRE ATT&CK. More ❯
cloud), vulnerability and incident management Familiarity with application/device security monitoring (e.g. Firewalls, IDS/IPS, XDR etc.) Experience with SIEM/CNAPP/Log collection platforms (e.g. CrowdStrike, Lacework etc.) and capability to design, implement and manage such solutions Experience with implementation of identity and access management (IAM) solutions Ability to work in a team to deliver More ❯
Acadian’s cloud IAAS environments for Indicators of Misconfiguration (IOMs) utilizing AWS built-in and third-party assessment tools. Utilizing tools like AWS Config, Security Hub, Inspector, Guardduty, and Crowdstrike Falcon, assess monitor and prioritize remediation of Cloud security vulnerabilities.· Develop and maintain tools to detect and remove secrets from code check-ins.· Establish development best practices for working More ❯
London, England, United Kingdom Hybrid / WFH Options
Damco Spain SL
collaborate with other teams, and build streamlined cross-departmental processes. Automation Development Identify repetitive tasks and develop automation ideas. Collaborate with automation teams to build capabilities using platforms like CrowdStrike Fusion, AWS Lambda, Azure Logic Apps, XSOAR, and Python scripts. Languages Good experience in query languages like KQL and Logscale for investigations and log analysis is highly desirable Managing More ❯
driving network modernization initiatives, including transitions from legacy infrastructure to SD-WAN, SASE, and cloud-native security models Hands-on experience with endpoint protection and EDR platforms such as CrowdStrike, SentinelOne, Microsoft Defender, or Tanium Familiarity with DNS security tools and strategies (e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture … Solution Design & Architecture Design and validate secure architectures incorporating network segmentation/micro segmentation, DNS-layer protection, and endpoint telemetry. Develop integrated solutions leveraging tools like Fortinet, Palo Alto, CrowdStrike, Microsoft Defender, Zscaler, Infoblox, and others. Recommend strategies for containing lateral movement, hardening east-west traffic, and segmenting access based on identity and risk posture. Support RFPs, solution briefs More ❯
driving network modernization initiatives, including transitions from legacy infrastructure to SD-WAN, SASE, and cloud-native security models Hands-on experience with endpoint protection and EDR platforms such as CrowdStrike, SentinelOne, Microsoft Defender, or Tanium Familiarity with DNS security tools and strategies (e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture … Solution Design & Architecture Design and validate secure architectures incorporating network segmentation/micro segmentation, DNS-layer protection, and endpoint telemetry. Develop integrated solutions leveraging tools like Fortinet, Palo Alto, CrowdStrike, Microsoft Defender, Zscaler, Infoblox, and others. Recommend strategies for containing lateral movement, hardening east-west traffic, and segmenting access based on identity and risk posture. Support RFPs, solution briefs More ❯
driving network modernization initiatives, including transitions from legacy infrastructure to SD-WAN, SASE, and cloud-native security models Hands-on experience with endpoint protection and EDR platforms such as CrowdStrike, SentinelOne, Microsoft Defender, or Tanium Familiarity with DNS security tools and strategies (e.g., Zscaler, Cisco Umbrella, Infoblox) and their role in threat containment Deep knowledge of Zero Trust Architecture … Solution Design & Architecture Design and validate secure architectures incorporating network segmentation/micro segmentation, DNS-layer protection, and endpoint telemetry. Develop integrated solutions leveraging tools like Fortinet, Palo Alto, CrowdStrike, Microsoft Defender, Zscaler, Infoblox, and others. Recommend strategies for containing lateral movement, hardening east-west traffic, and segmenting access based on identity and risk posture. Support RFPs, solution briefs More ❯
