12 of 12 Intrusion Detection Jobs in the Thames Valley

to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure and application teams to ensure secure configurations … and compliance. Maintain and improve endpoint protection, intrusion detection/prevention systems. Document incident response procedures and contribute to post-incident reviews. Create network diagrams and as-built documents. Develop and maintain a strong partnership with relevant global businesses and technical leaders and teams, including 3rd parties and affiliate businesses. Stay current with emerging threats, vulnerabilities, and security … Microsoft O365 products (Excel, PowerPoint, etc.). SEIM and SOAR technologies (Splunk, Cribl, Azure Sentinel). Configure and troubleshoot EDR/Microsoft Defender for Endpoint, vulnerability management, and threat detection systems, with focus on Linux OS. Azure Security Center and Office365 Compliance Portal. AWS and Azure (IAM, IaaS, PaaS). Knowledge in KQL queries in Sentinel and/or More ❯

requirements gathering through to procurement, budgeting, vendor management , and security assessments . Security, Compliance & Governance Partner with Information Security teams to enhance network security posture , addressing vulnerabilities and implementing intrusion detection/prevention systems. Ensure ongoing compliance with ISO 27001, PCI-DSS , and other relevant regulatory standards. Drive a proactive approach to incident response, monitoring, and continuous threat … detection . Oversee audit readiness and maintain comprehensive network documentation and asset inventories. People & Stakeholder Leadership Build, develop, and mentor a high-performing network engineering team , fostering a culture of excellence, accountability, and continuous learning. Set clear objectives, manage performance, and align team skills with evolving business and technology needs. Act as the trusted technical adviser to senior stakeholders More ❯

such as SIEM, DLP, endpoint protection, and network monitoring. Knowledge of frameworks including ISO27001, GDPR, NIS2, and MITRE ATT&CK. Skilled in networking fundamentals — firewalls, VPNs, routers, LANs, and intrusion detection. Relevant certifications such as SC-200 or AZ-500 (CISSP/CISM/CRISC advantageous). Confident communicator with the ability to influence and collaborate across teams. What More ❯

such as SIEM, DLP, endpoint protection, and network monitoring. Knowledge of frameworks including ISO27001, GDPR, NIS2, and MITRE ATT&CK. Skilled in networking fundamentals — firewalls, VPNs, routers, LANs, and intrusion detection. Relevant certifications such as SC-200 or AZ-500 (CISSP/CISM/CRISC advantageous). Confident communicator with the ability to influence and collaborate across teams. What More ❯

such as SIEM, DLP, endpoint protection, and network monitoring. Knowledge of frameworks including ISO27001, GDPR, NIS2, and MITRE ATT&CK. Skilled in networking fundamentals firewalls, VPNs, routers, LANs, and intrusion detection. Relevant certifications such as SC-200 or AZ-500 (CISSP/CISM/CRISC advantageous). Confident communicator with the ability to influence and collaborate across teams. What More ❯

standards. Skills Proven experience in cyber security engineering or related roles, with a strong understanding of network security principles, protocols and technologies. Experience with security tools such as firewalls, intrusion detection/prevention systems, SIEM solutions (i.e. Splunk, Exabeam, Sentinel, Chronicle) and endpoint security platforms to the level of administration and deployment. Exposure to SOAR tools, observability tools More ❯

CNI Infrastructure IDS Administrator (SC Cleared) - Hybrid (Wokingham/Warwick) - Inside IR35 - 6 months We are seeking an experienced CNI Infrastructure IDS Administrator to manage, configure, and optimize enterprise Intrusion Detection Systems (IDS) across Windows and non-Windows environments. This hands-on role will involve patching, alert handling, and end-to-end change management to ensure the integrity … and prioritize actions based on threat severity. Configure IDS software, including rules, signatures, and alerts to detect various threat types. Optimize IDS performance to minimize false positives and enhance detection accuracy. Manage, patch, and maintain IDS configurations, traps, and alert systems. Work collaboratively with IT and security teams to support a comprehensive security strategy. Maintain detailed documentation for IDS More ❯

Cisco Nexus switches, Cisco ASA firewalls, F5 LTM and DNS load balancers. Strong network design and management skills and experience, including setting up firewall rules, dynamic routing, load balancing, intrusion detection and prevention, setting up remote access and site-to-site VPNs. Strong practical experience of following ITIL processes in a 24x7 operations environment with tight SLA and More ❯

infrastructure, cloud environments, and cybersecurity operations. Hands-on experience with tools such as SIEM, DLP, endpoint protection, and network monitoring. Skilled in networking fundamentals firewalls, VPNs, routers, LANs, and intrusion detection. Free standard class leisure travel for you and eligible dependants across several major rail operators. Defined Benefit Pension Plan. Generous annual leave (25 days + bank holidays). More ❯

requirements. Preparing for and completing all required audits. Essential skills/knowledge/experience: Experience of Industrial Defender/Leidos would be an advantage, but not essential! Managing, patching Intrusion Detection system alerts; config; traps etc. Raising, representing and managing end-to-end delivery of own changes. Working in a small local team, part of a wider Infra More ❯

proven experience designing and managing resilient secure and high availability network environments supporting internal and customer services strong grasp of network security best practices and technologies including firewalls, segmentation, intrusion detection/prevention and encryption. More ❯

team to manage technical deliverables and change management; engaging with Application and Infrastructure teams to ensure alignment and resolve issues Desirable Skills: Strong understanding of monitoring tools, operating systems, intrusion detection systems (IDS), and network security principles Good grasp of network protocols, security best practices, and common cyber attack vectors Special Working Conditions Required to travel to office More ❯