Wokingham, Berkshire, United Kingdom Hybrid / WFH Options
Experis
in security engineering with SIEM & EDR platforms, network security, and understanding of cybersecurity frameworks. Certifications - CISSP, CEH, GIAC, or vendor-specific SIEM certifications. Programming & Scripting - Familiarity with Python, PowerShell, KQL (Kustoquerylanguage), KQL (Kibana QueryLanguage) or other scripting languages. Analytical Thinking & problem solving - Ability to analyze large datasets and identify threats, mitigations, misconfigurations More ❯
Slough, Berkshire, United Kingdom Hybrid / WFH Options
Anson Mccade
or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of threat detection, incident response, and the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST More ❯
Milton Keynes, Buckinghamshire, United Kingdom Hybrid / WFH Options
Anson Mccade
or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of threat detection, incident response, and the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST More ❯
High Wycombe, Buckinghamshire, United Kingdom Hybrid / WFH Options
Anson Mccade
or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of threat detection, incident response, and the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST More ❯
including Nozomi Networks, firewalls, Cribl, EDR (e.g., Defender for Endpoint), VMDR (e.g., Qualys), and other OT/IT systems into Sentinel. Custom Analytics & Detection Rules Develop, and fine-tune KQL-based analytics rules tailored to OT threat scenarios, ensuring high-fidelity alerts and minimal false positives. Threat Intelligence Integration Integrate threat intelligence feeds into Sentinel to enhance detection capabilities and More ❯
Milton Keynes, Buckinghamshire, England, United Kingdom
Lynx Recruitment Ltd
activity baselines and integrate external enrichment sources Deploy and tune EDR, NDR, and XDR, mapping detection to MITRE ATT&CK Skills & Experience: Strong Defender XDR expertise (integration, tuning, automation, KQL) SIEM engineering (Sentinel, LogRhythm) and Infrastructure as Code (ARM, Bicep, Terraform) Background in EDR/NDR implementation and cloud migration This is a long-term contract in a secure setting More ❯
