5 of 5 SIEM Jobs in Birmingham

and liaise with the custiomer and the Service Delivery Manager as well and ensuring the actions of the SOC Analysts follow best practice. Job Duties Security Monitoring: & Investigation: Monitoring SIEM tools to assure high a level of security operations delivery function Oversee and enhance security monitoring systems to detect and analyse potential security incidents. Conduct real-time analysis of security … vulnerabilities, integrating threat intelligence into security monitoring processes. Contribute to the development of threat intelligence feeds to enhance proactive threat detection. Proactively hunt for threats within enterprise environments using SIEM and EDR solutions. Fine-tune SIEM detection rules, correlation alerts, and log sources to reduce false positives. Analyse threat intelligence feeds, map findings to MITRE ATT&CK framework, and provide … mechanisms. Conduct adversary simulation exercises to test and improve detection capabilities. Generate detailed reports on emerging threats, attack trends, and security posture improvements. Monitored and analysed security logs from SIEM platforms to identify suspicious activity. Security Tool Management: Manage and optimise SIEM tools, ensuring they are properly configured and updated to maximize effectiveness. Own the development and implementation of SOC More ❯

hands-on' shift-based roles, working as part of a 24/7 operation working in a standard rotation shift pattern. They are responsible for utilising the SOC's SIEM and SOAR toolsets to detect and investigate potential Security and Service Incidents occurring within the monitored networks. Main Duties Monitor, triage, analyse and investigate alerts, log data and network traffic … skills. Strong analytical skills Must have expertise on TCP/IP network traffic and event log analysis. Must have knowledge and hands-on experience of Microsoft Sentinel (or any SIEM tool). Must have administrative skills in several operating systems, such as Windows, OS X, and Linux Must be proficient in basic shell scripting, creating Snort rules, or other log More ❯

communication skills. Excellent interpersonal and presentation skills. Strong analytical skills. Expertise in TCP/IP network traffic and event log analysis. Hands-on experience with Microsoft Sentinel or similar SIEM tools. Administrative skills across multiple operating systems (Windows, OS X, Linux). Proficiency in shell scripting, creating Snort rules, or other log-searching query languages. Confidence in handling common security More ❯

should be classified as an incident. They will coordinate with the customer's IT and Security teams for resolution of the security incident. Main Duties Security Monitoring & Investigation: Monitor SIEM tools to ensure high levels of security operations delivery. Oversee and enhance security monitoring systems to detect and analyze potential security incidents. Conduct real-time analysis of security events and … Intelligence: Stay updated on cybersecurity threats and vulnerabilities, integrating threat intelligence into monitoring processes. Contribute to threat intelligence feeds to enhance proactive detection. Security Tool Management: Manage and optimize SIEM tools, ensuring proper configuration and updates. Develop and implement SOC use cases. Evaluate new security technologies and recommend enhancements. Collaboration: Work with cross-functional teams including IT, legal, and management … bring: What you will bring; Must be able to obtain or already hold SC Clearance. Good understanding of Incident Response approaches. Hands-on experience with Microsoft Sentinel or similar SIEM tools. Strong verbal and written English communication skills. Interpersonal and presentation skills. Analytical skills. Understanding of network traffic and activities. Knowledge of Vulnerability Scanning, Management, and Ethical Hacking (Penetration Testing More ❯

understanding of network protocols, routing, and switching. * Ability to work in a dynamic and fast-paced environment. * Excellent communication and collaboration skills. * Experience with security information and event management (SIEM) tools is a plus. Interested?! Send your up-to-date CV to Emma Siwicki at Crimson for review Not interested?! Do you know anyone that might be? Refer a friend More ❯