11 of 11 SIEM Jobs in Central London

Gather and analyse threat intelligence to inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge of operating systems (Windows, Linux), network protocols, and packet analysis tools. Familiarity with scripting languages (Python ...

initiatives. Skills & Experience Essential: Strong grounding in security engineering principles, practices and risk management. Experience working with a broad range of security controls (e.g., SIEM, IDS/IPS, firewalls, secure SDLC, cloud security configuration, CIS hardening, API security). Knowledge of security frameworks such as NIST, ISO 27001, CIS and ...

continuous compliance. Develop automated remediation workflows for security findings. Monitoring & Incident Response: Implement monitoring and alerting for security events using AWS native tools and SIEM integrations. Support incident response and root cause analysis for security breaches or vulnerabilities. Maintain documentation and runbooks for security operations. Collaboration & Enablement: - Work closely with ...

experience who wants real technical ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/… security hardening (Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

and resilient technology estate. You will also contribute to enhancing identity security, infrastructure protection, awareness initiatives, and the onboarding of systems to SOC/SIEM tooling. This role is ideal for someone with strong technical knowledge, excellent communication skills and a passion for defending large-scale environments from emerging threats. … gaps and recommending mitigating actions. Support cyber incident response processes and manage related tickets (ServiceNow). Onboard systems and log sources to SOC/SIEM; validate SIEM-generated alerts. Implement vulnerability scanning and coordinate corrective actions. Produce clear reports on emerging risks and security posture. Support governance, compliance, training and ...

outcomes Reporting - Provides reports to time and standard as directed by PMO, socialising within key stakeholder groups. Skills required for the job Exposure to SIEM platforms, ideally Elastic Knowledge of data collection technologies such as Kafka and Logstash Ability to operate as a Technical PM , understanding engineering concepts and working ...

salary c. £65-75000 base + bonus + bens + 38 days hols (including bank hols) Desired Skills and Experience SOC ownership/leadership, SIEM, German speaker ...

Directive, GDPR), attack vectors targeting critical infrastructure, and threat actor behaviours relevant to national security. Sales Experience in Attack Surface management, Threat Intelligence or SIEM Existing network in European public sector sales. Location: 100% remote, can be based in any country in EMEA Email: Anthony@altura-partners.com ...

effective cyber incident detection, response, and threat mitigation across cloud, endpoint, and network environments. Key Responsibilities: Develop, maintain, and enhance security detection content for SIEM platforms (e.g., Splunk) to detect threats across diverse environments. Collaborate with security teams to identify gaps in detection, logging, and alerting based on business risks … . Required Experience & Skills: Strong technical expertise in cybersecurity, including threat hunting, attacker tactics, monitoring, alerting, and incident response. Experience with detection engineering and SIEM alert development. Solid understanding of core cybersecurity concepts: network security, cloud security, cryptography, and forensics. Familiarity with scripting or programming (Python, Bash, C/C++ ...

future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability … Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier ...

responding to complex cyber threats across cloud, endpoint, and network environments. Key responsibilities: Develop, maintain, and enhance detection rules and alerts, primarily within Splunk SIEM, to identify threats across diverse platforms. Analyse triggered alerts, triage incidents, and respond to security events on a rota basis, including on-call duties. Conduct … ideally from engineering or a hands-on IT/security role. Proficient in scripting or programming (Python, Bash, or similar). Practical experience with SIEM platforms (preferably Splunk), cloud environments, endpoints, and network monitoring. Familiarity with detection engineering, threat intelligence, and modern attacker techniques (TTPs). Sole British National with ...