17 of 17 SIEM Jobs in Central London

cybersecurity operations, with at least 2 years in a leadership or management role. Strong knowledge of SOC operations, incident response, and vulnerability management best practices. Hands-on experience with SIEM tools (e.g., Splunk, QRadar, Sentinel), vulnerability scanners (e.g., Nessus, Qualys), and other security platforms. Relevant certifications such as CISSP, CISM, CEH, GIAC, or GCIA are highly desirable. Excellent problem-solving More ❯

Azure Monitor, Application Insights, Log Analytics). Proficiency in KQL (Kusto Query Language) for log analysis. Experience with automation scripting (PowerShell, Python, or Azure Functions). Desirable Familiarity with SIEM tools (Splunk, ELK, Azure Sentinel) Microsoft Certified: Azure Administrator Associate (AZ-104) Microsoft Certified: Azure Solutions Architect Expert (AZ-305) Microsoft Certified: Azure Security Engineer Associate (AZ-500) Your Personal More ❯

cloud-based productivity and management of work. Key Responsibilities of the Security Engineer: Dealing with escalation of security related tickets and hands-on maintenance to solve the issues. Creating SIEM dashboards and detection rules using Splunk. Using CrowdStrike to monitor and investigate security alerts. Management of identity, MDM, or directory services via Jump cloud. Conducting regular vulnerability scans and risk More ❯

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support. This is a great opportunity and salary is dependent upon experience. More ❯

preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA, AV, IDS/IPS and MDM solutions Understanding of common frameworks, such as ITIL or LEAN is preferred Good exposure of user environment management, including desktops/laptops, profile More ❯

track record in selling to corporate and/or public sector clients. Strong expertise in Checkpoint technologies and Cybersecurity Managed Services. Experience selling a range of services such as SIEM, Managed Firewall, Vulnerability Management, and Threat Hunting. Excellent presentation, communication, and organisational skills. Proven ability to work collaboratively with pre-sales, technical, and support teams. Desirable Skills & Experience Familiarity with More ❯

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯

Azure A strong understanding of software development methodologies and practices Ability to Rapid Risk Assessment and Threat Modeling Other technical skills required: Azure Security Monitoring including Application Insights, and SIEM Excellent communication skills to guarantee stakeholder alignment and successful outcomes at all stages of Product delivery and ongoing support This is a great opportunity and salary is dependent upon experience. More ❯

to Azure. You'll lead threat modelling and threat hunting activities to proactively discover potential compromises, work with external teams on penetration tests and red team engagements and manage SIEM and XDR tooling, establish processes and workflows to support incident response SOC. Location/WFH: You'll join colleagues in the Central London office for two days a week with … have experience of securing web applications, Windows, Active Directory and M365 environments You have a good knowledge of cloud security, GCP or Azure preferred, AWS also considered You have SIEM and EDR/XDR systems including Splunk and CrowdStrike You have a good knowledge of networking principles You are degree educated in Computer Science or closely related discipline You're More ❯

person IT Security team, reporting to the IT Security Officer, to implement and maintain robust security across their infrastructure. Key responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email security gateways, SIEM/SOAR/ More ❯

person IT Security team, reporting to the IT Security Officer, to implement and maintain robust security across their infrastructure. Key responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email security gateways, SIEM/SOAR/ More ❯

strong expertise in Microsoft Sentinel and LogRhythm to join our Security Operations Center team. The ideal candidate will be responsible for monitoring, analyzing, and responding to security incidents, optimizing SIEM configurations, and contributing to threat detection and response strategies. This role requires hands-on experience with both platforms and a deep understanding of cybersecurity principles and incident management. Key Responsibilities … Sentinel and LogRhythm . Analyze logs, network traffic, and other data sources to detect threats and suspicious activities. Develop and tune detection rules, analytics, and alerting logic in both SIEM platforms. Collaborate with incident response teams to contain and remediate security incidents. Create dashboards, workbooks, and reports for stakeholders. Perform threat hunting activities and support continuous improvement of SOC processes. … Maintain and enhance use cases, playbooks, and automation (e.g., with Logic Apps or SOAR). Ensure SIEM solutions are properly integrated with data sources (e.g., firewalls, endpoints, cloud services). Support compliance and audit efforts through effective logging and reporting. Provide subject matter expertise for Sentinel and LogRhythm configuration, maintenance, and optimization. Requirements: Technical Skills: Proven experience with Microsoft Sentinel More ❯

in real time. - Drive efforts to automate and accelerate the detection and response processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA, DNS Security, and cloud security posture management. Required Skills/Experience: - 8+ … process, and architecture - Experience working with cloud security technologies (AWS, Azure DevOps, Kubernetes, GCP, etc) including cloud log analysis, monitoring, detection, and incident response. - Experience with SOC use of SIEM, SOAR, IDS/IPS, DLP, and Endpoint security. Senior SOC Engineer/SOC Technical Lead (Incident Response) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position More ❯

increased cyber threats and compliant to industry standards. This role covers information protection, including data loss protection and data classification, and threat protection, including security information and event management (SIEM), user and entity behaviour analytics (UEBA), point products like anti-virus (AV) and intrusion detection system/intrusion prevention system (IDS/IPS) and penetration testing. The Service Delivery team … preferred. Compliance knowledge required in ISO27001, PCI and GDPR. Possibly a certified ethical hacker Knowledge of Security technologies is essential, such as network appliances, firewall administration, AD, IAM, PAM, SIEM, UEBA, AV, IDS/IPS and MDM solutions Understanding of common frameworks, such as ITIL or LEAN is preferred Good exposure of user environment management, including desktops/laptops, profile More ❯

engage with multiple teams, and contribute to key decisions. Additionally, you will provide solutions to problems for your immediate team and across multiple teams. Key Requirements: Detailed Hands On SIEM support including policy updates (KQL/Sentinel) Hands On cyber escalations from L1 support Deep dive into data analysis and tools Incident Responder during a MIM Ensuring all SOC processes … and docs are current SC Clearance required Key Skills: SOC SIEM MS Azure Sentinel Cyber Incident/Threat Security Breach Operations More ❯

will be a hands-on leader in securing the business against evolving threats. Key Responsibilities Manage and optimise enterprise-grade security tools: WAF, DDoS, email and web security gateways, SIEM, SOAR, EDR, MFA, SSO, IDS/IPS, PAM and more. Perform vulnerability assessments and penetration test remediation. Deliver Cyber Security Awareness Training across the business. Lead ad-hoc security initiatives … Youll need strong technical expertise across multiple areas of cybersecurity and infrastructure, especially in the following: Essential Experience: Hands-on with: CrowdStrike EDR Mimecast Duo & Okta Palo Alto firewalls SIEM/SOAR platforms (e.g., Rapid7, CrowdStrike) InTune, Conditional Access Entra ID/Active Directory, GPO VPN, MFA, MDM/MAM Desirable Experience: Working knowledge of tools such as: Imperva WAF More ❯

Senior Security Pre-Sales Consultant, CSOC, SIEM, Partially Remote Security Pre Sales Consultant required to work for a 3 rd Party Service Provider in the City of London. However, this role will be partially remote and you will be travelling to various client sites from time to time. We need someone who can think outside of the box and work … design documentation Experience in designing secure security solutions covering Next-Generation Firewalls End Point Security and Compliance Data Loss Protection/Privilege Access Management Robust CSOC services that include SIEM and Security Orchestration Cloud security and compliance SASE/CASB EDR/XDR KMS/HSM Solutions NFV Security Technologies, WAFs DDOS Containerisation and Cloud Native application security Security consultation More ❯