11 of 11 SIEM Jobs in East Anglia

SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading consultancy’s Security Operations Centre … SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on emerging threats and … incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc.) would be a plus. More ❯

in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client More ❯

Creating incident reports for both technical & non-technical audiences • Staying ahead of evolving attack techniques & threat intel We need: • Hands-on SOC experience • Strong SIEM knowledge – Sentinel, Splunk, etc. • Solid grasp of network protocols and security architecture • DV clearance eligibility (UK residency for 10+ years) Why this role? You’ll More ❯

Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Networking: Routing Protocols (OSPF) Multicast QoS Layer 2 Protocols (RSTP, VLANs, Port Channels, Trunking, Storm Control, BPDU More ❯

Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Networking: Routing Protocols (OSPF) Multicast QoS Layer 2 Protocols (RSTP, VLANs, Port Channels, Trunking, Storm Control, BPDU More ❯

Hybrid), Inside IR35 Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and … have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing … in a technical role in security operations and/or security software development. Solid understanding of security operations, automations standard processes, detection engineering and SIEM management. Experience with cloud security tools and platforms and their integration into SOC operations. Responsibilities: Lead technical migration of log sources into Microsoft Sentinel SIEM. More ❯

prioritize workload, and manage competing demands. • Experience in analyzing IT logs and event sources is preferred. • Monitor and administer Security Information and Event Management (SIEM). • Malware analysis and forensics research. • Understanding/differentiation of intrusion attempts and false positives. • Investigation tracking and threat resolution. • Familiarity with data storage systems More ❯

SOC Analyst, you will provide expert technical support for complex network and cybersecurity deployments across key UK contracts. You will be responsible for managing SIEM and EDR platforms, developing security playbooks, and enhancing security operations. This role requires a strong understanding of IT infrastructure, operating systems, firewalls, and networking, along … functions for customer projects. Conduct integration testing for new services and document findings. Represent the team in meetings with key stakeholders. Support and maintain SIEM infrastructure, including applications and operating systems. Protect sensitive customer information and ensure security best practices are followed. Skills/Must have: Strong expertise in supporting … and designing SIEM/EDR platforms. Extensive experience in cybersecurity investigations and troubleshooting, including: Operating Systems: Linux/Unix, Windows Security Infrastructure: Firewalls, Next-Gen Firewalls, Network devices Cloud Platforms & Networking: TCP/IP, Operational Technology SC clearance eligibility. Benefits: Competitive salary and career growth opportunities. Pension scheme (5% employee More ❯

. Essential Skills and Experience: Proven experience in a Security Operations Centre (SOC) environment Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client … programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities: As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You More ❯

and Experience: Proven experience in a Security Operations Centre (SOC) environment SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client … programming with Python , Perl , Bash , PowerShell , or C++ Recognised certifications such as CREST Practitioner Intrusion Analyst or Blue Team Level 1 Familiarity with additional SIEM technologies, especially QRadar Role & Responsibilities As a SOC Shift Lead , you will ensure the smooth operation and continual enhancement of SOC processes and personnel. You More ❯