5 of 5 SIEM Jobs in the East Midlands

function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple ...

Microsoft security tooling , Defender suite, Purview, Compliance Centre, Entra ID, Conditional Access & Intune. VMware vSphere virtualisation will be part of your skill set, SIEM platforms, IDS/IPS intrusion detection/prevention systems. Applicants should also be familiar with DevSecOps , security compliance frameworks ( ISO27001, Cyber Essentials + GDPR). … Centre, Entra ID, Conditional Access, and Intune. Previous exposure to virtualisation platforms, particularly VMware vSphere and/or virtual desktop infrastructure. A user of SIEM platforms and Intrusion Detection/Prevention Systems (IDS/IPS) — including configuration, tuning, alerting, and using these tools to maintain visibility and respond to threats ...

security policy deployment FortiAnalyzer Centralised logging and reporting strategy SOC integration and event correlation Incident and event handling workflows Compliance reporting and audit outputs SIEM interoperability and operational analytics Secure SD-WAN SLA rule creation and traffic steering Link health checks and performance optimisation ADVPN architecture and dynamic overlay networking ...

support when required. This is a hands-on technical role where youll investigate complex alerts, support threat-hunting activities, contribute to the tuning of SIEM detections, and help improve SOC processes and response playbooks. Youll also play an important role in mentoring analysts and supporting the continued development … automation, and response capabilities are introduced. You will: Investigate, triage, and respond to security alerts across customer environments Support the tuning and maintenance of SIEM detection rules alongside senior analysts Carry out proactive threat analysis and support threat-hunting activities Act as an escalation point for Tier 1 analysts, providing ...

Senior Lead Cyber Security Analyst | SIEM, Incident Response & Vulnerability Management Location: UK (Hybrid) Salary: Competitive + Benefits I'm working with a well-established organisation looking to bring in a Senior Lead Cyber Security Analyst to take ownership of their security operations and help shape their cyber maturity. This … while working closely with IT, risk, and external partners. What you'll be doing: Leading cyber incident response end-to-end Monitoring and tuning SIEM/detection capabilities Driving vulnerability management and remediation Improving security tooling across endpoints, identity, and infrastructure Supporting compliance (Cyber Essentials, ISO 27001) Acting ...