1 to 25 of 44 SIEM Jobs in the East of England

potential cyber risks, assess their impact and develop technical mitigation strategies. Working with Security Architecture to advise focused security solution design for SOC/SIEM solutions. Formulate security strategy, creatively applying a wide range of technical and/or management principles. What youll bring: ? Proficiency in Splunk is a key More ❯

continuity plans are in place for all critical areas. People Management: Collaborate with internal owners of security technologies such as antivirus, IDS/IPS, SIEM, endpoint detection & response, configuration management, privileged identity management, etc. Why you? Basic Qualifications: We are looking for professionals with these required skills to achieve our More ❯

and industry best practices For the SOC role you will have: Hands-on experience working in a Security Operations Centre (SOC) Solid knowledge of SIEM tools such as Microsoft Sentinel or Splunk Familiarity with the MITRE ATT&CK framework and threat detection methodologies Strong analytical skills with a keen eye More ❯

scripting such as Python, Perl, Bash, PowerShell, C++. CREST Practitioner Intrusion Analyst/Blue Teams Level 1 or other SOC related certifications. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar. If you are interested in this role but not sure if your skills and experience More ❯

FTP, POP, LDAP. It would be great if you had: Understanding of static malware analysis and reverse engineering. CREST Practitioner Intrusion Analyst. Experience with SIEM technologies, namely Sentinel and Splunk, with some experience with QRadar appreciated. If you are interested in this role but not sure if your skills and More ❯

of static malware analysis or reverse engineering concepts. Certifications such as CREST Practitioner Intrusion Analyst (CPIA) or similar relevant industry certs. Experience with additional SIEM technologies, particularly QRadar. Key Details: Employment Type: Permanent Location: Based at the head office in Hemel Hempstead (Fully site-based). Work Pattern: Rotating More ❯

SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading consultancy’s Security Operations Centre … SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on emerging threats and … incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc.) would be a plus. More ❯

SIEM Content Engineer – National Security & Defence Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer working for a leading consultancy’s Security Operations Centre … SOC) team. The role will be focused on Country Critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyse SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on emerging threats and … incorporate into detection logic Support security standards and best practices Requirements: 3+ years with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc.) would be a plus. More ❯

in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client More ❯

in a Security Operations Centre (SOC) environment Experience working as a SOC Level 2 Previous people management or line management experience Strong familiarity with SIEM platforms including Microsoft Sentinel and Splunk Knowledge and use of the Mitre Att&ck Framework for detection and threat analysis In-depth understanding of: Client More ❯

Information Technology Hybrid Senior Oracle EBS Supply Chain Analyst/Developer Beaverton, OR, United States Information Technology Hybrid Senior Security Engineer - Threat Detection and SIEM More ❯

Creating incident reports for both technical & non-technical audiences • Staying ahead of evolving attack techniques & threat intel We need: • Hands-on SOC experience • Strong SIEM knowledge – Sentinel, Splunk, etc. • Solid grasp of network protocols and security architecture • DV clearance eligibility (UK residency for 10+ years) Why this role? You’ll More ❯

Creating incident reports for both technical & non-technical audiences • Staying ahead of evolving attack techniques & threat intel We need: • Hands-on SOC experience • Strong SIEM knowledge – Sentinel, Splunk, etc. • Solid grasp of network protocols and security architecture • DV clearance eligibility (UK residency for 10+ years) Why this role? You’ll More ❯

security solutions to prevent cyber threats. Incident Response: Formulating and documenting a solid process utilising a 3rd party support partner Security Monitoring & Logging: Develop SIEM solutions, logging strategies, and real-time threat intelligence. Monitor, audit, and improve infrastructure security posture using automated tooling. Policy & Procedures: Define and enforce security policies … automation. Knowledge of DevOps pipelines (CI/CD) and security hardening. Deep understanding of PCI DSS compliance, security frameworks, and audit processes. Familiarity with SIEM solutions, security orchestration platforms, and log management. Strong experience with incident response planning, threat detection, and mitigation. Ability to define security policies, procedures, and structured More ❯

prioritize workload, and manage competing demands. * Experience in analyzing IT logs and event sources is preferred. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking and threat resolution. * Familiarity with data storage systems … prioritize workload, and manage competing demands. * Experience in analyzing IT logs and event sources is preferred. * Monitor and administer Security Information and Event Management (SIEM). * Malware analysis and forensics research. * Understanding/differentiation of intrusion attempts and false positives. * Investigation tracking and threat resolution. * Familiarity with data storage systems More ❯

Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security … tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Responsibilities: Build security automations, logging, and SIEM detections to improve the CDO's efficiency, scalability, and incident response capabilities. Design, implement, and maintain automated workflows and playbooks to streamline CDO operations, including incident response, threat hunting, cyber … repetitive tasks and automate them to improve operational efficiency. Collaborate with Threat Intelligence, Incident Response, and Attack Surface Management to build and tune robust SIEM detections for both proactive and reactive response actions. Continuously evaluate automation solutions for performance, reliability, and scalability, making improvements, as necessary. Collaborate with third-party More ❯

SIEM Content Engineer - National Security & Defence Location: Hybrid role - Hemel Hempstead (1 day/week on-site) Clearance: Must hold or be eligible for DV Overview I have a great opportunity for a skilled SIEM professional to work as a SIEM Content Engineer within a leading consultancy's Security Operations … Centre (SOC) team. The role will focus on country-critical technology in the defence and national security space. Key Responsibilities Develop and maintain SIEM content (rules, dashboards, reports) Analyze SIEM data to detect and respond to threats Collaborate with SOC Analysts, Architects, and Engineers Stay current on emerging threats and … incorporate into detection logic Support security standards and best practices Requirements 3+ years experience with SIEM tools (Splunk, Sentinel, QRadar) Strong understanding of security protocols and frameworks (NIST, ISO, PCI DSS) Scripting experience (Python, PowerShell, regex) Excellent problem-solving and communication skills Security certifications (CISSP, CISM, etc.) are a plus More ❯

Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Networking: Routing Protocols (OSPF) Multicast QoS Layer 2 Protocols (RSTP, VLANs, Port Channels, Trunking, Storm Control, BPDU More ❯

Management and System Centre Configuration Manager. Desirable skills: Enterprise Management tooling and agent deployment. Server Agents deployment and configuration (e.g., Backup, AV, tenable). SIEM agent deployment (i.e., Splunk). Build automation software - Ansible and PowerShell skills. More ❯

like Firewall Management, IDS/IPS, Email protection amongst others. In this role you will: Focus on the analysis of Security Incident Event Management (SIEM) data, which includes: Provide Deloitte firms with cybersecurity data. Assist Deloitte Global and Deloitte firms with data extraction for ISO and PCI audit requirements. Support … practices and metric reporting fundamentals. Experienced in manipulation of data sources and presentation in PowerBI. Desirable skills, qualifications, and experience: Qualified or experienced in SIEM solutions (ideally SPLUNK.) Microsoft related qualifications (Azure, Microsoft Windows, Microsoft SQL.) Qualified to ICS2 CC, CISM, CISSP or relevant Cybersecurity related qualification. Working knowledge of More ❯

Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Networking: Routing Protocols (OSPF) Multicast QoS Layer 2 Protocols (RSTP, VLANs, Port Channels, Trunking, Storm Control, BPDU More ❯

Hyper-V, vSphere, and VMware. Experience with Dell SANs (including iSCSI, Raid) and Dell Servers Experience using Software such as: Nessus, Ad Audit Plus, Siem, Wireshark, SQL Server, and Jira Service Desk Management Networking: Routing Protocols (OSPF) Multicast QoS Layer 2 Protocols (RSTP, VLANs, Port Channels, Trunking, Storm Control, BPDU More ❯

dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security best practices and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hampstead … What you'll be doing: Create, implement, and maintain security content (such as rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyze SIEM data to identify and respond to potential security threats. Collaborate with others, such as the SOC Analysts, Architects, Project Managers & Engineers, to improve the … accuracy and efficiency of the SIEM content. Stay up-to-date on the latest security threats, vulnerabilities, and attack techniques and incorporate that knowledge into the SIEM content. Work with the security team to establish and maintain security standards and procedures. What youll bring: Experience working with SIEM systems, such More ❯

dashboards, and reports for our Security Information and Event Management (SIEM) systems. This role requires a strong understanding of security best practices and experience working with SIEM platforms and within an MSSP environments where you may be working across multiple operational customers and projects. Hybrid Variable: Working in Hemel Hampstead … What you'll be doing: Create, implement, and maintain security content (such as rules, dashboards, and reports) for our SIEM system. Continuously monitor and analyze SIEM data to identify and respond to potential security threats. Collaborate with others, such as the SOC Analysts, Architects, Project Managers & Engineers, to improve the … accuracy and efficiency of the SIEM content. Stay up-to-date on the latest security threats, vulnerabilities, and attack techniques and incorporate that knowledge into the SIEM content. Work with the security team to establish and maintain security standards and procedures. What youll bring: Experience working with SIEM systems, such More ❯

Hybrid), Inside IR35 Role Overview: Utilising knowledge of security operations, incident response, and detection engineering, you will be responsible for the delivery of Microsoft SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell, KQL) and … have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. Key Skills and Experience Experience contributing to large-scale, sprint-based, security automation and detection engineering projects in a SOC/Cyber Defense or similar environment Recent hands-on experience with managing … in a technical role in security operations and/or security software development. Solid understanding of security operations, automations standard processes, detection engineering and SIEM management. Experience with cloud security tools and platforms and their integration into SOC operations. Responsibilities: Lead technical migration of log sources into Microsoft Sentinel SIEM. More ❯