251 to 275 of 362 SIEM Jobs in England

closely with infrastructure, cloud, and SOC teams to detect, prevent, and respond to security threats. Key Responsibilities Monitor and respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and … policies, standards, and procedures Assist with threat detection engineering and rule tuning Required Skills & Experience Strong understanding of core security technologies (NGFW, WAF, EDR, SIEM) Experience in a SOC, security engineering, or infrastructure security role Good knowledge of networking and common attack types (e.g. SQL injection, phishing, malware) Experience with ...

detect and respond to threats quickly and efficiently. Install, configure and maintain security monitoring tools Ensure SOC tooling is optimised and operating effectively Support SIEM platforms and threat intelligence tooling Work with teams to assess risk and design security controls Apply updates, patches and follow change processes Stay current with … emerging threats and recommend improvements SOC ENGINEER ESSENTIAL SKILLS Strong understanding of information security fundamentals Experience with SIEM tools such as Sentinel or Splunk Familiarity with security monitoring technologies Analytical mindset with strong problem solving skills Ability to manage multiple priorities and meet deadlines Strong communication and collaboration skills ...

and high-fidelity threat detection across enterprise environments. This role goes beyond reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats … hunting, cyber threat detection, SOC, blue team, or cyber defence environments, with ideally around five years hands on experience. Strong hands-on experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

investigate incidents and deliver containment, remediation, and root cause analysis; produce high-quality intel-informed incident reports. Create and tune detections (e.g., SIEM/SOAR, EDR) using intelligence signals (TTPs, behaviors, YARA/Sigma where applicable). Produce and present consumable intelligence outputs (e.g., flash alerts, threat overviews, executive briefs … system, application, and cloud/SaaS logs to investigate security and operational issues; comfort enriching with IOCs and behaviours. Hands-on experience with a SIEM (Splunk preferred) for investigations, alert creation, reporting, and threat hunting. Ability to produce clear, actionable intel and incident reports, including executive-ready summaries and visuals. ...

events Drive proactive threat hunting campaigns to identify emerging threats, vulnerabilities, and anomalous behaviour Develop and improve detection logic, alerting, and monitoring content within SIEM platforms including Elastic Stack Analyse threat intelligence, indicators of compromise (IOCs), and attacker TTPs to strengthen detection capability Produce detailed post-incident reports with clear … leadership, curiosity, and a proactive mindset. You should have experience in areas such as: Security Operations Centre (SOC) environments Threat hunting and incident response SIEM technologies, ideally Elastic Stack Threat intelligence and attacker methodologies Windows and Linux operating systems Networking fundamentals including protocols, IP addressing, and traffic analysis Understanding ...

will play a central role in our cyber defence operations, working daily with platforms including Microsoft Defender for O365, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. The role involves monitoring security events, investigating suspicious activity, responding to incidents, and continuously strengthening our security posture. You’ll join a supportive … your career within cyber security. Key Responsibilities Security Monitoring & Incident Response Monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos Antivirus. Investigate cyber security incidents including malware infections, phishing attacks, identity compromise, and unauthorised access attempts. Conduct incident triage, root cause ...

perks! Governance and Cyber Security Coordinator - Key Skills: 1-3 years of experience in IT governance, cybersecurity, or compliance roles Familiarity with GRC and SIEM tools Familiarity with ISO 27001 and SOX frameworks Expertise in Excel and Word Governance and Cyber Security Coordinator Due to the volume of applications received ...

understanding of Information Security solutions e.g. email/web gateways, Privileged Account Management (PAM), Identity Governance and Administration (IGA), Security Information and Event Management (SIEM), Endpoint protection etc. Knowledge/experience working with firewalls is highly advantageous Experience of Cloud security solutions and standards is highly advantageous Competence, knowledge and ...

botnets and web protocol attacks Experience with load balancing, proxies and reverse proxies Knowledge of BGP, ACLs and Zero Trust Architecture Exposure to SIEM data, threat intelligence and traffic reporting Experience supporting cloud infrastructure environments Ability to troubleshoot complex networking and security issues across edge and origin infrastructure This role ...

require a Security Operations Engineer to join the firm in London on a 9 month fixed term contract basis. Key Responsibilities: Monitor alerts from SIEM, EDR and other security monitoring tools click apply for full job details ...

and Storage on Edge - Content Delivery Network and Edge Computing - Border Gateway Protocol (BGP) and ACL's - Zero Trust Architecture - Load Balancing - Threat Intelligence, SIEM Data and Traffic Reporting - Proxies and Reverse Proxies to manage Ingress/Egress - Cloud infrastructure, particularly ...

security policy deployment FortiAnalyzer Centralised logging and reporting strategy SOC integration and event correlation Incident and event handling workflows Compliance reporting and audit outputs SIEM interoperability and operational analytics Secure SD-WAN SLA rule creation and traffic steering Link health checks and performance optimisation ADVPN architecture and dynamic overlay networking ...

NIST, ISO/IEC 27001, and CIS Evaluate, select, and integrate security technologies including: Identity and Access Management (IAM) Security Information and Event Management (SIEM) Endpoint Detection and Response (EDR) Data Loss Prevention (DLP) Web Application Firewalls (WAF) Encryption and key management solutions Collaborate with engineering, DevOps, and IT teams ...

planned/unplanned failover, failback, RPO/RTO, subset failover Security: RBAC, AD/Entra ID integration, encryption at rest, network security policies, CyberArk, SIEM (Sentinel/Defender) Ops tooling: monitoring and alerting in Prism/x play, Cohesity backups, alert forwarding into tools like OpsRamp Migration: Nutanix Move from ...

recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including ...

20+ across multiple geographies. Knowledge of ITIL, COBIT, or similar frameworks. Proven delivery of ISO27001 programmes. Strong technical experience in: Firewalls, Antivirus, BitLocker, SIEM MFA Zero Trust architectures At Oxford Instruments, we are proud of the environment that we have created. We hope that by joining us, you will discover ...

leading banking organisation based in the City of London is seeking an experienced Cyber Project Manager to lead strategic cybersecurity transformation initiatives focused on SIEM modernisation, click apply for full job details ...

security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across … CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands-on experience with SIEM platforms, EDR solutions (ideally CrowdStrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols ...

while maintaining compliance with regulatory and data protection standards. As our Security Operations Engineer, you will typically: Operate and optimise core security operations tooling (SIEM, DLP, IAM, endpoint protection) to safeguard systems and data Develop, implement, and monitor KPIs and dashboards to measure detection effectiveness, incident response performance, data protection … Microsoft Sentinel, Microsoft Purview, Defender suite, and Entra ID Security Operations (SecOps) expertise covering monitoring, triage, investigation, and incident response Microsoft Sentinel for advanced SIEM, SOAR, and threat detection use cases Identity and Access Management (IAM) including privileged access management and Zero Trust principles Endpoint, email, and cloud threat protection ...

closely with infrastructure, cloud, and SOC teams to detect, prevent, and respond to security threats. Key Responsibilities Monitor and respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and … policies, standards, and procedures Assist with threat detection engineering and rule tuning Required Skills & Experience Strong understanding of core security technologies (NGFW, WAF, EDR, SIEM) Experience in a SOC, security engineering, or infrastructure security role Good knowledge of networking and common attack types (e.g. SQL injection, phishing, malware) Experience with ...

will apply hands-on engineering expertise to design, build, and optimise automation workflows that improve the scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities … Sales Support – Assist with demos, scoping, and proof-of-value activities where required. Core Duties Automation Design & Development Build and maintain workflows across SIEM, EDR, and SOAR platforms Develop reusable scripts, templates, and components Ensure solutions support secure, multi-tenant environments Integration & Response Automation Orchestrate containment, enrichment, and remediation actions ...

and tabletop exercises Manage Linux security hardening and support Windows security/MDM controls Oversee PKI infrastructure, digital certificates, and certificate lifecycle management Operate SIEM, MDR, and vulnerability management platforms, including liaison with external SOC providers Lead incident response activities aligned to DORA reporting timelines Assess and mitigate emerging cyber … and packet analysis Experience with PKI, CA processes, and security certificates Python scripting for automation and threat analysis Strong AWS security knowledge Experience with SIEM, MDR, vulnerability management, and incident response Knowledge of ISO 27001, DORA, FCA, and NIS2 frameworks Desirable Experience within trading, exchange, or financial services environments This ...

actively recruiting a Security Solution Architect in Reading, UK. The role includes understanding packet core security and managing security products like firewalls and SIEM systems. Ideal candidates will have a bachelor’s degree and significant experience in telecom security and 5G core networks. You will map customer requirements, provide security ...

resilience, DLP measures and regulatory compliance. Role Principal Duties: Proactively monitor network and system activity to detect potential security threats, using tools such as SIEM and endpoint protection platforms Assist in the investigation and resolution of low-level security incidents, escalating more complex issues to senior staff Maintain detailed logs … handled in accordance with incident response procedures Security Tools & Infrastructure: Support the deployment, configuration, and maintenance of core security tools, including antivirus software, firewalls, SIEM systems, Microsoft security services and endpoint protection Ensure DLP policies are effectively integrated into security infrastructure, including email filtering and endpoint protection systems, to prevent ...