4 of 4 SIEM Jobs in Farnborough

optimisation of advanced threat detection systems within a highly secure environment. You will work within a Security Operations Centre (SOC), designing and maintaining detection logic across SIEM (Security Information and Event Management) and EDR (Endpoint Detection and Response) platforms. Your work will help identify and contain malicious activity, reduce false positives, and improve overall detection coverage across networks, endpoints, cloud … to the development of detection rules, threat hunting activities, and automation workflows to support incident response and continuous improvement. Key responsibilities include: Designing and tuning detection rules and use cases in SIEM and EDR platforms Monitoring and investigating security alerts to identify potential threats Conducting proactive threat hunting using MITRE ATT&CK and threat intelligence sources Collaborating with incident response … i.e. Level 4 or higher) qualification in Cyber Security Or Computer Science, or Networks OR certifications such as CompTIA Security+, ISACA OR equivalent experience Strong hands-on experience with SIEM platforms (Elastic Security mandatory; Sentinel or Splunk desirable) and EDR tools (e.g. Elastic XDR, Microsoft Defender, CrowdStrike, SentinelOne) Proficiency in detection rule development using query languages (e.g. ESQL, KQL, Lucene More ❯

SOAR) etc. to analyse events that occur within the environments. Respond to and correlate alerts from various detective and preventative Cyber Security tools such as Security Information Event Monitoring (SIEM), End Point Protection (EPP), End Point Detection and Response (EDR), XDR (Extended DR), Web Application Firewall (WAF), and Firewalls. Proactively detect suspicious activity, vulnerabilities, and security misconfigurations before they can … from me? Experience of Sentinel, Microsoft XDR and Microsoft Defender variants, and Elastic Security, or displays aptitude to learn how to work with a SIEM. Experience and knowledge of SIEM tools, Cyber Security Incident Response, Vulnerability Management and Cyber Threat Intelligence. Experience of investigating Cyber Security incidents and supporting root cause analysis or can demonstrate transferable skills and acumen to More ❯

act as a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … DXC security models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft More ❯

act as a senior analyst within the team while also providing direction, coordination, and mentorship to colleagues. You must have experience across the core Cyber Security domains, including TVM, SIEM, EDR, Incident Response, DLP, EASM, Cloud Security, Application Security, WAF, and User Access Management, along with a strong understanding of industry frameworks such as NIST and CIS . This role … DXC security models where feasible, or by designing and deploying new approaches within Luxoft. Support and contribute to the wider Cyber Security services delivered by the team, including TVM, SIEM, EDR, Incident Handling, DLP, EASM, Cloud Security, and WAF. Provide cover and support for team members during absence or workload peaks. Build strong working relationships across both DXC and Luxoft More ❯