14 of 14 SIEM Jobs in Lancashire

creation, and threat modelling. The Senior SOC Engineer will play a key role in building and optimising detection and response strategies, ensuring robust protection against evolving threats. Key Responsibilities SIEM Engineering & Management Deploy, configure, and maintain the QRadar SIEM platform. Onboard and normalise log sources across on-premises and cloud environments. Develop and optimise analytical rules for threat detection, anomaly … Modelling & Use Case Development Lead threat modelling exercises using frameworks such as MITRE ATT&CK, STRIDE, and Cyber Kill Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams … to clients. Participate in continual service improvement initiatives, recommending changes to address recurring incidents. Skills & Qualifications Eligible for, or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of More ❯

creation, and threat modelling. The Senior SOC Engineer will play a key role in building and optimising detection and response strategies, ensuring robust protection against evolving threats. Key Responsibilities SIEM Engineering & Management Deploy, configure, and maintain the QRadar SIEM platform. Onboard and normalise log sources across on-premises and cloud environments. Develop and optimise analytical rules for threat detection, anomaly … Modelling & Use Case Development Lead threat modelling exercises using frameworks such as MITRE ATT&CK, STRIDE, and Cyber Kill Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams … to clients. Participate in continual service improvement initiatives, recommending changes to address recurring incidents. Skills & Qualifications Eligible for, or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of More ❯

creation, and threat modelling. The Senior SOC Engineer will play a key role in building and optimising detection and response strategies, ensuring robust protection against evolving threats. Key Responsibilities SIEM Engineering & Management Deploy, configure, and maintain the QRadar SIEM platform. Onboard and normalise log sources across on-premises and cloud environments. Develop and optimise analytical rules for threat detection, anomaly … Modelling & Use Case Development Lead threat modelling exercises using frameworks such as MITRE ATT&CK, STRIDE, and Cyber Kill Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting & Collaboration Produce reports and dashboards to communicate security posture and incident trends. Partner with IT, DevOps, and compliance teams … to clients. Participate in continual service improvement initiatives, recommending changes to address recurring incidents. Skills & Qualifications Eligible for, or already holding, SC Clearance. Proven expertise in IBM QRadar and SIEM engineering. Strong knowledge of log formats, parsing, and normalisation. Proficiency in SIEM query languages such as KQL, SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of More ❯

information to enhance the detection of suspicious activity within the business. Skills & Qualifications : Understanding of enterprise networking and computing Knowledge of Python 3 programming language Security experience SPLUNK knowledge SIEM knowledge Defence experience desirable If you would like to be considered for this role please don't hesitate to click apply or call Sam Pierre-Louis on for more information. More ❯

information to enhance the detection of suspicious activity within the business. Skills & Qualifications : Understanding of enterprise networking and computing Knowledge of Python 3 programming language Security experience SPLUNK knowledge SIEM knowledge Defence experience desirable If you would like to be considered for this role please don't hesitate to click apply or call Sam Pierre-Louis on for more information. More ❯

information to enhance the detection of suspicious activity within the business. Skills & Qualifications : Understanding of enterprise networking and computing Knowledge of Python 3 programming language Security experience SPLUNK knowledge SIEM knowledge Defence experience desirable If you would like to be considered for this role please don't hesitate to click apply or call Sam Pierre-Louis on for more information. More ❯

information to enhance the detection of suspicious activity within the business. Skills & Qualifications : Understanding of enterprise networking and computing Knowledge of Python 3 programming language Security experience SPLUNK knowledge SIEM knowledge Defence experience desirable If you would like to be considered for this role please don't hesitate to click apply or call Sam Pierre-Louis on More ❯

Cisco, Palo Alto, ATP DR/Backup: Veeam, Zerto, DataDomain, Commvault, Avamar, Rubrik, Cohesity Storage Technology: File, Block, Object, including vSAN Cloud: AWS, Azure, Google Automation: Terraform, Ansible, Aria SIEM: Elastic, Aria Operations for Logs ServiceNow (Desirable) If you are the Infrastructure Engineer that my client is after, then please apply via the link or contact me via LinkedIn for More ❯

and vulnerability management experience Leadership of technical teams within high-security environments Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) Familiarity with tools such as Cobalt Strike, SIEM, and vulnerability scanning platforms Active DV clearance (or willingness to achieve it) The package Competitive salary + benefits Industry-leading training and certifications Opportunity to work on high-impact national More ❯

and vulnerability management experience Leadership of technical teams within high-security environments Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) Familiarity with tools such as Cobalt Strike, SIEM, and vulnerability scanning platforms Active DV clearance (or willingness to achieve it) The package Competitive salary + benefits Industry-leading training and certifications Opportunity to work on high-impact national More ❯

and vulnerability management experience Leadership of technical teams within high-security environments Strong knowledge of threat actor tactics, techniques, and procedures (TTPs) Familiarity with tools such as Cobalt Strike, SIEM, and vulnerability scanning platforms Active DV clearance (or willingness to achieve it) The package Competitive salary + benefits Industry-leading training and certifications Opportunity to work on high-impact national More ❯

oriented Have strong energy and enjoys working to targets Have excellent communication skills Have a ‘Can Do’ attitude Have experience solutioning within Cyber security products Ideally have experience in SIEM, SOAR, or Managed Security Services Have a full UK driving license Working hours are Monday to Friday 9am to 5.30pm. Benefits include company Pension scheme (5% contribution from the Company More ❯

suspicious activities, reporting security breaches, and educating the rest of the business on security measures. Responsibilities Own and remediate Security Incidents and Security Alerts as reported Ensure that the SIEM tool is logging all available assets and tune alerts to reduce false positives and to highlight new or additional IOC's where available Support with escalations from our Endpoint Detection … Coding. Qualifications Experience as a Security/Network Administrator or equivalent knowledge Previous Security Operations Centre (SOC) experience would be a plus Experience with Security Information and Event Management (SIEM) tools What's in it for you? We offer a variety of competitive benefits, some of which vary depending on the role you're recruited to. Some of what you More ❯

This is a hands-on role focused on protecting the organisation's network and systems from cyber-attacks. You'll be responsible for managing and remediating security incidents, tuning SIEM alerts, supporting endpoint detection and response tooling, and contributing to post-incident investigations.You'll also play a key role in vulnerability management, security reporting, and supporting the deployment and maintenance … the following: Experience in Infrastructure support or working within a SOC/Security team Strong understanding of Microsoft O365/Azure Security, endpoint and email security tooling Familiarity with SIEM tools and IT Service Management platforms Knowledge of current and emerging cyber threats and security technologies Experience with vulnerability identification and remediation The Benefits: Salary up to £50,000 + More ❯