1 to 25 of 66 SIEM Jobs in London

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

also contribute to strategic security projects and ensure secure, scalable and resilient solutions across the business. Key Responsibilities: Deploy and manage enterprise security tools (SIEM, XDR, DLP, Email Security, Endpoint Protection). Build automation using Python, PowerShell, Bash. Implement IaC using Terraform and Ansible. Maintain secure baselines for Windows, Linux ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

Technical Breadth: Demonstrable experience with IP-based networks, WAN technologies, Windows/Linux environments, and virtual server technologies. Modern Solutions: First-hand experience with SIEM solutions, SOAR workflows, and EDR technologies like Microsoft Defender. ...

driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

OWASP Top 10, secure SDLC, code review) Security frameworks and standards (NIST, ISO 27001, CIS Benchmarks, SOC 2) Infrastructure as Code security (Terraform, CloudFormation) SIEM, logging, and monitoring tools (Splunk, Sentinel, ELK) Vulnerability management and penetration testing coordination What’s in it for you At Accenture in addition ...

Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models ...

junior engineers Key experience & skills: Proven experience in an IT solutions, service desk or engineer role Strong knowledge of network security, firewalls, EDR, and SIEM tools Experience securing Microsoft Azure and/or AWS environments Hands-on endpoint security experience (Defender, Sophos, Bitdefender or similar) Understanding of Cyber Essentials/ ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

architecture for ServiceNow SecOps modules including Security Incident Response, Vulnerability Response, Threat Intelligence, and Configuration Compliance. Lead integration of ServiceNow with key cybersecurity tools: SIEM, SOAR, EDR, CMDB, threat intelligence platforms, and OT/ICS systems. Collaborate across cybersecurity, IT, engineering, and energy operations to define secure workflows and automation ...

successful in this role, candidates should bring: 35 years experience in SOC, incident response, or threat analysis roles Strong hands-on experience with SIEM and EDR tools Deep understanding of: Incident response methodologies Malware behaviour and analysis Threat detection and investigation techniques Proven ability to: Investigate and respond to high ...

experience who wants real technical ownership and variety across the full defensive lifecycle. What You’ll Be Doing Lead investigations, triage and containment using SIEM/EDR (Microsoft Sentinel preferred) Harden IAM, PIM/PAM , Windows/Linux, endpoint baselines and identity services Strengthen M365 security : Defender for Endpoint/… security hardening (Windows + Linux) Network security concepts (firewalls, IDS/IPS) Incident Response & Detection Hands-on IR: triage investigation containment recovery Experience with SIEM (Sentinel strongly preferred) Experience with EDR/XDR tools: Defender/CrowdStrike/SentinelOne Log analysis, packet captures, forensic investigation fundamentals Microsoft Security Defender suite ...

management at production scale - Network flow log analysis and intrusion detection engineering - building detection logic for lateral movement, beaconing, anomalous egress, and C2 patterns - SIEM engineering: detection rule authoring (KQL, SPL, or equivalent), log pipeline design, alert correlation, triage workflow - you write the rules, not just read the dashboard - Endpoint ...

with DLP incident handling, remediation and reporting - Experience with the following products would be highly advantageous; Microsoft Defender for Endpoint, Thales, Crowdstrike Falcon and SIEM, CyberArk, Rapid7 and Palo Alto Products - CISSP or CEH certification desirable Lead Cloud Security Engineer (Azure) In accordance with the Employment Agencies and Employment Businesses ...

role are summarised below: · Security monitoring and incident response · Detection engineering - Develop, maintain, and enhance security detection content primarily for the Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat ...

and monitor Active Directory, Azure Entra, and Intune environments. Manage compliance policies, conditional access, and mobile device management. Work with third-party providers supporting SIEM and threat analytics systems. Lead on implementing IT security best practices, standards, and access controls. Support infrastructure and security projects, including system upgrades and migrations. ...

/S3/EFS/Google/Azure Database administration Virtualised environments (VMWare, Proxmox, Nutanix, HyperV) Desktop and user support experience. Familiarity with SIEM/SOC tools ITIL & ISO 27001 ITRS is an Equal Opportunity employer and Inclusion is part of our everyday life. We celebrate diversity and pride ourselves ...

/LLD documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike , Corelight, Microsoft Defender XDR). What's on Offer ...

and digital threats Experience handling cyber incidents end-to-end in line with the NIST framework Hands-on experience with Splunk, CrowdStrike, or equivalent SIEM/endpoint security tools Confidence coordinating and engaging multiple stakeholders during live incident scenarios Strong documentation, reporting, and communication skills Able to work independently, manage ...

building strong relationships based on expertise. Maintain vendor certifications and stay current with cybersecurity trends and innovations. Core Expertise: Advanced cybersecurity services: SSE, SASE, SIEM, MDR/EDR. Endpoint detection and threat management solutions. Security frameworks and compliance standards: ISO27002, CIS, NIST CSF. SOC processes and Microsoft security stack. Experience ...

and infrastructure standpoint. Strong networking background, including understanding of network security principles, firewalls, VPNs, routing, and segmentation. Experience with a range of security tools (SIEM, monitoring, detection, and response platforms). Proven experience delivering and supporting certificate automation. Experience operating in enterprise or regulated environments. Comfortable working across project delivery ...

Strong leadership capability, with experience mentoring or guiding analysts Proven experience acting as an escalation point for high-severity incidents Deep technical expertise in: SIEM and EDR platforms Threat detection and incident response methodologies Malware analysis and attack investigation Ability to: Lead incident response across containment, eradication, and recovery Correlate ...