76 to 100 of 116 SIEM Jobs in London

incidents ensuring rapid and effective action. Develop comprehensive incident response plans to maintain organisational resilience against threats. Oversee operational security processes with tools like SIEM, EDR, and Vulnerability Management, continuously enhancing capabilities. Network and System Security Manage advanced security tools such as firewalls and IDS/IPS to protect network … qualifications. Good underpinning knowledge of the Microsoft technology stack, cloud, on-premises and End user Compute. Understanding and experience of web filtering, email security, SIEM, EDR/XDR. Experience of managing investigations in SOC (L2 or above ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

while remaining at the forefront of the evolving threat landscape. Key Responsibilities Monitor and analyse security events across networks, endpoints, and cloud environments using SIEM, EDR, and related security tools, in line with documented SLAs. Investigate, respond to, and resolve security incidents and alerts, ensuring timely detection, containment, and remediation. … Security or Cybersecurity role. Strong understanding of cyber defence practices and modern attack techniques. Hands-on experience with security technologies such as EDR, XDR, SIEM, SOAR, IDS, and IPS. Experience in vulnerability analysis, security alert analysis, incident response, and email threat analysis. Ability to read and understand scripting and query ...

investigate incidents and deliver containment, remediation, and root cause analysis; produce high-quality intel-informed incident reports. Create and tune detections (e.g., SIEM/SOAR, EDR) using intelligence signals (TTPs, behaviors, YARA/Sigma where applicable). Produce and present consumable intelligence outputs (e.g., flash alerts, threat overviews, executive briefs … system, application, and cloud/SaaS logs to investigate security and operational issues; comfort enriching with IOCs and behaviours. Hands-on experience with a SIEM (Splunk preferred) for investigations, alert creation, reporting, and threat hunting. Ability to produce clear, actionable intel and incident reports, including executive-ready summaries and visuals. ...

will play a central role in our cyber defence operations, working daily with platforms including Microsoft Defender for O365, Entra ID, Intune, Rapid7 SIEM, and Sophos Antivirus. The role involves monitoring security events, investigating suspicious activity, responding to incidents, and continuously strengthening our security posture. You’ll join a supportive … your career within cyber security. Key Responsibilities Security Monitoring & Incident Response Monitor alerts and telemetry across endpoints, identities, email, and cloud services using Rapid7 SIEM, Microsoft Defender, and Sophos Antivirus. Investigate cyber security incidents including malware infections, phishing attacks, identity compromise, and unauthorised access attempts. Conduct incident triage, root cause ...

require a Security Operations Engineer to join the firm in London on a 9 month fixed term contract basis. Key Responsibilities: Monitor alerts from SIEM, EDR and other security monitoring tools click apply for full job details ...

planned/unplanned failover, failback, RPO/RTO, subset failover Security: RBAC, AD/Entra ID integration, encryption at rest, network security policies, CyberArk, SIEM (Sentinel/Defender) Ops tooling: monitoring and alerting in Prism/x play, Cohesity backups, alert forwarding into tools like OpsRamp Migration: Nutanix Move from ...

leading banking organisation based in the City of London is seeking an experienced Cyber Project Manager to lead strategic cybersecurity transformation initiatives focused on SIEM modernisation, click apply for full job details ...

/failback Understanding of RPO/RTO and subset failover Security RBAC, AD/Entra ID integration Encryption at rest, network security policies CyberArk, SIEM tools (Sentinel/Defender) Operations & Monitoring Prism monitoring, x-play automation Cohesity backups and restore validation Alerting integration with OpsRamp or similar tooling Migration Nutanix ...

clear commercial reporting to stakeholders Main Skills Needed: Proven experience in strategic account management and Cybersecurity technologies, services and solutions (Inclusive of SOC/SIEM, EDR, MDR, Security Assessments, GRC etc.) Consultative in approach, able to identify growth opportunities within existing accounts to develop relationships and position new solutions that ...

Commercial mindset with the ability to bridge sales, tech, and delivery Bonus: experience in regulated sectors (financial services, critical infrastructure, aviation) or familiarity with SIEM, MDR, and cloud-native SOC platforms Why Apply?: Visible impact: Direct line to new logo wins and deal size, not a support function Recurring revenue ...

Commercial mindset with the ability to bridge sales, tech, and delivery Bonus: experience in regulated sectors (financial services, critical infrastructure, aviation) or familiarity with SIEM, MDR, and cloud-native SOC platforms Why Apply?: Visible impact: Direct line to new logo wins and deal size, not a support function Recurring revenue ...

and improve operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage tools such as Microsoft Defender, Nessus, and SIEM/SOAR platforms Develop secure cloud templates and baseline configurations Partner with engineering teams to embed secure coding and DevSecOps practices Stay up to date … prem environments Deep understanding of Azure security, DevOps, and automation Hands-on experience with EDR/DLP tools (e.g. Microsoft Defender) Experience with SIEM/SOAR platforms Knowledge of frameworks such as ISO 27001, NIST, and CIS Strong troubleshooting and problem-solving skills Ability to manage multiple priorities ...

future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability … Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier ...

Defining the system specifications to support optimal performance. Integrating workflows with third-party systems and security tools, such as Security Information and Event Management (SIEM) solutions, multi-factor authentication solutions, and cloud platforms like Amazon Web Services (AWS) and Azure. Develop technical documentation for IAM implementations including process documentation ...

Defining the system specifications to support optimal performance. Integrating workflows with third-party systems and security tools, such as Security Information and Event Management (SIEM) solutions, multi-factor authentication solutions, and cloud platforms like Amazon Web Services (AWS) and Azure. Develop technical documentation for IAM implementations including process documentation ...

scope to evolve the position based on their strengths and expertise. The successful candidate will play a key role in strengthening security posture through SIEM ownership, incident response, and system hardening, directly contributing to Europe's technological sovereignty. The Role The IT Security Specialist will: Design, build, and operate … centralised SIEM platform to aggregate and analyse security logs across infrastructure, networks, and applications Own security log analysis, vulnerability management, and incident investigation, including defining baselines and developing alerting rules for critical events Lead incident response efforts, using log correlation and analysis to investigate and resolve security issues quickly and ...

controls across programme environments. Ensuring systems remain compliant with defined security baselines and policies. Developing and maintaining system security baseline documentation. Supporting integration with SIEM and protective monitoring platforms. Assessing vulnerabilities and implementing risk mitigation strategies. Supporting the implementation of secure designs and technical architectures. Collaborating with engineers and architects … Endpoint protection technologies including malware protection, application control and DLP. Microsoft and Linux operating systems in secure environments. Virtualisation platforms and network infrastructure components. SIEM platforms and protective monitoring solutions. Authentication and identity technologies including SAML, LDAP and PKI. Network security technologies including firewalls, proxies and boundary protection. Experience supporting ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...

and benefits. Why This Role is Exciting High autonomy : Lead projects from idea to deployment Innovation-driven : Develop cutting-edge detections beyond standard SIEM rules Collaborative : Work closely with internal teams and an outsourced SOC partner Mission-focused : Protect critical healthcare data that supports precision medicine Key Responsibilities Design and … Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer, Detection & Response Engineer, SIEM Engineer, Security Detection Engineer,T hreat Hunting Engineer, Security Automation Engineer, SOC Engineer, Incident Response Engineer, Cloud Security Engineer, Network Security Engineer, Cybersecurity Analyst (Threat ...

enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation … evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 3+ years of commercial experience in SOC content engineering, detection engineering, or SIEM administration Strong hands-on experience with SIEM platforms and query languages (e.g. SPL, KQL) Solid understanding of detection engineering principles, data modelling, and regex Proven ...

enhancing detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation … evolve a repository of use cases, KPIs, and SOC performance metrics Requirements 6+ years of commercial experience in SOC content engineering, detection engineering, or SIEM administration Strong hands-on experience with SIEM platforms and query languages (e.g. SPL, KQL) Solid understanding of detection engineering principles, data modelling, and regex Proven ...

posts early. Don't miss out! Person Specification Knowledge Essential Working knowledge of concept, procedures and processes of Security Information and Event Management (SIEM); ability to utilise related applications to protect organisational networks from cyber risks. Proven knowledge of tools, techniques and processes of intrusion detection and prevention; ability ...

Cyber Security Analyst - GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS Our leading global law firm client are currently looking to take on a new Cyber Security Analyst (GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS) to join their team on a permanent basis. The firm … extremely modern law firm which offer a fully remote working experience This Cyber Security Analyst (GIAC, ISACA, ISC2, XDR, EDR, SIEM, SOAR, IDS/IPS) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify, investigate and resolve any security events ...

implement improvements aligned to security best practice and compliance requirements Secure and support cloud platforms including: Microsoft Azure Amazon Web Services Configure and manage SIEM and security monitoring solutions Provide technical guidance and cyber security advice directly to clients Work closely with internal engineering teams and mentor junior technical staff … experience in a Solutions Engineer, Infrastructure Engineer, Service Desk Engineer, or Cyber Security role Strong understanding of: Network security Firewalls Endpoint Detection & Response (EDR) SIEM technologies Hands-on experience with endpoint security solutions such as: Microsoft Defender Sophos Bitdefender Experience securing cloud-based environments within Azure and/ ...