1 to 25 of 30 SIEM Jobs in the Midlands

and hardening procedures for servers, databases, and network devices Working with existing and new security solutions such as End-Point Protection, Firewalls, Encryption, Proxy, SIEM Developing, improving & Enforcing security policies and procedures Responsible for reviewing security violation reports and investigates possible security exceptions Updating, maintaining and documenting security controls Participating More ❯

with 2+ years in a senior cybersecurity role. Hands-on experience with security tools such as firewalls, endpoint protection, VPNs, IDS/IPS, and SIEM platforms. Deep knowledge of network security, encryption, authentication, and secure configurations including CUI/CDI. Advanced understanding of IT infrastructure, including servers, storage, and virtualization. More ❯

common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs). Exhibit skills using common Incident Response and Security Monitoring?applications such as SIEM (Splunk), EDR (FireEye HX, CrowdStrike Falcon, McAfee mVision EDR.), WAF, IPS Additional Information Benefits package includes: Flexible work environment, working hybrid or in the office More ❯

Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft More ❯

Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft More ❯

Azure cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft More ❯

Experience of working through matrix management of multi-disciplinary teams in complex infrastructure environments A strong technical background across Networks, Security, Firewall, Vulnerability Management, SIEM and EDR technologies Experience with cyber security concepts, such as Threat Modelling, Incident Response, Penetration Testing (external/internal) Advanced knowledge of cloud products and More ❯

RADIUS, FreeRADIUS, or nuRADIUS Database Management: Basic knowledge of MS SQL Security Appliances: Experience with filtering solutions, RSA authentication, and Data Leakage Prevention (DLP) SIEM solution exposure What Will Make You Shine at Mobius Strong multitasking with capability to manage and prioritise workloads effectively and efficiently. Excellent communication skills, especially More ❯

Experience working in operational roles with strict SLAs. Skills we'd love to see/Amazing Extras: Experience in Security Operations environments. Experience with SIEM solutions, preferably Azure Sentinel. Experience developing and configuring SOAR tools such as XSOAR or Azure Logic Apps with Azure Functions. Knowledge of Query Languages, preferably More ❯

across areas like threat detection, vulnerability management, identity and access control, and incident response. Familiarity with a range of security tools and platformssuch as SIEM, EDR, firewalls, and cloud security solutions. A clear understanding of security frameworks and best practices (e.g., NIST, ISO 27001, PCI). The ability to translate More ❯

Role: SIEM Security Engineer - Cyber Defence Rate: Outside IR35 Location: Remote with occasional travel to Gloucester Duration: 3-6 initially SC clearance required Position Summary: We are seeking a Sentinel SIEM & Cloud Security Engineer to join our team and play a critical role in designing, managing, and optimizing Microsoft Sentinel … and Defender for Cloud. This role will focus on SIEM architecture, cloud security posture management, security analytics, and automation to enhance security visibility and resilience. You will have the opportunity to work with cutting-edge security tools and continuously evolve your expertise in cloud security. Key Responsibilities * SIEM Architecture & Management … to enhance threat detection and response capabilities. * Cloud Threat Protection: Monitor, analyse, and strengthen security postures across cloud platforms, utilising Defender for Cloud and SIEM insights. * Compliance & Governance: Ensure alignment with industry best practices, regulatory frameworks, and internal security policies for cloud security. * Threat Intelligence & Enrichment: Integrate threat intelligence feeds More ❯

implementation. Understanding of network security, firewalls, IAM, cloud platforms (AWS, Azure), and endpoint protection. Familiarity with standards including NIST CSF & ISO 27001. Knowledge of SIEM, intrusion detection, endpoint security, and secure coding. This role is onsite 2 days per week No sponsorship is available This role is looking to move More ❯

and analysing security logs, events, and alerts to detect and respond to potential security incidents in a timely manner.* Continuously developing and managing the SIEM solution. Collaborating with cross-functional teams to integrate security controls and best practices into the development and deployment of new systems, applications, and technologies.* Keeping More ❯

SABSA. Experience implementing Cloud Security Architecture, especially in AWS (Azure is a plus). Designing and implementing Database security. Familiarity with security tools like SIEM, EDR, CASB, Firewalls, VPN, Secrets Management, Pen Testing tools. Implementing Enterprise Identity and Access Management Solutions. Awareness of software development practices, tools, and techniques. Experience More ❯

Familiarity with cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc More ❯

Familiarity with cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc JBRP1_UKTJ More ❯

Experience of creating security strategies to improve the security maturity of an organisation Proven experience and expertise in one or more of the following: SIEM systems preferably Microsoft Sentinel, network and systems security, intrusion detection/prevention, and malware analysis. Professional Qualifications: At least one professional qualification such as CISSP More ❯

technologies, of which the cyber team are responsible for implementing across the globe. The type of things you will be helping out with include: SIEM & Incident Response Working with the MSSP SOC IAM Microsoft Security Stack Azure 3rd Party Assurance Project work BAU activites Key Details: Salary: Up to More ❯

Job Title: SIEM Security Engineer Location: On-site - West Midlands Salary: £54,000 - £64,000 (depending on experience) Clearance Required: Must be eligible to undergo Security Clearance (SC) Employment Type: Full-time, Permanent ________________________________________ About the Company Join a globally respected technology company with a long-standing reputation in cybersecurity. With … penetration testing, and other cyber security services , this organisation offers a dynamic and collaborative environment where innovation thrives. ________________________________________ Essential Skills & Experience * Proven experience with SIEM platforms (e.g., Microsoft Sentinel, Splunk, LogRhythm) * Strong knowledge of the Elastic Stack (ElasticSearch, Kibana, etc.) * Proficiency in scripting languages such as Python, Bash, or Perl More ❯

doing as a Cyber Analyst at Nottingham Building Society: Security Monitoring: Monitor and respond to security alerts across networks, systems, and cloud environments using SIEM and EDR tools. Incident Investigation: Investigate security incidents and support the full incident response lifecycle, including documentation and root cause analysis. Vulnerability Assessments: Conduct regular … informed of evolving cyber threats, industry trends, and regulatory changes affecting the financial sector. About you: Security Tools Expertise: Strong understanding of security tools (SIEM, EDR, firewalls, IDS/IPS) and vulnerability management processes. Technical Knowledge: Solid grasp of networking, system administration, and secure configurations. Standards Familiarity: Familiarity with standards More ❯

Customer Facing role. · Already owns, or has the ability to pass a high level of Security Clearance · Knowledge/Experience of SNMP, Packet Inspection, SIEM, NetFlow, NCCM, Event Management · Full Driving License If this looks of interest then please send your CV across now and call for more information. More ❯

and execution of system upgrades, migrations, and integration projects. Logging & Monitoring Integration: Configure and manage RHEL logs for ingestion into a SIEM (Security information and event management); integrate Linux systems with SCOM (with assistance from the existing SCOM Infrastructure Engineer) for health monitoring. Antivirus & Endpoint Security: Ensure AV integration and … the ability to work independently and collaboratively. Desirable Skills: Familiarity with security frameworks such as CIS benchmarks or ISO 27001. Experience with log management and SIEM solutions (ArcSight, Splunk, ELK Stack). Hands-on experience with Linux-based high availability and disaster recovery solutions. Familiarity with virtualization technologies. Experience with More ❯

system upgrades, migrations, and integration projects, ensuring seamless execution. Logging & Monitoring Integration: Configure and manage RHEL logs for ingestion into a SIEM (Security information and event management); integrate Linux systems with SCOM (with assistance from the existing SCOM Infrastructure Engineer) for health monitoring. Antivirus & Endpoint Security: Ensure AV integration and More ❯

identification, prevention, detection, and recovery of cyber incidents. What will you bring? At least 12 months experience in a SOC environment (or equivalent) using SIEM/EDR. Close attention to detail. Strong time-management and organizational skills. Able to build and maintain strong relationships with clients, becoming a trusted advisor. … Strong understanding of foundational IT and networking concepts. Confident writing SIEM queries and performing threat-hunting. Excellent communication skills, both written and oral, to a range of audiences, including senior management. Responsibilities Compiling and presenting high quality monthly reports for our clients, combining data from multiple security platforms and providing … improving report templates & components in-line with feedback from clients. Assisting with training and support for our junior analysts. Proactively suggesting improvements for existing SIEM alarms and developing new use-cases based on threat intelligence and client threat models. Creating and improving SOC dashboards to give real-time visibility for More ❯

at security, as we actively encourage our staff to engage with other areas of the business and local communities. We are seeking a skilled SIEM Engineer with expertise in Elastic SIEM to join our cybersecurity team. The ideal candidate will be responsible for designing, implementing, and maintaining our customers Elastic … SIEM infrastructure to ensure robust security monitoring and incident response capabilities. Embedded with an existing Customer SOC, you will provide Engineering support and expertise for the customers Elastic SIEM implementation, working alongside Capgemini SOC analysts and the customer SOC team. This role is required to be onsite 5 days per … years, and unspent criminal record check (known as Disclosure and Barring Service) Your role Design and Implementation : Install and maintain the architecture for Elastic SIEM, ensuring optimal performance and scalability. Monitoring and Analysis : Create custom dashboards and visualisations using the Elastic Stack for real-time monitoring and analysis of security More ❯