1 to 25 of 31 SIEM Jobs in the North of England

ISO/IEC 27001, COBIT and NIST; awareness and understanding of compliance and data protection regulations, such as GDPR o Understanding of firewalls, proxies, SIEM, antivirus and IDPS concepts o Background in one or more security technologies and a good awareness of the range of available security solutions ▪ Bachelor’s more »

infrastructure, including Hyper-V and VMWare. Practical experience in Storage Solutions, Backup and Replication Services (DFS, VEEAM, ASR). Experienced with security controls including SIEM, Vulnerability Scanning, Server and Client Security, ZScaler and Microsoft Defender for Cloud. Demonstrable experience of similar position/role or working within established architecture practice. more »

Time Protocol (NTP) system to deliver accurate time to the Cyber Security suite of systems and facilities; Delivery of a Security Information & Event Management (SIEM) system for monitoring Cyber Security information. Network Hardening Project Protective Monitoring Project Qualifications Degree Qualified in appropriate discipline Professional registration (minimum IEng Level) with a more »

incident response, or cybersecurity operations. Exhibit an in-depth comprehension of cyber threats, vulnerabilities, and attack methodologies. Showcase proficiency in utilizing threat intelligence platforms, SIEM solutions, and data analysis tools. Showcase robust analytical and problem-solving abilities, with a knack for distilling complex information into actionable insights. Possess exceptional communication more »

Cyber Defence Analyst - DV Clearance Required! The Cyber Defence Analyst will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal more »

Cyber Defence Engineer - DV Clearance Required! The Cyber Defence Engineer will join a growing security team responsible for designing, delivering and maintaining operational cybersecurity capabilities. Conducting pro-active, risk-based, protective monitoring on priority C4IS/networks to identify internal more »

Time Protocol (NTP) system to deliver accurate time to the Cyber Security suite of systems and facilities; Delivery of a Security Information & Event Management (SIEM) system for monitoring Cyber Security information. Network Hardening Project Protective Monitoring Project Qualifications Essential Must have experience in working with requirements capture and delivery. Familiar more »

our SOC Centre. Requirements: Proven experience as a SOC Analyst, with a focus on Level 3 responsibilities. Proficiency in Sentinel, Defender, Qradar, or similar SIEM tools. Strong analytical skills and attention to detail. Ability to work effectively in a team environment and communicate technical information to non-technical stakeholders. Flexibility more »

on technical IT projects ·Experience with O365/M365 Administration including Intune/Endpoint Manager, PowerShell, Power Apps. Experienced with security controls such as SIEM, Vulnerability Scanning, Server and Client Security, SASE solutions and CloudFront/AWS WAF Good working knowledge of PowerShell and Automation tools Good knowledge of networking more »

the Security & Networks area of Advania. The candidate will be an active player within the Cyber Security Operations Centre (CSOC) using a variety of SIEM and security toolsets to meet the requirements of the business and its customers. This is a hands-on role and requires a broad technical knowledge … a continuous understanding of the threat landscape with in-depth knowledge around threat actors, TTPs and vulnerabilities Qualifications & Experience: Essential: Demonstrable experience working with SIEM technology, preferably within a CSOC/SOC environment Demonstrable technical knowledge, skills and/or experience in intrusion analysis, and network and security investigation using more »

a strong focus on development/implementation of security strategies Knowledge of security principles and best practices Cyber Essentials Experience with firewalls, antivirus software, SIEM Technical background, including networking, Operating Systems, M365, Active Directory What will you get in return? Bonus scheme Flexible working Exclusive staff discounts Online wellbeing centre more »

will you have?Experience responding to incidents across corporate and customer-facing web applications, identifying potential threats and mitigating/escalating as required.Experience with SIEM Platforms (ideally Splunk), including working with logs and creating correlation searches and dashboards is a plus.Knowledge of monitoring cloud environments using cloud native tooling.An understanding more »

of planning, development and implementation of Azure security-related technologies An excellent understanding of infrastructure and application technologies An excellent understanding of security technologies: SIEM, firewalls, intrusion detection/prevention systems, anti-virus software, authentication systems, log management, content filtering, etc. An excellent understanding of security approaches: ISMS, risk analysis more »

Benefits Manchester office, 2 days per week onsite requirement Security Operations/Monitoring/Identifying Threats/Investigation/Prevention/Documentation Responsibilities: Monitor SIEM Systems Identify and investigate security threats Responding to alerts Documentation Collaborating within an information security environment Proactive threat intelligence What We Offer: An opportunity to more »

ll need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and more »

you needHigh degree of (hands-on) technical guidance & vision with broad subject matter expertise in cloud, data and security technologies, specifically AWS, Azure, and SIEM platforms (Splunk ES and Sentinel)Extensive experience and expertise across the Splunk platform, its architecture and distributed components including premium apps (ITSI, Enterprise Security, Phantom more »

SOC Centre. Requirements: Proven experience as a SOC Analyst, with a focus on Level 3 responsibilities. Strong knowledge of Sentinel, Defender, Qradar, or similar SIEM tools. Excellent analytical and problem-solving skills. Ability to work effectively under pressure and prioritize tasks in a fast-paced environment. Flexibility to work on more »

Problem, Change, CMDB and Asset Experience with implementation of catalogue items configuring Security incident response applications Experience with OOB/custom integration build with SIEM tool/TI enrichment tools Experience building email integration for importing suspicious emails as Security incidents. At Cognizant, taking care of employees is a priority more »

compliance requirements such as GDPR, ISO27001, or PCI DSS (Payment Card Industry Data Security Standard) Experience with security tools such as SIEM (Security Information and Event Management), IDS/IPS (Intrusion Detection/Prevention System), and malware protection Developing security reporting packs for differing targeted audiences Knowledge of risk assessment more »

that critical business operations continue unhindered. Key Responsibilities Monitor and analyze security events and alerts from multiple sources, including security information and event management (SIEM) software, network and host-based intrusion detection systems, firewall logs, and system logs (Windows and Unix), and databases Separate true threats from false positives using … Maintain a strong awareness of the current threat landscape Basic Qualifications Excellent teamwork skills Knowledge of and experience with intrusion detection/prevention systems and SIEM software Strong knowledge and understanding of network protocols and devices. Strong experience with Mac OS, Windows, and Unix systems. Ability to analyze event logs … recommendations for security tools to tool administrators. Familiarity with tools such as Wireshark, TCP Dump, Security Onion, and Splunk Strong knowledge of the following: SIEM Packet Analysis SSL Decryption Malware Detection HIDS/NIDS Network Monitoring Tools Case Management System Knowledge Base Web Security Gateway Email Security Data Loss Prevention more »

experienced individual will know what the role entails, but some key points to be considered: - Demonstrable experience of managing security solutions (secure Code Scanning, SIEM, IPS, IDS, Vulnerability Scanning, Penetration Testing,) directly, or through an MSSP, in a cloud-based environment. - Knowledge of security compliance standards relevant to the SaaS … such as PCI, GDPR, ISO 27001, SOC2, NIST - Skills in leveraging application monitoring tools- AWS monitoring/alert tools (CloudTrail, GuardDuty), Qualys tools and SIEM experience, to detect and respond to security events/incidents. - Industry certifications such as CISSP, CISM, CEH, ECSA, LPT, OSCP, AWS certified security, or equivalent more »

our client, you will play a crucial role in implementing and managing their cybersecurity infrastructure. Your responsibilities will include: - Implementing and managing Azure Sentinel SIEM for threat detection, incident response, and security monitoring. - Configuring and maintaining Microsoft Defender for endpoint protection and threat detection. - Developing and maintaining KQL (Kusto Query … junior members of the security team. Requirements: - Proven experience working as a Cyber Security Engineer or similar role. - In-depth knowledge of Azure Sentinel SIEM, Microsoft Defender, and KQL scripting. - One of the following certifications: AZ-500 (Microsoft Azure Security Technologies) or SC-200 (Microsoft Security Operations Analyst) or SC more »

will play a pivotal role in safeguarding our organization's critical infrastructure and data against cyber threats. Your expertise in designing, implementing, and maintaining SIEM solutions will help us proactively identify and mitigate security incidents, ensuring the confidentiality, integrity, and availability of our systems. Responsibilities: - Work with the technical lead …/SME for the CSOC and SIEM service offering by managing and improving the platforms to meet the requirements of the business and/or client - Assist in establishing and maintaining processes, tooling and metrics that help provide a high level of productivity, supportability, and operational readiness - Actively participate in … implemented through onboarding or continuous improvement activities Qualifications & Experience: Professional experience of working in an Incident Response Team or a similar environment Knowledge of SIEM platforms such as Azure Sentinel, Microsoft Defender, Splunk, ArcSight, QRadar, or LogRhythm. Strong analytical and problem-solving skills with the ability to handle complex security more »

in ensuring the safety and security of organizations through proactive monitoring and incident response. Responsibilities: Provide continuous protective monitoring using state-of-the-art SIEM, IDS, and threat intelligence technologies. Offer expert advice and guidance to clients targeted by cyber attacks, maintaining high standards of support. Ensure timely and accurate …/Must have: Strong analytical skills with the ability to interpret complex data. Excellent communication skills, both verbal and written. Proficiency in industry-leading SIEM, IDS, and threat intelligence technologies. Ability to work effectively under pressure and adapt to rapidly changing situations. Prior experience with active directory administration and firewall more »

security team. • Promote cross functional collaboration and knowledge sharing across security and IT teams. • Maintain security infrastructure, including firewalls, intrusion detection/prevention systems, SIEM and endpoint security solutions. • Setting the overall security strategy for the business. What you'll need to succeed • The Ideal candidate will have a strong … and data. • Experience working in alignment with ISO27001 and Cyber Essentials. • Experience Managing and maintaining security infrastructure, including firewalls, intrusion detection/prevention systems, SIEM, and endpoint security solutions. What you'll get in return You can expect a competitive salary (depending on experience), along with pension, life assurance more »