1 to 25 of 34 SIEM Jobs in the North of England

using SOAR tooling and its application Application of data science against large datasets involving unstructured data and designing data models Knowledge of using SIEM platforms to identify suspected security events and creating content to enhance the platform Knowledge of custom API's to leverage the SOAR's functionality Ability ...

Linux OS. Skills & Experience of Cyber Security Engineer will include: Strong Experience within Information Security Engineering, focusing on Infrastructure & Network Engineering. Practical Experience with SIEM, NG Firewalls, SASE Solutions & Privileged Access Management (PAM) Systems. Ideally Highly Proficient in Microsoft & Linux OS with a Strong Understanding of Data Encryption, Key Management ...

with day-to-day responsibilities. Essential Skills and Experience: SC clearance required to start; DV sponsorship available. Proven expertise with Splunk and Microsoft Sentinel SIEM platforms. Strong programming skills in Python , with experience developing automation and Detection as Code pipelines. Proficiency in KQL and SPL for creating efficient, high-fidelity ...

Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work independently and perform their own research Ability to work under pressure Creative problem solving Ability ...

tools such as EDR, XDR, firewalls, WAF, and email security; experience with CrowdStrike, Palo Alto, and Microsoft Defender is advantageous. Hands-on experience with SIEM platforms, including configuration and data integration. Familiarity with cloud security, network security, and endpoint security across Windows, Linux, and macOS environments. Package ...

required to: • Secure on prem & cloud infra (zero trust, segmentation, VPN, firewalls, IDS/IPS) • Hardening Windows/Linux VMware/Hyper V • SIEM (Sentinel/Alienvault) • EDR • Vulnerability management (Qualys) • Azure/AWS strong IAM & Conditional Access • M365 security: Defender for Office 365, DLP, Secure Score/Purview • Lead ...

mitigate cyber risks at both national and local levels. Key Responsibilities Responsible or gathering, normalising, and integrating cybersecurity-related data from multiple sources (e.g., SIEM, threat feeds, vulnerability sources, and cloud platforms) to develop trends and to detect threats, vulnerabilities, and anomalies. Ability to translate raw data into meaningful insights ...

Protection Act, and Cyber Essentials. The successful candidate will bring expertise in disaster recovery, business continuity, risk management, internal controls, and security technologies including SIEM, firewalls, EDR, MFA, encryption, Microsoft Purview, and Microsoft Entra. Experience with incident response, cyber forensics, enterprise security architecture, secure-by-design principles, and managing third ...

Protection Act, and Cyber Essentials. The successful candidate will bring expertise in disaster recovery, business continuity, risk management, internal controls, and security technologies including SIEM, firewalls, EDR, MFA, encryption, Microsoft Purview, and Microsoft Entra. Experience with incident response, cyber forensics, enterprise security architecture, secure-by-design principles, and managing third ...

benefits of establishing a healthy cyber security posture. Essential: Deep understanding of adversarial TTPs and threat actor lifecycles. Proven experience in malware, phishing, and SIEM log analysis. Strong grasp of threat modelling and risk assessment frameworks. Skilled in OSINT collection and analysis. Demonstrated leadership in CTI environments, including mentoring and ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

with live incidents, real attackers, and industry-leading tools — not just alert watching. What you'll be doing Monitoring, triaging & investigating alerts across SIEM/EDR/XDR Analysing attacker behaviour & building incident timelines Escalating incidents with clear technical context Using tools such as Microsoft Sentinel, Google SecOps, Defender ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

client in conjunction with this vacancy only. KEY SKILLS Cyber Security, Vulnerability Management, Penetration Testing, Risk Assessment, Compliance, PCI DSS, Security Tooling, Governance, SIEM, Endpoint Security, Security Investigations ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

DHCP, GPO, RDS, WSUS and WAP Virtualisation experience with VMware vSphere, ESXi and VMware Cloud Foundation Knowledge of VoIP platforms (Asterisk) Experience with SIEM and monitoring tools , including System Centre Suite and Splunk Enterprise/ES/ITSI Familiarity with telemetry and observability tools such as OpenTelemetry and Telegraf Linux ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

protocols (e.g. TCP/IP, BGP, OSPF) and experience securing routers, switches, firewalls and load balancers. Threat analysis and mitigation using tooling such as SIEM, IDS/IPS, and endpoint detection systems. Encryption & Cryptography expertise (e.g. SSL/TLS, IPsec, Kerberos, VPNs, PKI) including securing data in transit and ...

provisioning and compliance. Integration knowledge across Microsoft Exchange, M365, VMware and enterprise IT ecosystems. Understanding of Zero Trust architecture, identity threat detection, and SIEM integration. Strong stakeholder management, influencing, and communication skills. Ability to translate complex technical challenges into executive-level decisions and investment cases Our company: Peace ...

including their TTPs Experience in utilising open-source intelligence and the development of tools to assist with this Experience in conducting malware, phishing, and SIEM log analysis Knowledge of relevant cyber threat intelligence sources Demonstrated ability to manage customer relationships Proven ability to translate cyber threats to the relevant audience ...

team, providing frontline defence and hands-on technical support across a modern IT environment. What you'll do Monitor and triage security alerts from SIEM and endpoint protection tools click apply for full job details ...

ensure solutions are cost-efficient, scalable and compliant Working across Linux environments (primarily Ubuntu) while collaborating with Windows teams where needed Supporting vulnerability management, SIEM engineering and wider security initiatives Reading documentation, troubleshooting independently and quickly becoming productive in complex systems Working closely with a team of juniors, mid-level … Ability to troubleshoot independently, read documentation and identify efficient solutions Strong consulting skills - calm, pragmatic communication, and ability to challenge when required Exposure to SIEM (Splunk/Elastic), vulnerability tools, or cloud security platforms A problem-solving mindset and willingness to learn new tools and languages quickly Experience in fast ...