51 to 56 of 56 SIEM Jobs in the South West

both technical and GRC security experience. Key Responsibilities: Oversee security incident management and response Threat management Configure, implement and maintain security tools such as SIEM, XDR, EDR, vulnerability management Implement and maintain security controls Conduct vendor risk assessments, support internal and external audits Governance, risk and compliance Skills & Experience: Proven … threat management and threat analysis Threat management - actively develop and refine threat intelligence, threat hunting capabilities, and prevention/detection measures Strong knowledge of SIEM, XDR, EDR, vulnerability management, firewalls and network security Good understanding of risk management, vendor security assessments and compliance Understanding of UK regulations, including Cyber Essentials ...

investigations and incident response for OT-related cyber events Analyse industrial network traffic to identify anomalies, threats and protocol misuse Integrate OT telemetry into SIEM and EDR platforms to enhance visibility and correlation Support secure by design initiatives for new OT systems, including segmentation and access control validation Assess vulnerabilities … control systems (ICS) - including SCADA, PLCs, DCS Hands-on experience with OT security tools (e.g. Claroty, Nozomi, Dragos or similar NDR platforms) Experience with SIEM, EDR and network traffic analysis Background in incident response, threat detection and security monitoring within OT or converged environments Understanding of network segmentation, secure remote ...

across identity, access, network and XDR technologies, ensuring system health, data integrity and effective alerting. You will support multi-tenant platforms such as XDR, SIEM, monitoring analytics, queries and dashboards, and identify opportunities to improve performance. You will contribute to onboarding by supporting ingestion pipelines, enrichment processes and integrations that … incidents, supporting investigation, containment and recovery activities, and contributing to post incident remediation and service improvement. Diagnose and resolve service incidents relating to security tooling (e.g. SIEM, XDR, logging pipelines), escalating complex issues where appropriate and contributing to root cause analysis and preventative actions. Support the planning, assessment and implementation ...

looking for Strong experience with: Juniper (LAN switching, SRX) Palo Alto firewalls Enterprise networking environments Managing engineers/leading teams Working with EDR & SIEM tools Engaging technical & non-technical stakeholders Exposure to cloud networking Tech environment Cisco (current) → migrating to Juniper Meraki wireless Windows + Ubuntu (Nutanix/AHV) SIEM ...

Responsibilities: • Perform triage of security events and incidents • Determine scope, impact and remediation priorities • Real-time incident management from detection to resolution • Support SIEM engineering and tool configuration within an enterprise SOC • Develop use cases, analytics and playbooks • Work within a fast-paced, highly secure operational environment Essential Experience: ✔ Proven … Tier 2/3 SOC Analyst experience (2+ years) ✔ Hands-on SIEM experience (ArcSight preferred) ✔ SOC certifications such as SANS, ISC2 or equivalent ✔ Strong incident response and threat analysis capability ✔ Understanding of cloud technologies. Desirable: ➕ Defence/MOD experience ➕ Team lead exposure ➕ Degree in Computing, Engineering or related discipline. Please ...

determine scope, priority and impact, and recommend rapid remediation actions. Conduct real-time management of security incidents from detection through to resolution. Work with SIEM technologies and SIEM engineering, including tool configuration (e.g. ArcSight). Create and maintain use cases, analytics and playbooks. Contribute to security monitoring across on-prem … Industry-standard SOC security qualifications (e.g. SANS, ISC2). Proven Tier 2/3 SOC Analyst experience (2+ years). Hands-on experience with SIEM technologies and engineering (ideally including ArcSight). Experience creating SOC use cases, analytics and playbooks. Desirable Degree in a technical, engineering or computing discipline. Defence ...