1 to 25 of 30 SIEM Jobs in the Thames Valley

stay compliant Collaborate with key stakeholders including Compliance and Infrastructure teams Required Experience: Microsoft security suite experience – Microsoft certifications are highly valued Familiarity with SIEM tools – Microsoft Sentinel or similar Experience managing network security and firewalls Exposure to PenTesting methodologies or practices (desirable) Experience with NAC solutions like Cisco ISE More ❯

systems, with experience in tools such as Kafka, Kubernetes, Zookeeper, and HDFS. oProficiency in Linux, specifically Red Hat Enterprise Linux (RHEL). oFamiliarity with SIEM platforms (especially ArcSight) or legacy Java-based applications is a plus. • DevOps Mindset: An understanding of DevOps principles, with hands-on experience automating releases using More ❯

defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security More ❯

SOAR platforms such as Splunk Phantom, Siemplify, IBM Resilient or similar tools. Knowledge of advanced threat detection and response methodologies alongside tools such as SIEM and Soar. Comprehensive understanding of cybersecurity principles including security operations, incident response and threat intelligence. Strong analytical and problem-solving skills to identify and address More ❯

Requirements and security policy. Ensure that projects integrate with security baseline controls such as IPS/IDS, WAF, Firewall Change Management, Identity & Access Management, SIEM and Vulnerability Management. Ensure internal customers, external suppliers and delivery partners are aware of security standards and future strategy to influence development roadmaps. Identify security More ❯

Microsoft platforms including: SQL Server , Windows Server , Exchange, Mimecast. Network knowledge (Firewalls, etc). Encryption and Data Masking Techniques (GPG, etc). Knowledge of SIEM tools (Splunk, Alert Logic). Familiarity with business continuity and disaster recovery. Understanding of GDPR and management of data. Ability to react quickly to and More ❯

systems, with experience in tools such as Kafka, Kubernetes, Zookeeper, and HDFS. Proficiency in Linux, specifically Red Hat Enterprise Linux (RHEL). Familiarity with SIEM platforms (especially ArcSight) or legacy Java-based applications is a plus. DevOps Mindset: An understanding of DevOps principles, with hands-on experience automating releases using More ❯

Required: Expert in Security Operations and Security Incident Response. Expert in cyber incident investigations, e-Discovery, network forensics, and cyber breach inquiries Proficiency in SIEM, SEM, and log monitoring. Scripting/programming skills. Knowledge of operating systems, hardware, software platforms, and protocols. Familiarity with security best practices and regulations (ISO More ❯

security policies. Skills & Experience ✅ 5+ years in desktop/server support, networking, or security operations. ✅ Technical Proficiency : Microsoft/VMware/Cloud technologies. Firewalls, SIEM (e.g., Microsoft Sentinel ), and EDR tools. WAN/LAN and endpoint security (patch management, AV). ✅ ITIL familiarity and strong troubleshooting skills. ✅ Certifications : Working toward More ❯

Access Management (including RBAC and A/PBAC, permissions management), ZTA • Cryptographic techniques and implementations • IT asset management and tracking • Vulnerability Management and Patching • SIEM principles, products and supporting logging infrastructure • Containerisation and virtual machine security • Delivering secure solutions against project expectations • Strong awareness of and commitment to industry best More ❯

Develop, implement, and oversee enterprise-wide security operations to detect, prevent, and respond to cyber threats. Lead and enhance Security Information and Event Management (SIEM) and Threat Intelligence capabilities. Lead security incident response and forensic investigations, ensuring robust incident handling and mitigation. Report on cybersecurity KPIs and manage significant IS … cybersecurity leadership roles within enterprise-sized organisations. Proven track record in Security Operations, Risk Management, IAM, and Compliance. Hands-on experience with security tools such as SIEM, EDR/XDR, Firewalls, IDS/IPS, DLP, and IAM solutions. Working knowledge of security frameworks: ISO 27001, NIST, CIS, SOC 2, GDPR More ❯

Develop, implement, and oversee enterprise-wide security operations to detect, prevent, and respond to cyber threats. Lead and enhance Security Information and Event Management (SIEM) and Threat Intelligence capabilities. Lead security incident response and forensic investigations, ensuring robust incident handling and mitigation. Report on cybersecurity KPIs and manage significant IS … cybersecurity leadership roles within enterprise-sized organisations. Proven track record in Security Operations, Risk Management, IAM, and Compliance. Hands-on experience with security tools such as SIEM, EDR/XDR, Firewalls, IDS/IPS, DLP, and IAM solutions. Working knowledge of security frameworks: ISO 27001, NIST, CIS, SOC 2, GDPR More ❯

of ThreatINSIGHT for Network Detection and Response (NDR). Design and deliver cloud visibility solutions across AWS, Azure, and GCP. Support seamless integration into SIEM and security monitoring platforms. Develop detailed installation, configuration, and operational documentation. Proactively identify service improvements and best practice enhancements. Essential Skills: Proven hands-on experience More ❯

TrueSight Identity protection and corporate tools including AAIP, MDI, and MCAS PUAM systems, especially CyberArk Security logging and monitoring, preferably with PRISM or similar SIEM solutions Solid understanding of security frameworks (e.g., NIST, ISO 27001) and compliance requirements. Proven experience in low-level design (LLD) documentation and system integration. Our More ❯

TrueSight Identity protection and corporate tools including AAIP, MDI, and MCAS PUAM systems, especially CyberArk Security logging and monitoring, preferably with PRISM or similar SIEM solutions Solid understanding of security frameworks (e.g., NIST, ISO 27001) and compliance requirements. Proven experience in low-level design (LLD) documentation and system integration. Our More ❯

experience leading regulatory compliance programs Excellent communication skills and a talent for building strong stakeholder relationships Experience in security assurance across services like SOC, SIEM, IAM, and more Professional certifications (CISM, CISSP, ISO27001 Audit) highly desirable You’ll be part of a dynamic, purpose-driven team in a pivotal role More ❯

a technology industry (mobile telecommunications desirable but not essential). A background of assuring a wide range of security solutions and services such as SIEM, IDS, SOC, IAM, PAM, TVM. A history of bringing industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of More ❯

a technology industry (mobile telecommunications desirable but not essential). A background of assuring a wide range of security solutions and services such as SIEM, IDS, SOC, IAM, PAM, TVM. A history of bringing industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of More ❯

a technology industry (mobile telecommunications desirable but not essential). A background of assuring a wide range of security solutions and services such as SIEM, IDS, SOC, IAM, PAM, TVM. A history of bringing industry best practice into an organisation and using this to drive continuous improvement. Demonstrable experience of More ❯

a technology industry (mobile telecommunications desirable but not essential). • A background of assuring a wide range of security solutions and services such as SIEM, IDS, SOC, IAM, PAM, TVM. • A history of bringing industry best practice into an organisation and using this to drive continuous improvement. • Demonstrable experience of More ❯

defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security More ❯

defend through the Sophos Central platform. Secureworks provides the innovative, market-leading Taegis XDR/MDR, identity threat detection and response (ITDR), next-gen SIEM capabilities, managed risk, and a comprehensive set of advisory services. Sophos sells all these solutions through reseller partners, Managed Service Providers (MSPs) and Managed Security More ❯

security reports and advisories to key stakeholders. Residual Risk Assessment: Deliver post-incident analysis, technical lessons learned, and reporting to assess residual risk. Advanced SIEM Tuning: Refine and tune SIEM tools to reduce false positives and detect more sophisticated threats, ensuring optimal alert configurations. Automating Response Actions: Develop and improve … in security event analysis and incident response. Deep knowledge of IPv4/IPv6, TCP networking protocols, and the OSI model. Expertise in security tools: SIEM (ArcSight, Sentinel, QRadar, Splunk), EDR (Microsoft Defender, FireEye), IDS/IPS, firewalls, proxies, web application firewalls, and anti-virus technologies. Strong knowledge of Linux and More ❯

and externally Familiarity with ISO 27001, Cyber Essentials, Azure Cloud Platform, Mimecast, Microsoft defender, Fortinet Platforms (FortiAnalyzer). EDR: CrowdStrike, Microsoft Defender for Endpoint SIEM: Microsoft Sentinel, CrowdStrike Next-Gen SIEM Ensure Department/Contract meets SLA performance targets. Improve and maintain customer experience, satisfaction and retention. Ensure compliance of More ❯

non-technical audiences. • Strong understanding of OT infrastructure, networking, and end-user computing. • Proficiency in writing Kusto Query Language (KQL) for creating and tuning SIEM queries and alerts. • Experience in configuring and troubleshooting MFA, Privileged Access Management (PAM), and Security Information & Event Management (SIEM) systems, particularly Microsoft Sentinel. Desirable Experience More ❯