1 to 25 of 271 SIEM Jobs in the UK

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

also contribute to strategic security projects and ensure secure, scalable and resilient solutions across the business. Key Responsibilities: Deploy and manage enterprise security tools (SIEM, XDR, DLP, Email Security, Endpoint Protection). Build automation using Python, PowerShell, Bash. Implement IaC using Terraform and Ansible. Maintain secure baselines for Windows, Linux ...

vulnerability management and incident response Familiarity with security monitoring tools such as firewalls, IDS/IPS, and extended detection solutions Experience working with SIEM, cloud security platforms, or log management tools (e.g. CrowdStrike, Lacework or similar) Exposure to identity and access management (IAM) implementations Ability to contribute effectively within ...

Controls, or DORA. Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence ...

service follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve ...

hands-on experience securing cloud services Experience with the Azure security ecosystem, including Microsoft Defender for Cloud, Azure Policy, and related tooling Experience with SIEM platforms (Azure Sentinel preferred), including detection development, alert tuning, and incident investigation Proven incident response experience across the full lifecycle Experience integrating security into development ...

Technical Breadth: Demonstrable experience with IP-based networks, WAN technologies, Windows/Linux environments, and virtual server technologies. Modern Solutions: First-hand experience with SIEM solutions, SOAR workflows, and EDR technologies like Microsoft Defender. ...

Technical Breadth: Demonstrable experience with IP-based networks, WAN technologies, Windows/Linux environments, and virtual server technologies. Modern Solutions: First-hand experience with SIEM solutions, SOAR workflows, and EDR technologies like Microsoft Defender. ...

e.g. Security+, CEH, CPSA) or similar. It would be great if you had: Scripting or programming skills (Python, PowerShell, Bash, Perl, C++). Broader SIEM experience (e.g. QRadar). Additional SOC or CREST certifications. If you're interested in this role but not sure if your skills and experience ...

and wants to contribute to a mission-driven cyber defence team. Key Responsibilities You will: Develop, maintain and enhance detection content (primarily for Splunk SIEM ) across cloud, endpoint and network platforms Identify detection gaps, log ingestion issues and alert improvements Review and uplift existing SecOps standards, logging maturity, BAU monitoring ...

driving continuous improvements, and optimising security tools and technologies to enhance operational efficiency. • Hands-on experience in threat detection and prevention, including expertise in SIEM, EDR, firewall management, or similar security technologies. • Ability to build relationships and engage with all levels of management, communicating complex technical issues to a range ...

Experience in IT operations with exposure to cybersecurity or governance * Knowledge of ISO 27001, GDPR and risk management frameworks * Familiarity with vulnerability management, SIEM or EDR tools * Strong understanding of Windows Server, Active Directory and Microsoft 365 security * Strong analytical and communication skills What is on offer: * Salary ...

this vacancy only. KEY SKILLS Cyber Security, Security Operations, SOC, Microsoft Defender, Sentinel, Incident Response, Vulnerability Management, Threat Intelligence, Threat Hunting, SOAR, Azure, AWS, SIEM, KPIs, Risk Reporting ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

OWASP Top 10, secure SDLC, code review) Security frameworks and standards (NIST, ISO 27001, CIS Benchmarks, SOC 2) Infrastructure as Code security (Terraform, CloudFormation) SIEM, logging, and monitoring tools (Splunk, Sentinel, ELK) Vulnerability management and penetration testing coordination What’s in it for you At Accenture in addition ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

workflows Configure session recording, monitoring, and auditing Onboard servers, network devices, and platforms into PAM Manage service account discovery and lifecycle Integrate PAM with SIEM tools for logging and alerting Support Active Directory privileged account controls Troubleshoot PAM connectors, sessions, and access issues Produce clear technical documentation and runbooks Essential ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Architect (Home Based), will pay a competitive salary and benefits with a home working model. ...

Operations, Privilege Access Management, Encryption, Operation System Security, Cloud & Container Security Cloud/AWS/Azure Microsoft Defender Sentinel EDR, SPM, MFA, SDLC, IAM, SIEM, Security Architecture & AI The permanent position for Cloud Security Solution Architect (Home Based), will pay a competitive salary and benefits with a home working model. ...

InfoSec reviews and feedback from external audits. Help drive security and compliance awareness across the business. Involvement in Operational Security Services such as SOC, SIEM, Penetration Testing & Vulnerability scanning Review, interpret and act upon information provided by E365 security toolsets. Required skills: Hold valid security clearance or be eligible undergo ...