351 to 375 of 457 SIEM Jobs in the UK

recovery governance, and secure operational restoration. IT/OT Integration Assurance: Collaborate with cross-functional architecture and engineering teams to govern system onboarding (e.g., SIEM/SOC infrastructure monitoring) across both corporate enterprise and industrial Operational Technology (OT/SCADA) environments. Requirements Governance: Create procurement-grade business analysis artifacts, including ...

20+ across multiple geographies. Knowledge of ITIL, COBIT, or similar frameworks. Proven delivery of ISO27001 programmes. Strong technical experience in: Firewalls, Antivirus, BitLocker, SIEM MFA Zero Trust architectures At Oxford Instruments, we are proud of the environment that we have created. We hope that by joining us, you will discover ...

leading banking organisation based in the City of London is seeking an experienced Cyber Project Manager to lead strategic cybersecurity transformation initiatives focused on SIEM modernisation, click apply for full job details ...

security best practices across all technology initiatives, supporting the organisation's security posture and resilience. Key Responsibilities Security Operations & Monitoring Monitor and manage the SIEM platform and security alerts to identify, investigate, and respond to potential threats. Administer and optimise EDR solutions (CrowdStrike) to ensure comprehensive endpoint protection across … CISSP, CCSP, Security+, or similar), and/or Minimum of 3-5 years' experience in security engineering or adjacent roles. Hands-on experience with SIEM platforms, EDR solutions (ideally CrowdStrike), and vulnerability management tools. Experience with IAM solutions, SaaS security, and data protection tools. Strong understanding of networking concepts, protocols ...

while maintaining compliance with regulatory and data protection standards. As our Security Operations Engineer, you will typically: Operate and optimise core security operations tooling (SIEM, DLP, IAM, endpoint protection) to safeguard systems and data Develop, implement, and monitor KPIs and dashboards to measure detection effectiveness, incident response performance, data protection … Microsoft Sentinel, Microsoft Purview, Defender suite, and Entra ID Security Operations (SecOps) expertise covering monitoring, triage, investigation, and incident response Microsoft Sentinel for advanced SIEM, SOAR, and threat detection use cases Identity and Access Management (IAM) including privileged access management and Zero Trust principles Endpoint, email, and cloud threat protection ...

closely with infrastructure, cloud, and SOC teams to detect, prevent, and respond to security threats. Key Responsibilities Monitor and respond to security alerts across SIEM and EDR platforms Manage and tune security tools including firewalls, WAFs, and endpoint protection Investigate and support response to security incidents Perform vulnerability assessments and … policies, standards, and procedures Assist with threat detection engineering and rule tuning Required Skills & Experience Strong understanding of core security technologies (NGFW, WAF, EDR, SIEM) Experience in a SOC, security engineering, or infrastructure security role Good knowledge of networking and common attack types (e.g. SQL injection, phishing, malware) Experience with ...

will apply hands-on engineering expertise to design, build, and optimise automation workflows that improve the scalability and efficiency of SOC services. Working across SIEM, endpoint, and orchestration platforms (primarily Palo Alto XSOAR), you will reduce analyst workload, accelerate incident response, and enhance decision-making across customer environments. Key Responsibilities … Sales Support – Assist with demos, scoping, and proof-of-value activities where required. Core Duties Automation Design & Development Build and maintain workflows across SIEM, EDR, and SOAR platforms Develop reusable scripts, templates, and components Ensure solutions support secure, multi-tenant environments Integration & Response Automation Orchestrate containment, enrichment, and remediation actions ...

and tabletop exercises Manage Linux security hardening and support Windows security/MDM controls Oversee PKI infrastructure, digital certificates, and certificate lifecycle management Operate SIEM, MDR, and vulnerability management platforms, including liaison with external SOC providers Lead incident response activities aligned to DORA reporting timelines Assess and mitigate emerging cyber … and packet analysis Experience with PKI, CA processes, and security certificates Python scripting for automation and threat analysis Strong AWS security knowledge Experience with SIEM, MDR, vulnerability management, and incident response Knowledge of ISO 27001, DORA, FCA, and NIS2 frameworks Desirable Experience within trading, exchange, or financial services environments This ...

actively recruiting a Security Solution Architect in Reading, UK. The role includes understanding packet core security and managing security products like firewalls and SIEM systems. Ideal candidates will have a bachelor’s degree and significant experience in telecom security and 5G core networks. You will map customer requirements, provide security ...

resilience, DLP measures and regulatory compliance. Role Principal Duties: Proactively monitor network and system activity to detect potential security threats, using tools such as SIEM and endpoint protection platforms Assist in the investigation and resolution of low-level security incidents, escalating more complex issues to senior staff Maintain detailed logs … handled in accordance with incident response procedures Security Tools & Infrastructure: Support the deployment, configuration, and maintenance of core security tools, including antivirus software, firewalls, SIEM systems, Microsoft security services and endpoint protection Ensure DLP policies are effectively integrated into security infrastructure, including email filtering and endpoint protection systems, to prevent ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

Cyber Security, with the following skills and experience: Experience in SOC operations, incident response, and forensic analysis. Proficiency in Security Information and Event Management (SIEM), including tools such as Splunk, Defender, and Tenable Threat Modelling System solutions, as well as with IDS/IPS and vulnerability scanners. Ability to perform ...

Security remediation & vulnerability management JIRA/Agile delivery environments Strong stakeholder management & delivery ownership Nice to have: BAM/governance programme experience Datadog/SIEM/EDR exposure Pen testing remediation OWASP/Secure SDLC knowledge Cloud/container security exposure The client is looking for someone proactive, organised, and ...

and improving security capabilities through AI-driven solutions. The ideal candidate has over 10 years in security engineering, with experience in leading tools like SIEM and SOAR. Located in London, this position offers opportunities to shape security initiatives impacting the entire organization. #J-18808-Ljbffr ...

clear commercial reporting to stakeholders Main Skills Needed: Proven experience in strategic account management and Cybersecurity technologies, services and solutions (Inclusive of SOC/SIEM, EDR, MDR, Security Assessments, GRC etc.) Consultative in approach, able to identify growth opportunities within existing accounts to develop relationships and position new solutions that ...

Commercial mindset with the ability to bridge sales, tech, and delivery Bonus: experience in regulated sectors (financial services, critical infrastructure, aviation) or familiarity with SIEM, MDR, and cloud-native SOC platforms Why Apply?: Visible impact: Direct line to new logo wins and deal size, not a support function Recurring revenue ...

Collaborate with stakeholders to design, implement and maintain security controls that are effective, measurable and sustainable. Implement and maintain detection and response capabilities through SIEM integration, improving time‐to‐detect and time‐to‐remediate. Participate in a 24x7 on‐call support rota, responding to SIEM health alerts and restoring … cases, perform data enrichment and define automated containment workflows. Develop and manage operational procedures, reporting methodology and risk reporting frameworks. Oversee security technology platforms (SIEM, SOAR, EDR, email security). Monitor control performance, coordinate remediation and automate operation procedures. Align control design with industry standards, regulations and best practices (e.g. ...

reviews and continuous improvement actions Own and manage key security platforms, including security awareness and secure communications tools Ensure effective configuration and use of SIEM and monitoring technologies, with meaningful reporting for senior stakeholders Identify, assess and mitigate cyber risks through regular assessments and control reviews Chair or contribute … and security governance Very strong familiarity with Microsoft security technologies, including Microsoft 365, E5 licensing and the associated security stack (e.g. identity, endpoint, email, SIEM and cloud security tooling) Broad technical exposure across infrastructure, cloud and network technologies, with the ability to translate technical risk into business language Experience working ...

and improve operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage tools such as Microsoft Defender, Nessus, and SIEM/SOAR platforms Develop secure cloud templates and baseline configurations Partner with engineering teams to embed secure coding and DevSecOps practices Stay up to date … prem environments Deep understanding of Azure security, DevOps, and automation Hands-on experience with EDR/DLP tools (e.g. Microsoft Defender) Experience with SIEM/SOAR platforms Knowledge of frameworks such as ISO 27001, NIST, and CIS Strong troubleshooting and problem-solving skills Ability to manage multiple priorities ...

Engineer Milton Keynes We are seeking a hands-on SOC Engineer with strong SIEM and security monitoring experience to join a fast-paced Cyber Security Operations Centre. This role requires both soft and technical skills, focused on the engineering, optimisation, and support of SOC tooling, telemetry, and detection capabilities … improve threat visibility and incident response across hybrid environments. Key Responsibilities Operate, support, and tune SIEM and security monitoring platforms, including Graylog and Splunk. Maintain and optimise log ingestion pipelines across multiple data sources. Develop and refine detection rules, alerts, dashboards, and SOC playbooks. Support incident response, investigation, and containment ...

detect and respond to threats quickly and efficiently. Install, configure and maintain security monitoring tools Ensure SOC tooling is optimised and operating effectively Support SIEM platforms and threat intelligence tooling Work with teams to assess risk and design security controls Apply updates, patches and follow change processes Stay current with … emerging threats and recommend improvements SOC ENGINEER ESSENTIAL SKILLS Strong understanding of information security fundamentals Experience with SIEM tools such as Sentinel or Splunk Familiarity with security monitoring technologies Analytical mindset with strong problem solving skills Ability to manage multiple priorities and meet deadlines Strong communication and collaboration skills ...

tooling is operating effectively to protect client environments. Work with teams to assess risks, design controls and define testing requirements. Support senior engineers with SIEM, threat intelligence and malware analysis platforms. Apply patches/updates, raise changes and follow agreed processes. Keep up to date with threats and recommend improvements. … busy environment. ompTIA Network+ (or similar) or equivalent knowledge. It would be great if you had: Experience with Azure or AWS security features. SIEM experienceespecially Sentinel or Splunk. If you are interested in this role but not sure if your skills and experience are exactly what were looking for, please ...

Review supplier security documentation and identify risks or gaps Maintain security documentation, control records, and evidence repositories Analyse outputs from security tools (vulnerability scanners, SIEM, patching, access reviews) Work with technical teams to validate and improve security controls Contribute to security improvements and control design Experience Required Strong technical background … management, baselines, audits) Understanding of Windows/Linux, networking, IAM, virtualisation, cloud (Azure/AWS), backups, and monitoring Knowledge of security controls (firewalls, EDR, SIEM/logging, encryption, least privilege, vulnerability management) Ability to explain technical security concepts clearly to technical and non-technical audiences Strong documentation and organisational skills ...

We are looking for a Managing Security Engineer to lead the design, implementation and documentation of enterprise security monitoring platforms. This is a key technical leadership role, responsible for ensuring the right tooling, controls and ...

future business needs. • Own the full network and security lifecycle, maintaining uptime close to 99.99%. • Monitor, investigate, and respond to security incidents using SIEM tools, Sophos MDR, and threat-hunting techniques. • Configure and manage firewalls, VPNs, IDS/IPS, web and email security solutions. • Maintain high patching and vulnerability … Expert knowledge of Checkpoint firewalls, Cisco routers and switches, and Cisco ISE. • Strong experience with Zscaler Internet Access, Zscaler Private Access, Splunk, and enterprise SIEM tooling. • Proven background in network security, threat prevention, and incident response. • Cisco CCNA and CCNP certifications. • Experience with data centre colocation and vendor/carrier ...