1 to 25 of 46 SIEM Jobs in the City of London

will play a critical role in detecting, responding to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure More ❯

will play a critical role in detecting, responding to, and mitigating security threats across enterprise environment. Responsibilities will include: Monitor, analyze, and respond to security events and incidents using SIEM and other security tools. Develop and maintain detection rules, playbooks, and automation scripts to improve incident response efficiency. Perform threat hunting and forensic investigations across IT environment. Collaborate with infrastructure More ❯

briefings. Solutioning & Architecture Design secure, scalable, and cost-effective cyber security solutions covering areas such as network security, identity and access management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed More ❯

briefings. Solutioning & Architecture Design secure, scalable, and cost-effective cyber security solutions covering areas such as network security, identity and access management, cloud security, endpoint protection, and SOC/SIEM operations. Translate client business and technical requirements into end-to-end architectures that are aligned with compliance standards (ISO 27001, NIST, Cyber Essentials Plus, GDPR, PCI DSS). Ensure proposed More ❯

Smartsheet, Monday.com, etc. Microsoft O365 products (Excel, PowerPoint, etc.) Collaboration and communication skills across multiple teams and businesses. Good-to-Have Skills Palo Alto Firewall, F5 LTM, F5 GTM SIEM and SOAR tools (Splunk, Cribl, PAN Cortex) Powershell Python Scripting Power BI and Power Automate. More ❯

Smartsheet, Monday.com, etc. Microsoft O365 products (Excel, PowerPoint, etc.) Collaboration and communication skills across multiple teams and businesses. Good-to-Have Skills Palo Alto Firewall, F5 LTM, F5 GTM SIEM and SOAR tools (Splunk, Cribl, PAN Cortex) Powershell Python Scripting Power BI and Power Automate. More ❯

certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting and incident forensics Experience with SIEM, IDS/IPS and threat intelligence platforms Familiarity with incident response frameworks and security best practice Experience with scripting and automation (e.g. Azure Logic Apps) Soft Skills Problem-Solving: Identify, troubleshoot More ❯

certification or willingness to achieve it Within commuting distance (~1 hour) of Canary Wharf, London Technical Skills Strong KQL skills for threat hunting and incident forensics Experience with SIEM, IDS/IPS and threat intelligence platforms Familiarity with incident response frameworks and security best practice Experience with scripting and automation (e.g. Azure Logic Apps) Soft Skills Problem-Solving: Identify, troubleshoot More ❯

or solutions architecture role. Background working with or for a VAR, Systems Integrator, or Security Vendor highly desirable . Technical Expertise Strong understanding of enterprise security technologies, including firewalls, SIEM/SOAR, IAM, DLP, SASE, Zero Trust, and cloud security. Working knowledge of AWS, Azure, and GCP security services. Broad understanding of networking, virtualisation, and enterprise infrastructure. CISSP, CCSP, or More ❯

learning mindset Nice to Have (Bonus) Certifications such as CEH, CompTIA Security+, ISO 27001 (even if in-progress) Familiarity with cloud security (AWS/GCP/Azure) Experience with SIEM tools (Splunk, ELK stack, QRadar, etc.) Participation in CTFs, bug bounty, or cybersecurity clubs/communities What You'll Get Real-time exposure to cybersecurity operations within a tech-driven More ❯

learning mindset Nice to Have (Bonus) Certifications such as CEH, CompTIA Security+, ISO 27001 (even if in-progress) Familiarity with cloud security (AWS/GCP/Azure) Experience with SIEM tools (Splunk, ELK stack, QRadar, etc.) Participation in CTFs, bug bounty, or cybersecurity clubs/communities What You'll Get Real-time exposure to cybersecurity operations within a tech-driven More ❯

Essentials+ certification. Administrative requirements of PAM tool. (CyberArk) Experience Experience administrating PAM solutions, such as CyberArk - MANDATORY Working understanding of security operations, threat detection, and incident response. Experience using SIEM and security tooling for triage and log analysis. Experience tracking and managing vulnerabilities using industry frameworks. Familiarity with enterprise systems including Microsoft 365 and Azure AD. Experience working in a More ❯

incident response Strong background in forensic analysis across Windows, MacOS, and Unix systems Experience in large-scale corporate environments, ideally with Microsoft Azure Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell) Calm, analytical mindset with the ability to lead technical investigations under pressure Bonus: Experience with static and dynamic file/malware triage Why Tesco? At More ❯

incident response Strong background in forensic analysis across Windows, MacOS, and Unix systems Experience in large-scale corporate environments, ideally with Microsoft Azure Proficiency in tools like EDR, SOAR, SIEM, and scripting languages (Python, PowerShell) Calm, analytical mindset with the ability to lead technical investigations under pressure Bonus: Experience with static and dynamic file/malware triage Why Tesco? At More ❯

degree in Cybersecurity, Information Technology, Computer Science, or a related field. •Basic knowledge of cybersecurity principles, including threat detection, risk management, and incident response. •Familiarity with security tools like SIEM systems, firewalls, or endpoint protection is a plus. •Strong analytical and problem-solving skills. •Excellent communication skills with the ability to explain technical concepts to non-technical audiences. •A proactive More ❯

including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts and practices. (Desirable) Familiarity with SIEM, vulnerability assessment, incident detection, and system hardening. (Desirable) Exposure to tools such as Microsoft Sentinel, Darktrace, Carbon Black, or Qualys. General IT knowledge, with an understanding of IT operations and More ❯

including carrying out reviews and supporting improvements across technical and procedural controls. Strong skills in documentation, analysis, and reporting. Technical knowledge of cybersecurity concepts and practices. (Desirable) Familiarity with SIEM, vulnerability assessment, incident detection, and system hardening. (Desirable) Exposure to tools such as Microsoft Sentinel, Darktrace, Carbon Black, or Qualys. General IT knowledge, with an understanding of IT operations and More ❯

representing the company professionally in meetings, while maintaining clear boundaries and ensuring discussions remain aligned with agreed project scope and priorities Experience with security tools and technologies such as SIEM (Splunk), vulnerability management (Tenable), and PAM Strong understanding of security frameworks and standards (e.g., ISO 27001, NIST), as well as asset management and risk assessment solutions It would be a More ❯

Microsoft certifications (relating to Azure-AZ, Security-SC, Power Platform-PL, Modern Work-MS and Copilot/AI). Excellent consulting, design and delivery of Microsoft Defender suite and SIEM/XDR. Effective technical hands-on experience configuring/implementing products such as Microsoft Azure, Entra & Purview. Accomplished in designing and implementing M365 security technologies, based on above, with little More ❯

Microsoft certifications (relating to Azure-AZ, Security-SC, Power Platform-PL, Modern Work-MS and Copilot/AI). Excellent consulting, design and delivery of Microsoft Defender suite and SIEM/XDR. Effective technical hands-on experience configuring/implementing products such as Microsoft Azure, Entra & Purview. Accomplished in designing and implementing M365 security technologies, based on above, with little More ❯

cyber security engineering or related roles, with a strong understanding of network security principles, protocols and technologies. Experience with security tools such as firewalls, intrusion detection/prevention systems, SIEM solutions (i.e. Splunk, Exabeam, Sentinel, Chronicle) and endpoint security platforms to the level of administration and deployment. Exposure to SOAR tools, observability tools and data stream processing tools Hands-on More ❯

cyber security engineering or related roles, with a strong understanding of network security principles, protocols and technologies. Experience with security tools such as firewalls, intrusion detection/prevention systems, SIEM solutions (i.e. Splunk, Exabeam, Sentinel, Chronicle) and endpoint security platforms to the level of administration and deployment. Exposure to SOAR tools, observability tools and data stream processing tools Hands-on More ❯

ensure regulatory compliance Manage vendor performance and service delivery Drive continuous improvement across platforms and processes Technical Skills: Microsoft 365, Azure, Defender, Sentinel IAM: Azure AD, MFA, SSO, PAM SIEM, endpoint protection, vulnerability management ITIL-based service management and automation Leadership Skills Proven ability to lead IT operations and transformation projects Strong vendor and budget management experience Resilience in high More ❯

ensure regulatory compliance Manage vendor performance and service delivery Drive continuous improvement across platforms and processes Technical Skills: Microsoft 365, Azure, Defender, Sentinel IAM: Azure AD, MFA, SSO, PAM SIEM, endpoint protection, vulnerability management ITIL-based service management and automation Leadership Skills Proven ability to lead IT operations and transformation projects Strong vendor and budget management experience Resilience in high More ❯

expertise: Windows Server, AD/Entra ID, Group Policy, O365, Intune Solid networking foundations: TCP/IP, VLANs, DNS, VPNs, Wi-Fi Security engineering knowledge: System hardening, endpoint security, SIEM, incident handling ISO27001, GDPR or PCI compliance exposure Certificates (SSL/TLS), WAF/DDoS, email security Azure engineering background: Governance, networking, identity and security configuration Ownership mindset and strong More ❯