17 of 17 SIEM Jobs in the Thames Valley

years' experience in a cyber security role Strong knowledge of security frameworks (e.g. ISO 27001, NIST) Hands-on experience with tools such as SIEM, firewalls, IDS/IPS, EDR and vulnerability scanning Strong analytical skills with the ability to document and communicate clearly Experience with cloud technologies (e.g. Microsoft Azure ...

solutions (MSP environment highly desirable). Deep product expertise in at least one area: Microsoft 365/Azure, cloud migration, cyber security (firewalls, EDR, SIEM), backup/DR, network infrastructure, or managed services. Proven ability to translate technical capabilities into business value for non-technical audiences. Understanding of the competitive ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

passion for cyber security. You will ideally bring: Strong analytical skills with the ability to manipulate, interrogate and interpret large datasets. Experience working with SIEM and IPS tools (preferred). Good understanding of Cyber Security Operations and cyber threat landscapes. Advanced IT skills and experience working within an IT support ...

disaster recovery programs Skills and Experience Strong knowledge of IT infrastructure and security tools Proven understanding of desktop and server operating systems Experience with SIEM, endpoint protection, identity management and cloud security tools Understanding of cloud security and compliance (CISSP, CEH, CISM etc) On Offer Up to £65,000 Hybrid ...

ideally certified Checkpoint CCSE/CCSM Palo Alto, ideally Certified Load balancing VM Ware (ESXI, VSAN) Network Monitoring tools Knowledge of Defender/Sentinel - SIEM Tooling Coburg Banks Limited is acting as an Employment Agency in relation to this vacancy. ...

quality of their service and acting swiftly on escalations. You'll maintain, optimise and enhance a broad suite of security tools, including EDR, SIEM, email security, cloud security platforms, vulnerability management tooling and threat-detection technologies, ensuring they are configured to best practice and delivering maximum protection. You'll conduct … Cyber Security Engineer or Security Analyst with a strong track record operating in live security environments. You bring deep technical knowledge across endpoint protection, SIEM/EDR tooling, cloud security platforms, identity security, vulnerability management, threat detection workflows and Microsoft-based environments. You're confident analysing events, responding to incidents ...

Strong experience with CyberArk, BeyondTrust, Delinea, or similar PAM tools Solid understanding of Active Directory, LDAP, and authentication mechanisms Experience integrating PAM solutions with SIEM, IAM, or security platforms Experience working in cloud environments such as AWS, Azure, or GCP Scripting experience using PowerShell or Python for automation Understanding … SKILLS PAM Engineer, Privileged Access Management, CyberArk, BeyondTrust, Delinea, Cyber Security Engineer, Identity and Access Management, Active Directory, Azure, AWS, PowerShell, Python, IAM, SIEM ...

ensuring alignment with enterprise architecture standards, secure by design principles, and regulatory requirements. - development of data ingestion, telemetry, and integration patterns between Darktrace, Defender, SIEM/SOAR tools, and existing security stacks. - production of architecture decision records, design patterns, and technical documentation for long-term maintainability. - Leading technical delivery workstreams … baselining across both platforms. - Coordinate testing, validation, and acceptance of detection capabilities, including simulation of realistic attack techniques. - Integrate Darktrace and Defender outputs into SIEM, SOAR, and ticketing systems. - Work with SOC and automation teams to design playbooks, response workflows, and escalation paths. - Ensure centralised logging, enrichment, and context tagging ...

Typical responsibilities include: Leading complex security incidents end-to-end including investigation, containment, forensics and root cause analysis. Designing, tuning and improving detection across SIEM and EDR platforms. Proactive threat hunting across cloud infrastructure, applications, and CI/CD environments. Building and maintaining automation and response playbooks using SOAR tooling. … supporting junior analysts where required. What I’m looking for Strong experience in senior SOC/blue team/security operations roles. Hands-on SIEM engineering and detection tuning experience. Proven ownership of complex incident response and investigations. Cloud security experience across Azure and AWS. Experience automating SOC workflows and ...

hold an active Security Clearance, this is essential. Experience in a Security Operations Centre (SOC) or similar operational cybersecurity role. Hands-on experience with SIEM platforms, specifically Elastic SIEM/Elastic Stack. Strong analytical and investigative skills; able to manage incidents from detection to resolution. Understanding of attacker behaviours, common ...

incidents, overseeing team members and ensuring technical excellence throughout delivery. Support detection engineering and SecOps enhancement initiatives, including identifying coverage gaps in EDR/SIEM tooling and contributing to orchestration and automation playbooks. Work directly with client technical teams, acting as a trusted advisor and primary point of contact during … least two of the following areas: Digital forensics and technical incident response Enterprise security operations tooling and processes Detection engineering within EDR/SIEM environments, including addressing ATT&CK TTP coverage gaps Enterprise IT networks and Active Directory Cloud platforms such as Microsoft 365, Azure, AWS or GCP You will ...

Cyber SOC Engineers and Analysts to maintain and enhance protective monitoring and detection capability. This is a hands-on engineering role with exposure to SIEM, security tooling, and incident investigation support. Key responsibilities include: Monitoring and improving performance of SOC protective controls and tooling Investigating, resolving or escalating technical issues … toolset Liaising with technology vendors where required Skills & Experience Required Strong analytical capability with experience handling and interrogating large data sets Experience working with SIEM platforms (essential) IPS experience (desirable) Solid understanding of Cyber Security Operations Good awareness of current cyber threats and attack techniques Advanced IT technical skills, including ...

Cyber SOC Engineers and Analysts to maintain and enhance protective monitoring and detection capability. This is a hands-on engineering role with exposure to SIEM, security tooling, and incident investigation support. Key responsibilities include: Monitoring and improving performance of SOC protective controls and tooling Investigating, resolving or escalating technical issues … toolset Liaising with technology vendors where required Skills & Experience Required Strong analytical capability with experience handling and interrogating large data sets Experience working with SIEM platforms (essential) IPS experience (desirable) Solid understanding of Cyber Security Operations Good awareness of current cyber threats and attack techniques Advanced IT technical skills, including ...

Configure password rotation, vaulting & JIT access Implement session recording & monitoring (RDP/SSH) Onboard Windows, Linux & network devices Integrate with AD, Entra ID & SIEM Troubleshoot connectors & session issues Must have: Strong hands-on BeyondTrust Password Safe experience Experience with Privileged Remote Access Credential vaulting & service account management expertise AD privileged … account management SIEM integration experience Active SC Clearance (MANDATORY) JBRP1_UKTJ ...

Configure password rotation, vaulting & JIT access Implement session recording & monitoring (RDP/SSH) Onboard Windows, Linux & network devices Integrate with AD, Entra ID & SIEM Troubleshoot connectors & session issues Must have: Strong hands-on BeyondTrust Password Safe experience Experience with Privileged Remote Access Credential vaulting & service account management expertise AD privileged … account management SIEM integration experience Active SC Clearance (MANDATORY ...

Detection Engineer - SIEM, KQL, Sentinel Client is looking for a Detection Engineer to join their security team. Will be creating and improving detetions. - KQL exp is a must (Sentinel/Log Analytics/Microsoft Defender)- Translate threat intelligence into actionable detection logic- Windows, MacOS or Linux operating systems exp London ...