1 to 25 of 219 SIEM Jobs in the UK

/UAT; support incident response. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate and enhance security monitoring, logging and alerting (including SIEM/threat detection). Create security documentation (designs, risk assessments, mitigation plans, ops procedures). Collaborate with project/programme managers and stakeholders to ensure ...

support incident response activities. Maintain SBOMs to support vulnerability management and supply-chain assurance. Integrate and enhance security monitoring, logging, and alerting (including SIEM/threat detection). Produce security documentation including designs, risk assessments, mitigation plans, and operational procedures. Collaborate with project/programme managers and wider stakeholders ...

have experience with the below non-exhaustive list: - Knowledge of network security fundamentals (TCP/IP, firewalls, VPNs, IDS/IPS) - Experience with SIEM & SOC tooling (e.g., Splunk, Elastic, Sentinel) - Familiarity with EDR/Endpoint security platforms (CrowdStrike, SentinelOne etc.) - Hands-on with vulnerability scanning & remediation (Nessus, Qualys, OpenVAS) - Linux ...

testing. Security & Compliance Strong grasp of cybersecurity (firewalls, EPP, vulnerabilities, threat detection). Understanding of ISO 27001 and GDPR; audit support experience. Familiar with SIEM tools (Splunk, Sentinel). Operating Systems & Automation Working knowledge of Linux (Ubuntu, CentOS). Scripting with PowerShell, Bash, Python. Familiar with ITSM platforms (ServiceNow, Freshservice ...

modern cloud security ecosystems. Ability to interpret logs, security events, and SOC output to support investigations. Experience working with or managing third‐party SOC, SIEM, and security vendors. Background in overseeing penetration tests and managing remediation activity. Solid understanding of incident response, vulnerability management, and general cyber defence principles. Experience ...

modern cloud security ecosystems. Ability to interpret logs, security events, and SOC output to support investigations. Experience working with or managing third party SOC, SIEM, and security vendors. Background in overseeing penetration tests and managing remediation activity. Solid understanding of incident response, vulnerability management, and general cyber defence principles. Experience ...

modern cloud security ecosystems. Ability to interpret logs, security events, and SOC output to support investigations. Experience working with or managing third party SOC, SIEM, and security vendors. Background in overseeing penetration tests and managing remediation activity. Solid understanding of incident response, vulnerability management, and general cyber defence principles. Experience ...

Threats : Assist in identifying suspicious activity and responding to security incidents in real time Security Tools and Technologies : Gain hands-on experience with firewalls, SIEM tools (e.g., Splunk, Microsoft Sentinel), endpoint protection, and vulnerability scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy ...

Threats : Assist in identifying suspicious activity and responding to security incidents in real time Security Tools and Technologies : Gain hands-on experience with firewalls, SIEM tools (e.g., Splunk, Microsoft Sentinel), endpoint protection, and vulnerability scanners Vulnerability Assessments : Help run scans to identify weaknesses in systems and recommend remediation actions Policy ...

using SOAR tooling and its application Application of data science against large datasets involving unstructured data and designing data models Knowledge of using SIEM platforms to identify suspected security events and creating content to enhance the platform Knowledge of custom API's to leverage the SOAR's functionality Ability ...

Lead SIEM Engineer Hybrid Hemel Hempstead or Farnborough (1–2 days a week on site) Must be eligible and willing to obtain DV clearance Are you ready to take the lead in shaping one of the most advanced SIEM environments in the UK defence sector? We're looking … Lead SIEM Engineer to join a growing SOC team supporting high-profile, mission-critical clients. You'll be the go-to expert for all things SIEM, driving how we detect, defend, and deliver across multiple secure projects. If you love taking ownership, working with cutting-edge tools, and leading ...

activities. Monitor security alerts and assist with investigating potential incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. ...

activities. Monitor security alerts and assist with investigating potential incidents. Help implement security best practices and policies to protect digital assets. Gain exposure to SIEM tools and security monitoring platforms. Assist with creating incident response documentation and security reports. Support compliance efforts and basic risk assessments aligned with industry standards. ...

Understanding of Email Security platforms (e.g., Darktrace) and Security Awareness & Training platforms. Knowledge of security frameworks (ISO 27001, NIST, GDPR, etc.). Familiarity with SIEM, security system administration, and incident response. Understanding of SOC operations and monitoring. No formal qualifications required, although a security or IT-related certification (e.g., CompTIA ...

during security incidents in a front-facing role. Formal qualifications not essential; proven hands-on experience and delivery record valued. Technical Capabilities: Experience with SIEM platforms (e.g. Rapid7), Email Security and Data Security/DLP solutions (e.g. Varonis). Strong knowledge of Entra ID security features including Conditional Access and ...

automating processes. Working knowledge of SecDevOps tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and documentation abilities. Hands on experience with SIEM solutions i.e. Splunk, ArcSight, LogRhythm Communication and Soft Skills Experience speaking to and working with leadership as well as ability to write reports and present ...

points if you've dabbled in things like: Networking basics (TCP/IP, DNS, DHCP). Windows/Linux systems or firewalls. Security tools (SIEM, antivirus, vulnerability scanners). Scripting (PowerShell, Python). Cloud platforms (Azure, AWS). Entry requirements: an A-Level in ICT OR an International Baccalaureate ...

Certification Authority). Hands-on experience with virtualisation platforms (Hyper-V), network security appliances and MFA solutions. Understanding of vulnerability management, endpoint protection and SIEM operations. Excellent problem-solving skills and ability to work under pressure. Strong communication skills to engage stakeholders and influence technical decisions. Experience working ...

specified replacement date Security Tooling Portfolio Management Manage and maintain the following categories of security tools: Security Operations Tools SIEM (Security Information and Event Management) - e.g., Splunk EDR (Endpoint Detection and Response) SOAR (Security Orchestration, Automation and Response) Threat Intelligence Platforms Vulnerability Scanners (e.g., Qualys, Tenable) Brand Protection and Domain … enterprise infrastructure (IAM, CMDB, ticketing) Demonstrated experience with access management and RBAC implementation Experience with vulnerability management and patch management processes Technical Skills Security Platforms SIEM: Splunk (required), QRadar, ArcSight, LogRhythm, Sentinel EDR: CrowdStrike, Carbon Black, SentinelOne, Microsoft Defender SOAR: Splunk Phantom, Palo Alto Cortex XSOAR, IBM Resilient Vulnerability Management ...

continuous detection & response improvements Providing expert security guidance to IT, engineering and systems owners Conducting security reviews of new suppliers, software and technologies Enhancing SIEM, detection rules, response automation and visibility across devices and infrastructure Improving IAM, device management, productivity tools and cloud security (AWS, Azure, Microsoft ecosystems) Ensuring effective ...

including the use of Microsoft Purview and computer forensics an advantage. Experience of utilising and monitoring Information Security solutions e.g. email/web gateways, SIEM, Endpoint protection etc. Strong awareness of Cloud services and supporting security solutions & standards. Good understanding of cloud native and devops practices including pipelines and associated ...

and implementation of 4 projects in AWS is preferred. Design exposure of Cloud Security and compliances (CIS, GDPR, PCI-DSS etc.). Knowledge of SIEM , CSPM Solution like Security Hub , MDC ,Prisma , WIZ Experience in native AWS Security services Security Hub , Config , WAF , VPC , Guard Duty, KMS , IAM Analyzer, Cloud ...

conjunction with the relevant teams. Review vulnerabilities in the environment and suggest, plan and implement remediation. Required Skills Proficiency with security tools such as SIEM, PAM, web filtering, email filtering (Mimecast), IDS/IPS, antivirus, endpoint protection, MS Sentinel, vulnerability assessment tools ie Tenable. Experience in SentinelOne MDR Experience ...

Cloud Platforms Experience with private & public cloud such as AWS & Azure Security Experience with MDM, MFA, Email filtering, Next generation firewalls & Anti-Virus solutions, SIEM Solutions such as Sentinel Skills An ability to work independently and perform their own research Ability to work under pressure Creative problem solving Ability ...

tools such as EDR, XDR, firewalls, WAF, and email security; experience with CrowdStrike, Palo Alto, and Microsoft Defender is advantageous. Hands-on experience with SIEM platforms, including configuration and data integration. Familiarity with cloud security, network security, and endpoint security across Windows, Linux, and macOS environments. Package ...