1 to 25 of 160 SIEM Jobs in the UK excluding London

standards for Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments ...

collaborative and high performing team. Skills & Experience We're Seeking * Experience working in a SOC, cyber defence, or threat detection environment * Experience with SIEM platforms including Elastic Security, Microsoft Sentinel, and Splunk, using KQL, ES|QL, and Kibana Query Language to analyse and interpret security data * Familiarity with incident response ...

Controls, or DORA. Strong understanding of cloud and hybrid security environments, including Microsoft 365 and Azure. Strong operational expertise across EDR/XDR, SIEM (e.g., Microsoft Sentinel, Splunk), identity protection, and vulnerability management. Experience with security audits, compliance programmes, and regulated industry requirements. Excellent communication and influencing skills, with confidence ...

relocate to Belfast please About you * Solid understanding of networking concepts, operating systems and common attack techniques * Practical experience using security tooling such as SIEM, EDR, IDS/IPS and Firewall technologies * Hands-on knowledge of forensic methods across Windows, Linux and cloud platforms * Good understanding of common attack types ...

e.g. Security+, CEH, CPSA) or similar. It would be great if you had: Scripting or programming skills (Python, PowerShell, Bash, Perl, C++). Broader SIEM experience (e.g. QRadar). Additional SOC or CREST certifications. If you're interested in this role but not sure if your skills and experience ...

Security+, CISM, AWS Security Specialty or ISO 27001 Lead Implementer. Experience with WAF and bot management in a production e-commerce context. Familiarity with SIEM, SOAR or security automation tooling. Exposure to ISO 27001 implementation or SOC 2 readiness programmes. Experience with multi-cloud security across Azure and GCP. Background ...

Experience in IT operations with exposure to cybersecurity or governance * Knowledge of ISO 27001, GDPR and risk management frameworks * Familiarity with vulnerability management, SIEM or EDR tools * Strong understanding of Windows Server, Active Directory and Microsoft 365 security * Strong analytical and communication skills What is on offer: * Salary ...

depth technical knowledge of deploying, maintaining, and configuring a wide range of security technologies within a large and complex environment (anti-malware/EDR, SIEM solutions, vulnerability scanners, patch management, CASB, DLP, penetration testing tools, etc.) Knowledge of TCP/IP and related network protocols: knowledge of standard network protocols ...

security frameworks such as ISO 27001, NIST, Cyber Essentials Expertise in risk management, vulnerability assessment, and incident response Experience with enterprise security tools (e.g. SIEM, IDS, firewalls, encryption technologies) Knowledge of cloud and hybrid security environments Ability to communicate complex technical risks to non-technical stakeholders Experience influencing senior leadership ...

this vacancy only. KEY SKILLS Cyber Security, Security Operations, SOC, Microsoft Defender, Sentinel, Incident Response, Vulnerability Management, Threat Intelligence, Threat Hunting, SOAR, Azure, AWS, SIEM, KPIs, Risk Reporting ...

Business and an Employment Agency as defined within The Conduct of Employment Agencies & Employment Businesses Regulations 2003. Keywords: Cyber Threat Engineer,Detection & Response Engineer,SIEM Engineer,Security Detection Engineer,Threat Hunting Engineer,Security Automation Engineer,SOC Engineer,Incident Response Engineer,Cloud Security Engineer,Network Security Engineer,Cybersecurity Analyst (Threat Focus ...

configuring and working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management ...

systems remain at the required security posture against baseline requirements Work with the Security Monitoring engineering team to ensure logs are forward to the SIEM capability Work with the customer and appropriate agencies to develop new policies, design processes, and procedures, and develop technical designs Assess system vulnerabilities, implement risk ...

Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models ...

Experience working in a SOC, NOC, or equivalent security operations environment, with well-developed investigation, triage, and incident handling skills. Demonstrable practical knowledge of SIEM, EDR, firewalls, and major security technologies (Splunk, Sentinel, QRadar, CrowdStrike, etc.). Strong grasp of networking concepts (TCP/IP, DNS, protocols), Windows and Linux ...

workflows Configure session recording, monitoring, and auditing Onboard servers, network devices, and platforms into PAM Manage service account discovery and lifecycle Integrate PAM with SIEM tools for logging and alerting Support Active Directory privileged account controls Troubleshoot PAM connectors, sessions, and access issues Produce clear technical documentation and runbooks Essential ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

incident documentation Required Experience Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue ...

information security role within a UK-based organisation, ideally supporting public sector or critical services. Practical experience with security monitoring and incident response tooling (SIEM/XDR) Strong working knowledge of ISO/IEC 27001 and experience maintaining an ISMS. Practical experience with Cyber Essentials/Cyber Essentials Plus certification. ...

function with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple ...

environments Technology Skills & Experience Principles of network and boundary protection (firewalls, mail gateways, load balancers, antivirus, IPS/IDS, Diodes) Protective Monitoring systems (SIEM/SOC) and deployment principles Authentication & authorisation technologies (SAML, LDAP, PKI, etc.) Encryption protocols and structures supporting secure deployment Communication & Soft Skills Excellent verbal and written ...

OWASP Top 10, secure SDLC, code review) Security frameworks and standards (NIST, ISO 27001, CIS Benchmarks, SOC 2) Infrastructure as Code security (Terraform, CloudFormation) SIEM, logging, and monitoring tools (Splunk, Sentinel, ELK) Vulnerability management and penetration testing coordination What’s in it for you At Accenture in addition ...

InfoSec reviews and feedback from external audits. Help drive security and compliance awareness across the business. Involvement in Operational Security Services such as SOC, SIEM, Penetration Testing & Vulnerability scanning Review, interpret and act upon information provided by E365 security toolsets. Required skills: Hold valid security clearance or be eligible undergo ...

junior engineers Key experience & skills: Proven experience in an IT solutions, service desk or engineer role Strong knowledge of network security, firewalls, EDR, and SIEM tools Experience securing Microsoft Azure and/or AWS environments Hands-on endpoint security experience (Defender, Sophos, Bitdefender or similar) Understanding of Cyber Essentials/ ...

availability, resilience and security posture Your Technical Background You'll bring strong hands-on experience across: Infrastructure VMware/vSphere RHEL & Windows Server Trellix SIEM platforms Linux & Scripting Shell scripting REGEX Firewall configuration Microsoft Stack Active Directory DNS RDS Applications & Protocols LDAP Email, Chat & File standards Web & Chat protocols ...